diff --git a/Makefile b/Makefile index 2000d6d5bd..517886265f 100644 --- a/Makefile +++ b/Makefile @@ -23,7 +23,7 @@ format: ## Format Code lint: ## Lint Code @echo "Running flake8..." - flake8 . --ignore=E266,W503,E203,E501,W605,E128 --exclude contrib + flake8 . --ignore=E266,W503,E203,E501,W605,E128 --exclude contrib,.venv,ui/node_modules @echo "Running black... " black --check . @echo "Running pylint..." diff --git a/api/CHANGELOG.md b/api/CHANGELOG.md index 8cb9e73f52..03ff406223 100644 --- a/api/CHANGELOG.md +++ b/api/CHANGELOG.md @@ -6,6 +6,7 @@ All notable changes to the **Prowler API** are documented in this file. ### Added - Support AlibabaCloud provider [(#9485)](https://github.com/prowler-cloud/prowler/pull/9485) +- New endpoint `POST /api/v1/scans/import` to import Prowler CLI scan results (JSON/OCSF and CSV formats) [(#8972)](https://github.com/prowler-cloud/prowler/issues/8972) --- diff --git a/api/docs/configuration.md b/api/docs/configuration.md new file mode 100644 index 0000000000..ff60926c6c --- /dev/null +++ b/api/docs/configuration.md @@ -0,0 +1,345 @@ +# Prowler API Configuration Documentation + +This document provides comprehensive documentation for the Django configuration settings used in the Prowler API backend. + +## Overview + +The Prowler API uses Django's settings module pattern with environment-based configuration. Settings are organized into: + +- **Base settings** (`config/django/base.py`) - Common settings for all environments +- **Development settings** (`config/django/devel.py`) - Development-specific overrides +- **Production settings** (`config/django/production.py`) - Production-specific overrides +- **Testing settings** (`config/django/testing.py`) - Test environment settings + +Configuration values are loaded from environment variables using `django-environ`, with sensible defaults for development. + +## Configuration Files + +``` +api/src/backend/config/ +├── django/ +│ ├── __init__.py +│ ├── base.py # Base configuration (documented below) +│ ├── devel.py # Development overrides +│ ├── production.py # Production overrides +│ └── testing.py # Testing overrides +├── settings/ +│ ├── celery.py # Celery task queue settings +│ ├── partitions.py # Database partitioning settings +│ ├── sentry.py # Sentry error tracking settings +│ └── social_login.py # OAuth/SAML authentication settings +├── env.py # Environment variable loader +├── custom_logging.py # Logging configuration +├── celery.py # Celery application setup +├── urls.py # URL routing +├── wsgi.py # WSGI application +└── asgi.py # ASGI application +``` + +## Environment Variables Reference + +### Core Django Settings + +| Variable | Type | Default | Description | +|----------|------|---------|-------------| +| `SECRET_KEY` | string | `"secret"` | Django secret key for cryptographic signing | +| `DJANGO_DEBUG` | boolean | `False` | Enable debug mode (never in production) | + +### JWT Authentication + +| Variable | Type | Default | Description | +|----------|------|---------|-------------| +| `DJANGO_ACCESS_TOKEN_LIFETIME` | integer | `30` | Access token lifetime in minutes | +| `DJANGO_REFRESH_TOKEN_LIFETIME` | integer | `1440` | Refresh token lifetime in minutes (24h) | +| `DJANGO_TOKEN_SIGNING_KEY` | string | `""` | RSA private key for JWT signing (PEM format) | +| `DJANGO_TOKEN_VERIFYING_KEY` | string | `""` | RSA public key for JWT verification (PEM format) | +| `DJANGO_JWT_AUDIENCE` | string | `"https://api.prowler.com"` | JWT audience claim | +| `DJANGO_JWT_ISSUER` | string | `"https://api.prowler.com"` | JWT issuer claim | + +**Note:** If signing/verifying keys are not provided, they are auto-generated at `~/.config/prowler-api/`. + +### Encryption + +| Variable | Type | Default | Description | +|----------|------|---------|-------------| +| `DJANGO_SECRETS_ENCRYPTION_KEY` | string | `""` | Fernet key for encrypting sensitive data | + +### Rate Limiting + +| Variable | Type | Default | Description | +|----------|------|---------|-------------| +| `DJANGO_THROTTLE_TOKEN_OBTAIN` | string | `None` | Rate limit for token endpoint (e.g., `"5/minute"`) | + +### Caching + +| Variable | Type | Default | Description | +|----------|------|---------|-------------| +| `DJANGO_CACHE_MAX_AGE` | integer | `3600` | Cache max age in seconds | +| `DJANGO_STALE_WHILE_REVALIDATE` | integer | `60` | Stale-while-revalidate window in seconds | + +### Findings Configuration + +| Variable | Type | Default | Description | +|----------|------|---------|-------------| +| `DJANGO_FINDINGS_MAX_DAYS_IN_RANGE` | integer | `7` | Maximum days for findings date range queries | +| `DJANGO_FINDINGS_BATCH_SIZE` | integer | `1000` | Batch size for findings export operations | + +### Export Settings (S3) + +| Variable | Type | Default | Description | +|----------|------|---------|-------------| +| `DJANGO_TMP_OUTPUT_DIRECTORY` | string | `"/tmp/prowler_api_output"` | Temporary directory for export files | +| `DJANGO_OUTPUT_S3_AWS_OUTPUT_BUCKET` | string | `""` | S3 bucket for exports | +| `DJANGO_OUTPUT_S3_AWS_ACCESS_KEY_ID` | string | `""` | AWS access key for S3 | +| `DJANGO_OUTPUT_S3_AWS_SECRET_ACCESS_KEY` | string | `""` | AWS secret key for S3 | +| `DJANGO_OUTPUT_S3_AWS_SESSION_TOKEN` | string | `""` | AWS session token (optional) | +| `DJANGO_OUTPUT_S3_AWS_DEFAULT_REGION` | string | `""` | AWS region for S3 bucket | + +### Database Operations + +| Variable | Type | Default | Description | +|----------|------|---------|-------------| +| `DJANGO_DELETION_BATCH_SIZE` | integer | `5000` | Batch size for bulk deletion operations | + +## File Upload Settings + +The API supports importing large scan result files (JSON/OCSF and CSV formats from Prowler CLI). These settings control the maximum file sizes accepted: + +```python +# Maximum size for request body parsing (forms, JSON payloads) +DATA_UPLOAD_MAX_MEMORY_SIZE = 1024 * 1024 * 1024 # 1GB + +# Maximum size for in-memory file uploads before streaming to disk +FILE_UPLOAD_MAX_MEMORY_SIZE = 1024 * 1024 * 1024 # 1GB +``` + +| Setting | Value | Description | +|---------|-------|-------------| +| `DATA_UPLOAD_MAX_MEMORY_SIZE` | 1GB (1,073,741,824 bytes) | Maximum size for the entire request body | +| `FILE_UPLOAD_MAX_MEMORY_SIZE` | 1GB (1,073,741,824 bytes) | Maximum size for file uploads held in memory | + +**Use Case:** These limits accommodate large enterprise scan imports that may contain thousands of findings. The scan import endpoint (`POST /api/v1/scans/import`) uses these limits. + +**Note:** The frontend (Next.js) also has a corresponding `serverActions.bodySizeLimit` of 1GB for server actions, matching the backend limit. + +## Installed Applications + +The API includes the following Django applications: + +### Core Django +- `django.contrib.admin` - Admin interface +- `django.contrib.auth` - Authentication framework +- `django.contrib.contenttypes` - Content type framework +- `django.contrib.sessions` - Session framework +- `django.contrib.messages` - Messaging framework +- `django.contrib.staticfiles` - Static file handling +- `django.contrib.postgres` - PostgreSQL-specific features +- `django.contrib.sites` - Multi-site support + +### Third-Party +- `rest_framework` - Django REST Framework +- `rest_framework_json_api` - JSON:API specification support +- `corsheaders` - CORS handling +- `drf_spectacular` - OpenAPI schema generation +- `drf_spectacular_jsonapi` - JSON:API schema support +- `django_guid` - Request correlation IDs +- `django_celery_results` - Celery result backend +- `django_celery_beat` - Celery periodic tasks +- `rest_framework_simplejwt` - JWT authentication +- `allauth` - Authentication providers +- `dj_rest_auth` - REST authentication endpoints +- `drf_simple_apikey` - API key authentication +- `psqlextra` - PostgreSQL extras (partitioning) + +### Internal +- `api` - Prowler API application + +## REST Framework Configuration + +```python +REST_FRAMEWORK = { + "DEFAULT_SCHEMA_CLASS": "drf_spectacular_jsonapi.schemas.openapi.JsonApiAutoSchema", + "DEFAULT_AUTHENTICATION_CLASSES": ( + "api.authentication.CombinedJWTOrAPIKeyAuthentication", + ), + "PAGE_SIZE": 10, + "EXCEPTION_HANDLER": "api.exceptions.custom_exception_handler", + "DEFAULT_PAGINATION_CLASS": "drf_spectacular_jsonapi.schemas.pagination.JsonApiPageNumberPagination", + "DEFAULT_PARSER_CLASSES": ( + "rest_framework_json_api.parsers.JSONParser", + "rest_framework.parsers.FormParser", + "rest_framework.parsers.MultiPartParser", + ), + "DEFAULT_RENDERER_CLASSES": ("api.renderers.APIJSONRenderer",), + "DEFAULT_FILTER_BACKENDS": ( + "rest_framework_json_api.filters.QueryParameterValidationFilter", + "rest_framework_json_api.filters.OrderingFilter", + "rest_framework_json_api.django_filters.backends.DjangoFilterBackend", + "rest_framework.filters.SearchFilter", + ), + "SEARCH_PARAM": "filter[search]", +} +``` + +### Key Configuration Points + +| Setting | Value | Description | +|---------|-------|-------------| +| `PAGE_SIZE` | 10 | Default pagination size | +| `SEARCH_PARAM` | `filter[search]` | JSON:API compliant search parameter | +| Authentication | JWT + API Key | Combined authentication supporting both methods | +| Parsers | JSON, Form, MultiPart | Supports JSON:API, form data, and file uploads | + +## JWT Configuration + +The API uses RS256 (RSA with SHA-256) for JWT signing: + +```python +SIMPLE_JWT = { + "ACCESS_TOKEN_LIFETIME": timedelta(minutes=30), # Configurable + "REFRESH_TOKEN_LIFETIME": timedelta(minutes=1440), # 24 hours + "ROTATE_REFRESH_TOKENS": True, + "BLACKLIST_AFTER_ROTATION": True, + "ALGORITHM": "RS256", + "AUTH_HEADER_TYPES": ("Bearer",), + "TOKEN_TYPE_CLAIM": "typ", + "JTI_CLAIM": "jti", + "USER_ID_FIELD": "id", + "USER_ID_CLAIM": "sub", +} +``` + +### Token Lifecycle + +1. **Access Token**: Short-lived (default 30 min), used for API requests +2. **Refresh Token**: Longer-lived (default 24h), used to obtain new access tokens +3. **Rotation**: Refresh tokens are rotated on use and old tokens are blacklisted + +## Password Validation + +The API enforces strong password requirements: + +| Validator | Requirement | +|-----------|-------------| +| `UserAttributeSimilarityValidator` | Password cannot be similar to user attributes | +| `MinimumLengthValidator` | Minimum 12 characters | +| `MaximumLengthValidator` | Maximum 72 characters | +| `CommonPasswordValidator` | Cannot be a common password | +| `NumericPasswordValidator` | Cannot be entirely numeric | +| `SpecialCharactersValidator` | At least 1 special character | +| `UppercaseValidator` | At least 1 uppercase letter | +| `LowercaseValidator` | At least 1 lowercase letter | +| `NumericValidator` | At least 1 numeric digit | + +## Security Headers + +```python +SECURE_CONTENT_TYPE_NOSNIFF = True +X_FRAME_OPTIONS = "DENY" +SECURE_REFERRER_POLICY = "strict-origin-when-cross-origin" +CSRF_COOKIE_SECURE = True +SESSION_COOKIE_SECURE = True +``` + +| Header | Value | Purpose | +|--------|-------|---------| +| `X-Content-Type-Options` | `nosniff` | Prevent MIME type sniffing | +| `X-Frame-Options` | `DENY` | Prevent clickjacking | +| `Referrer-Policy` | `strict-origin-when-cross-origin` | Control referrer information | +| Secure Cookies | `True` | Cookies only sent over HTTPS | + +## Database Configuration + +### Router + +```python +DATABASE_ROUTERS = ["api.db_router.MainRouter"] +``` + +The `MainRouter` handles: +- Read/write routing for multi-database setups +- Migration routing to the `admin` database +- RLS (Row-Level Security) context management + +### Custom User Model + +```python +AUTH_USER_MODEL = "api.User" +``` + +## Request Correlation + +```python +DJANGO_GUID = { + "GUID_HEADER_NAME": "Transaction-ID", + "VALIDATE_GUID": True, + "RETURN_HEADER": True, + "EXPOSE_HEADER": True, + "UUID_LENGTH": 32, +} +``` + +All requests are assigned a unique transaction ID for tracing through logs and responses. + +## Usage Examples + +### Setting Environment Variables + +```bash +# .env file +SECRET_KEY=your-production-secret-key +DJANGO_DEBUG=False +DJANGO_ACCESS_TOKEN_LIFETIME=15 +DJANGO_REFRESH_TOKEN_LIFETIME=720 +DJANGO_SECRETS_ENCRYPTION_KEY=your-fernet-key +DJANGO_FINDINGS_MAX_DAYS_IN_RANGE=14 +``` + +### Loading Configuration in Code + +```python +from django.conf import settings + +# Access settings +max_days = settings.FINDINGS_MAX_DAYS_IN_RANGE +batch_size = settings.DJANGO_FINDINGS_BATCH_SIZE + +# Check file upload limits +max_upload = settings.DATA_UPLOAD_MAX_MEMORY_SIZE # 1GB +``` + +### Generating Encryption Key + +```python +from cryptography.fernet import Fernet + +# Generate a new Fernet key +key = Fernet.generate_key() +print(key.decode()) # Use this as DJANGO_SECRETS_ENCRYPTION_KEY +``` + +### Generating JWT Keys + +```bash +# Generate RSA key pair +openssl genrsa -out jwt_private.pem 2048 +openssl rsa -in jwt_private.pem -pubout -out jwt_public.pem + +# Set as environment variables (escape newlines) +export DJANGO_TOKEN_SIGNING_KEY=$(cat jwt_private.pem | tr '\n' '\\n') +export DJANGO_TOKEN_VERIFYING_KEY=$(cat jwt_public.pem | tr '\n' '\\n') +``` + +## Related Documentation + +- [API README](../README.md) - Setup and deployment guide +- [Models Documentation](models.md) - Database model reference +- [Partitions Documentation](partitions.md) - Table partitioning details +- [Services Documentation](../src/backend/api/services/README.md) - Business logic services +- [Parsers Documentation](../src/backend/api/parsers/README.md) - File format parsers + +## Changelog + +### Recent Changes + +- **File Upload Limits**: Added `DATA_UPLOAD_MAX_MEMORY_SIZE` and `FILE_UPLOAD_MAX_MEMORY_SIZE` settings (1GB) to support large scan result imports via the `/api/v1/scans/import` endpoint. diff --git a/api/docs/models.md b/api/docs/models.md new file mode 100644 index 0000000000..db07153fa2 --- /dev/null +++ b/api/docs/models.md @@ -0,0 +1,447 @@ +# Prowler API Models Documentation + +This document provides comprehensive documentation for the Django models used in the Prowler API backend. + +## Overview + +The Prowler API uses Django ORM with PostgreSQL-specific features including: +- Row-Level Security (RLS) for multi-tenant data isolation +- Table partitioning for high-volume data (Findings) +- Full-text search with PostgreSQL GIN indexes +- Soft deletion patterns for data preservation + +## Model Hierarchy + +``` +RowLevelSecurityProtectedModel (Base) +├── Provider +├── ProviderGroup +├── ProviderGroupMembership +├── ProviderSecret +├── Scan +├── Task +├── Resource +├── ResourceTag +├── ResourceTagMapping +├── Finding (+ PostgresPartitionedModel) +├── ResourceFindingMapping (+ PostgresPartitionedModel) +├── ComplianceOverview +├── ComplianceRequirementOverview +├── ComplianceOverviewSummary +├── ScanSummary +├── DailySeveritySummary +├── Role +├── Invitation +├── Integration +├── TenantAPIKey +├── SAMLConfiguration +├── MuteRule +├── Processor +└── Lighthouse* (AI/LLM configurations) + +AbstractBaseUser +└── User + +models.Model +├── Membership +├── SAMLToken +└── SAMLDomainIndex +``` + +## Core Models + +### User + +Custom user model with email-based authentication. + +```python +from api.models import User + +# Create a user +user = User.objects.create( + name="John Doe", + email="john@example.com", + company_name="Acme Corp" +) + +# Check tenant membership +if user.is_member_of_tenant(tenant_id): + print("User has access") +``` + +**Fields:** +| Field | Type | Description | +|-------|------|-------------| +| `id` | UUID | Primary key | +| `name` | CharField(150) | Display name (min 3 chars) | +| `email` | EmailField | Unique, case-insensitive | +| `company_name` | CharField(150) | Optional company | +| `is_active` | BooleanField | Account status | +| `date_joined` | DateTimeField | Auto-set on creation | + +### Provider + +Represents a connected cloud account for security scanning. + +```python +from api.models import Provider + +# Create an AWS provider +provider = Provider.objects.create( + tenant=tenant, + provider=Provider.ProviderChoices.AWS, + uid="123456789012", + alias="Production Account" +) + +# Query active providers only (default) +active_providers = Provider.objects.all() + +# Include soft-deleted providers +all_providers = Provider.all_objects.all() +``` + +**Supported Provider Types:** +- `aws` - Amazon Web Services +- `azure` - Microsoft Azure +- `gcp` - Google Cloud Platform +- `kubernetes` - Kubernetes clusters +- `m365` - Microsoft 365 +- `github` - GitHub organizations +- `mongodbatlas` - MongoDB Atlas +- `iac` - Infrastructure as Code +- `oraclecloud` - Oracle Cloud Infrastructure +- `alibabacloud` - Alibaba Cloud + +**UID Validation:** +Each provider type has specific UID format requirements: +- AWS: 12-digit account ID +- Azure: Valid UUID v4 +- GCP: 6-30 chars, lowercase, starts with letter +- Kubernetes: Valid UID or cluster ARN +- GitHub: 1-39 chars, alphanumeric with hyphens + +### Scan + +Security scan execution against a provider. + +```python +from api.models import Scan, StateChoices + +# Get completed scans for a provider +completed_scans = Scan.objects.filter( + provider=provider, + state=StateChoices.COMPLETED +).order_by('-completed_at') + +# Get the latest scan +latest_scan = Scan.objects.filter( + provider=provider, + state=StateChoices.COMPLETED +).order_by('-inserted_at').first() +``` + +**Trigger Types:** +- `scheduled` - Automated scheduled scan +- `manual` - User-initiated scan +- `imported` - Created from imported data + +**State Lifecycle:** +``` +AVAILABLE → SCHEDULED → EXECUTING → COMPLETED + ↘ FAILED + ↘ CANCELLED +``` + +### Finding + +Individual security check result from a scan. + +```python +from api.models import Finding, StatusChoices + +# Get failed findings from a scan +failed_findings = Finding.objects.filter( + scan=scan, + status=StatusChoices.FAIL, + muted=False +) + +# Filter by severity +critical_findings = Finding.objects.filter( + scan=scan, + severity__in=['critical', 'high'] +) + +# Search findings +from django.contrib.postgres.search import SearchQuery +findings = Finding.objects.filter( + text_search=SearchQuery('public access') +) +``` + +**Delta Values:** +- `new` - First time this finding appeared +- `changed` - Status changed from previous scan +- `None` - Unchanged from previous scan + +**Note:** Finding uses PostgreSQL table partitioning on the `id` field (UUIDv7) for performance with large datasets. + +### Resource + +Cloud resource discovered during scans. + +```python +from api.models import Resource + +# Get resources with failed findings +resources_with_issues = Resource.objects.filter( + provider=provider, + failed_findings_count__gt=0 +).order_by('-failed_findings_count') + +# Search resources +resources = Resource.objects.filter( + text_search=SearchQuery('bucket') +) + +# Get resource tags +tags = resource.get_tags(tenant_id) +``` + +## Relationship Models + +### Membership + +Links users to tenants with role assignment. + +```python +from api.models import Membership + +# Get user's memberships +memberships = Membership.objects.filter(user=user) + +# Check if user is owner +is_owner = Membership.objects.filter( + user=user, + tenant=tenant, + role=Membership.RoleChoices.OWNER +).exists() +``` + +### ProviderGroup + +Logical grouping of providers. + +```python +from api.models import ProviderGroup + +# Create a group +group = ProviderGroup.objects.create( + tenant=tenant, + name="Production Accounts" +) + +# Add providers to group +group.providers.add(aws_provider, azure_provider) +``` + +### Role + +RBAC role with granular permissions. + +```python +from api.models import Role + +# Create a role with specific permissions +role = Role.objects.create( + tenant=tenant, + name="Security Analyst", + manage_scans=True, + unlimited_visibility=False +) + +# Assign provider groups for scoped access +role.provider_groups.add(production_group) + +# Assign to users +role.users.add(user) +``` + +**Permission Fields:** +- `manage_users` - User management +- `manage_account` - Account settings +- `manage_billing` - Billing access +- `manage_providers` - Provider management +- `manage_integrations` - Integration configuration +- `manage_scans` - Scan execution +- `unlimited_visibility` - Access all providers + +## Compliance Models + +### ComplianceOverview + +Aggregated compliance status per scan and framework. + +```python +from api.models import ComplianceOverview + +# Get compliance status for a scan +compliance = ComplianceOverview.objects.filter( + scan=scan, + framework='CIS' +) +``` + +### ComplianceRequirementOverview + +Per-requirement compliance details. + +```python +from api.models import ComplianceRequirementOverview + +# Get failed requirements +failed_reqs = ComplianceRequirementOverview.objects.filter( + scan=scan, + compliance_id='cis_3_0_aws', + requirement_status=StatusChoices.FAIL +) +``` + +## Integration Models + +### Integration + +External service integrations (S3, Security Hub, Jira, Slack). + +```python +from api.models import Integration + +# Create an S3 integration +integration = Integration.objects.create( + tenant=tenant, + integration_type=Integration.IntegrationChoices.AMAZON_S3, + configuration={'bucket': 'my-bucket', 'region': 'us-east-1'}, + enabled=True +) +integration.credentials = {'access_key': '...', 'secret_key': '...'} +integration.save() +``` + +**Supported Integrations:** +- `amazon_s3` - Export findings to S3 +- `aws_security_hub` - Send to Security Hub +- `jira` - Create Jira tickets +- `slack` - Slack notifications + +## Security Features + +### Row-Level Security (RLS) + +All tenant-scoped models inherit from `RowLevelSecurityProtectedModel`, which: +- Automatically adds `tenant_id` foreign key +- Applies PostgreSQL RLS policies +- Ensures data isolation between tenants + +### Encrypted Fields + +Sensitive data is encrypted at rest using Fernet symmetric encryption: +- `ProviderSecret.secret` - Provider credentials +- `Integration.credentials` - Integration credentials +- `LighthouseConfiguration.api_key` - LLM API keys + +```python +# Encryption is transparent via properties +provider_secret.secret = {'access_key': '...', 'secret_key': '...'} +provider_secret.save() + +# Decryption happens automatically +credentials = provider_secret.secret # Returns decrypted dict +``` + +### Soft Deletion + +Providers use soft deletion to preserve historical data: + +```python +# Soft delete a provider +provider.is_deleted = True +provider.save() + +# Default manager excludes deleted +Provider.objects.all() # Active only + +# Access all including deleted +Provider.all_objects.all() +``` + +## Managers + +### ActiveProviderManager + +Filters out soft-deleted providers automatically. + +```python +# Applied to: Provider, Resource, ProviderSecret, Scan, Finding, etc. +Provider.objects.all() # Only active providers +Provider.all_objects.all() # All providers +``` + +### ActiveProviderPartitionedManager + +Combines partition support with active provider filtering for Finding model. + +### TenantAPIKeyManager + +Handles API key generation with custom prefix format. + +```python +api_key = TenantAPIKey.objects.create(name="CI Key", tenant=tenant) +key_string = TenantAPIKey.objects.assign_api_key(api_key) +# Returns: "prwlr_xxxxx.generated_key_here" +``` + +## Enumerations + +### StatusChoices +- `FAIL` - Security check failed +- `PASS` - Security check passed +- `MANUAL` - Requires manual verification + +### StateChoices +- `available` - Ready for execution +- `scheduled` - Scheduled for future +- `executing` - Currently running +- `completed` - Finished successfully +- `failed` - Encountered error +- `cancelled` - Cancelled by user + +### SeverityChoices +Imported from Prowler SDK: `critical`, `high`, `medium`, `low`, `informational` + +## Database Indexes + +Key indexes for query optimization: + +| Model | Index | Purpose | +|-------|-------|---------| +| Finding | `find_tenant_scan_idx` | Scan-based queries | +| Finding | `gin_findings_search_idx` | Full-text search | +| Resource | `gin_resources_search_idx` | Full-text search | +| Scan | `scans_prov_state_ins_desc_idx` | Latest scan queries | +| ScanSummary | `ss_tenant_scan_severity_idx` | Severity aggregations | + +## Migration Notes + +1. **Partitioned Models**: Use `python manage.py pgmakemigrations` for Finding and ResourceFindingMapping changes. + +2. **RLS Constraints**: New models inheriting from `RowLevelSecurityProtectedModel` automatically get RLS policies. + +3. **Enum Fields**: Use custom enum fields (`StatusEnumField`, `SeverityEnumField`, etc.) for type safety. + +## Related Documentation + +- [API README](../README.md) - Setup and deployment +- [Partitions Documentation](partitions.md) - Table partitioning details +- [Parsers Documentation](../src/backend/api/parsers/README.md) - OCSF and CSV parser documentation +- [Prowler SDK](../../prowler/AGENTS.md) - Check and compliance definitions diff --git a/api/src/backend/api/migrations/0066_scan_imported_trigger.py b/api/src/backend/api/migrations/0066_scan_imported_trigger.py new file mode 100644 index 0000000000..a8efdd93fc --- /dev/null +++ b/api/src/backend/api/migrations/0066_scan_imported_trigger.py @@ -0,0 +1,58 @@ +# Generated by Django migration for scan imported trigger support +""" +Migration: 0066_scan_imported_trigger + +Adds the 'imported' trigger type to the Scan model. + +This migration extends the scan_trigger PostgreSQL enum to support scans +created from imported external data (e.g., Prowler CLI output files). +Previously, scans could only be 'scheduled' or 'manual'. + +Operations: + 1. AlterField: Updates the Django model field to include the new choice. + 2. RunSQL: Adds 'imported' value to the PostgreSQL enum type directly, + using IF NOT EXISTS for idempotency. + +Note: + The reverse_sql is a no-op because PostgreSQL does not support removing + enum values. This is a forward-only migration for the enum type. +""" + +from django.db import migrations + +import api.db_utils + + +class Migration(migrations.Migration): + """ + Adds 'imported' as a valid trigger type for scans. + + This enables tracking scans that were created by importing external + scan results rather than being executed directly by the platform. + """ + + dependencies = [ + ("api", "0065_alibabacloud_provider"), + ] + + operations = [ + # Update Django model field to recognize the new trigger choice + migrations.AlterField( + model_name="scan", + name="trigger", + field=api.db_utils.ScanTriggerEnumField( + choices=[ + ("scheduled", "Scheduled"), + ("manual", "Manual"), + ("imported", "Imported"), + ], + ), + ), + # Add the new value to the PostgreSQL enum type + # Note: IF NOT EXISTS ensures idempotency; reverse is noop since + # PostgreSQL doesn't support dropping enum values + migrations.RunSQL( + "ALTER TYPE scan_trigger ADD VALUE IF NOT EXISTS 'imported';", + reverse_sql=migrations.RunSQL.noop, + ), + ] diff --git a/api/src/backend/api/models.py b/api/src/backend/api/models.py index 464207e111..4f8c644cdd 100644 --- a/api/src/backend/api/models.py +++ b/api/src/backend/api/models.py @@ -67,9 +67,15 @@ class StatusChoices(models.TextChoices): """ - This list is based on the finding status in the Prowler CLI. + Enumeration of possible finding statuses. + This list is based on the finding status in the Prowler CLI. However, it adds another state, MUTED, which is not in the CLI. + + Attributes: + FAIL: The security check failed, indicating a potential vulnerability. + PASS: The security check passed successfully. + MANUAL: The check requires manual verification. """ FAIL = "FAIL", _("Fail") @@ -80,6 +86,13 @@ class StatusChoices(models.TextChoices): class OverviewStatusChoices(models.TextChoices): """ Status filters allowed in overview/severity endpoints. + + A subset of StatusChoices used specifically for filtering in + overview and severity aggregation endpoints. + + Attributes: + FAIL: Filter for failed findings only. + PASS: Filter for passed findings only. """ FAIL = "FAIL", _("Fail") @@ -87,6 +100,21 @@ class OverviewStatusChoices(models.TextChoices): class StateChoices(models.TextChoices): + """ + Enumeration of scan execution states. + + Represents the lifecycle states of a security scan from creation + through completion or failure. + + Attributes: + AVAILABLE: Scan is created and ready to be scheduled or executed. + SCHEDULED: Scan is scheduled for future execution. + EXECUTING: Scan is currently running. + COMPLETED: Scan finished successfully. + FAILED: Scan encountered an error and did not complete. + CANCELLED: Scan was cancelled before completion. + """ + AVAILABLE = "available", _("Available") SCHEDULED = "scheduled", _("Scheduled") EXECUTING = "executing", _("Executing") @@ -111,6 +139,23 @@ class PermissionChoices(models.TextChoices): class ActiveProviderManager(models.Manager): + """ + Custom manager that filters out soft-deleted providers. + + This manager automatically excludes providers marked as deleted + (is_deleted=True) from querysets. It handles different model types + by applying the appropriate filter based on the relationship path. + + Usage: + Provider.objects.all() # Returns only active providers + Provider.all_objects.all() # Returns all providers including deleted + + Supported Models: + - Provider: Filters on is_deleted field directly + - Finding, ComplianceOverview, ScanSummary: Filters via scan__provider + - Other models: Filters via provider foreign key + """ + def get_queryset(self): return super().get_queryset().filter(self.active_provider_filter()) @@ -124,14 +169,45 @@ def active_provider_filter(self): class ActiveProviderPartitionedManager(PostgresManager, ActiveProviderManager): + """ + Combined manager for partitioned models with active provider filtering. + + Inherits from both PostgresManager (for partition support) and + ActiveProviderManager (for soft-delete filtering). Used by models + like Finding that are both partitioned and need provider filtering. + """ + def get_queryset(self): return super().get_queryset().filter(self.active_provider_filter()) class TenantAPIKeyManager(AbstractAPIKeyManager): + """ + Custom manager for tenant-scoped API keys. + + Handles API key generation with a custom separator and prefix format. + Keys are generated using cryptographic functions and include an + expiry date in the payload. + + Attributes: + separator: Character used to separate prefix from key (default: ".") + + Methods: + assign_api_key: Generates and returns a prefixed API key string. + """ + separator = "." def assign_api_key(self, obj) -> str: + """ + Generate and assign an API key to the given object. + + Args: + obj: TenantAPIKey instance to generate key for. + + Returns: + str: The complete API key in format "{prefix}.{key}". + """ payload = {"_pk": str(obj.pk), "_exp": obj.expiry_date.timestamp()} key = get_crypto().generate(payload) @@ -140,6 +216,31 @@ def assign_api_key(self, obj) -> str: class User(AbstractBaseUser): + """ + Custom user model for Prowler API authentication. + + Extends Django's AbstractBaseUser to provide email-based authentication + instead of username-based. Users can belong to multiple tenants through + the Membership model. + + Attributes: + id: UUID primary key. + name: User's display name (3-150 characters). + email: Unique email address (case-insensitive). + company_name: Optional company affiliation. + is_active: Whether the user account is active. + date_joined: Timestamp of account creation. + + Example: + >>> user = User.objects.create( + ... name="John Doe", + ... email="john@example.com", + ... company_name="Acme Corp" + ... ) + >>> user.is_member_of_tenant(tenant_id) + True + """ + id = models.UUIDField(primary_key=True, default=uuid4, editable=False) name = models.CharField(max_length=150, validators=[MinLengthValidator(3)]) email = models.EmailField( @@ -157,7 +258,16 @@ class User(AbstractBaseUser): objects = CustomUserManager() - def is_member_of_tenant(self, tenant_id): + def is_member_of_tenant(self, tenant_id: str) -> bool: + """ + Check if user belongs to a specific tenant. + + Args: + tenant_id: UUID of the tenant to check membership for. + + Returns: + bool: True if user has a membership in the tenant. + """ return self.memberships.filter(tenant_id=tenant_id).exists() def save(self, *args, **kwargs): @@ -180,7 +290,33 @@ class JSONAPIMeta: class Membership(models.Model): + """ + Associates users with tenants and defines their role within each tenant. + + A user can have multiple memberships across different tenants, but only + one membership per tenant. The role determines the user's permissions + within that tenant context. + + Attributes: + id: UUID primary key. + user: Foreign key to the User model. + tenant: Foreign key to the Tenant model. + role: User's role within the tenant (owner or member). + date_joined: Timestamp when user joined the tenant. + + Constraints: + - Unique constraint on (user, tenant) combination. + """ + class RoleChoices(models.TextChoices): + """ + Available roles for tenant membership. + + Attributes: + OWNER: Full administrative access to the tenant. + MEMBER: Standard access with limited administrative capabilities. + """ + OWNER = "owner", _("Owner") MEMBER = "member", _("Member") @@ -219,6 +355,28 @@ class JSONAPIMeta: class TenantAPIKey(AbstractAPIKey, RowLevelSecurityProtectedModel): + """ + API key model for programmatic access to tenant resources. + + Provides secure, tenant-scoped API keys with automatic prefix generation + and usage tracking. Keys are protected by row-level security. + + Attributes: + id: UUID primary key. + name: Human-readable key name (3-100 characters). + created: Timestamp of key creation. + prefix: Unique 11-character prefix for key identification. + last_used_at: Timestamp of last authentication with this key. + entity: Optional user who owns this key. + + Example: + >>> api_key = TenantAPIKey.objects.create( + ... name="CI/CD Pipeline Key", + ... tenant=tenant + ... ) + >>> key_string = TenantAPIKey.objects.assign_api_key(api_key) + """ + id = models.UUIDField(primary_key=True, default=uuid4, editable=False) name = models.CharField(max_length=100, validators=[MinLengthValidator(3)]) created = models.DateTimeField(auto_now_add=True, editable=False) @@ -274,10 +432,52 @@ class JSONAPIMeta: class Provider(RowLevelSecurityProtectedModel): + """ + Represents a cloud provider account connected to Prowler for security scanning. + + Providers are the primary entities that scans are executed against. Each provider + represents a single cloud account (AWS account, Azure subscription, GCP project, etc.) + and stores connection metadata, credentials reference, and scan configuration. + + Supports soft deletion via is_deleted flag to preserve historical scan data. + + Attributes: + id: UUID primary key. + inserted_at: Timestamp of creation. + updated_at: Timestamp of last modification. + is_deleted: Soft delete flag (filtered by default manager). + provider: Cloud provider type (aws, azure, gcp, etc.). + uid: Provider-specific unique identifier (e.g., AWS account ID). + alias: Optional human-readable name. + connected: Connection status (True/False/None for unknown). + connection_last_checked_at: Timestamp of last connection check. + metadata: Provider-specific metadata as JSON. + scanner_args: Custom scanner arguments as JSON. + + Managers: + objects: Returns only active (non-deleted) providers. + all_objects: Returns all providers including deleted. + + Example: + >>> provider = Provider.objects.create( + ... tenant=tenant, + ... provider=Provider.ProviderChoices.AWS, + ... uid="123456789012", + ... alias="Production Account" + ... ) + """ + objects = ActiveProviderManager() all_objects = models.Manager() class ProviderChoices(models.TextChoices): + """ + Supported cloud provider types. + + Each provider type has specific UID validation rules enforced + by the corresponding validate_*_uid static methods. + """ + AWS = "aws", _("AWS") AZURE = "azure", _("Azure") GCP = "gcp", _("GCP") @@ -451,6 +651,28 @@ class JSONAPIMeta: class ProviderGroup(RowLevelSecurityProtectedModel): + """ + Logical grouping of providers for organizational purposes. + + Provider groups allow tenants to organize their cloud accounts into + logical units (e.g., by environment, team, or business unit). Groups + can be used for role-based access control and bulk operations. + + Attributes: + id: UUID primary key. + name: Group name (unique per tenant). + inserted_at: Timestamp of creation. + updated_at: Timestamp of last modification. + providers: Many-to-many relationship with Provider model. + + Example: + >>> group = ProviderGroup.objects.create( + ... tenant=tenant, + ... name="Production Accounts" + ... ) + >>> group.providers.add(aws_provider, azure_provider) + """ + id = models.UUIDField(primary_key=True, default=uuid4, editable=False) name = models.CharField(max_length=255) inserted_at = models.DateTimeField(auto_now_add=True, editable=False) @@ -478,6 +700,18 @@ class JSONAPIMeta: class ProviderGroupMembership(RowLevelSecurityProtectedModel): + """ + Through model for Provider-ProviderGroup many-to-many relationship. + + Tracks which providers belong to which groups with tenant isolation. + + Attributes: + id: UUID primary key. + provider_group: Foreign key to ProviderGroup. + provider: Foreign key to Provider. + inserted_at: Timestamp when provider was added to group. + """ + id = models.UUIDField(primary_key=True, default=uuid4, editable=False) provider_group = models.ForeignKey(ProviderGroup, on_delete=models.CASCADE) provider = models.ForeignKey(Provider, on_delete=models.CASCADE) @@ -502,6 +736,18 @@ class JSONAPIMeta: class Task(RowLevelSecurityProtectedModel): + """ + Tracks background task execution for scans and other async operations. + + Links Prowler's internal task tracking with Celery's TaskResult model + to provide unified task status and result access. + + Attributes: + id: UUID primary key. + inserted_at: Timestamp of task creation. + task_runner_task: One-to-one link to Celery TaskResult. + """ + id = models.UUIDField(primary_key=True, default=uuid4, editable=False) inserted_at = models.DateTimeField(auto_now_add=True, editable=False) task_runner_task = models.OneToOneField( @@ -536,12 +782,30 @@ class JSONAPIMeta: class Scan(RowLevelSecurityProtectedModel): + """ + Represents a security scan execution against a cloud provider. + + A scan captures the state of security findings at a point in time, + tracking progress, duration, and results. Scans can be triggered + manually, scheduled automatically, or created via data import. + """ + objects = ActiveProviderManager() all_objects = models.Manager() class TriggerChoices(models.TextChoices): + """ + Defines how a scan was initiated. + + Attributes: + SCHEDULED: Scan triggered by an automated schedule (e.g., daily scan). + MANUAL: Scan triggered by user action through the UI or API. + IMPORTED: Scan created from imported external data (e.g., CLI output). + """ + SCHEDULED = "scheduled", _("Scheduled") MANUAL = "manual", _("Manual") + IMPORTED = "imported", _("Imported") id = models.UUIDField(primary_key=True, default=uuid7, editable=False) name = models.CharField( @@ -627,6 +891,23 @@ class JSONAPIMeta: class ResourceTag(RowLevelSecurityProtectedModel): + """ + Stores key-value tag pairs associated with cloud resources. + + Tags are deduplicated at the tenant level - the same key-value pair + is stored once and referenced by multiple resources via ResourceTagMapping. + + Includes full-text search support for efficient tag-based filtering. + + Attributes: + id: UUID primary key. + inserted_at: Timestamp of creation. + updated_at: Timestamp of last modification. + key: Tag key (e.g., "Environment", "Owner"). + value: Tag value (e.g., "Production", "DevOps Team"). + text_search: Generated field for full-text search. + """ + id = models.UUIDField(primary_key=True, default=uuid4, editable=False) inserted_at = models.DateTimeField(auto_now_add=True, editable=False) updated_at = models.DateTimeField(auto_now=True, editable=False) @@ -664,6 +945,46 @@ class Meta(RowLevelSecurityProtectedModel.Meta): class Resource(RowLevelSecurityProtectedModel): + """ + Represents a cloud resource discovered during security scans. + + Resources are unique per provider and identified by their provider-assigned UID. + They store metadata about the resource and track associated findings. + + Includes full-text search support across uid, name, region, service, and type. + + Attributes: + id: UUID primary key. + inserted_at: Timestamp of creation. + updated_at: Timestamp of last modification. + provider: Foreign key to the Provider that owns this resource. + uid: Provider-assigned unique identifier (e.g., ARN for AWS). + name: Human-readable resource name. + region: Geographic region/location of the resource. + service: Cloud service the resource belongs to (e.g., "ec2", "s3"). + type: Resource type within the service (e.g., "instance", "bucket"). + metadata: Additional resource metadata as text. + details: Extended resource details as text. + partition: Cloud partition (e.g., "aws", "aws-cn", "aws-us-gov"). + failed_findings_count: Denormalized count of failed findings. + tags: Many-to-many relationship with ResourceTag. + + Managers: + objects: Returns resources from active (non-deleted) providers. + all_objects: Returns all resources. + + Example: + >>> resource = Resource.objects.create( + ... tenant=tenant, + ... provider=aws_provider, + ... uid="arn:aws:s3:::my-bucket", + ... name="my-bucket", + ... region="us-east-1", + ... service="s3", + ... type="bucket" + ... ) + """ + objects = ActiveProviderManager() all_objects = models.Manager() @@ -781,6 +1102,18 @@ class JSONAPIMeta: class ResourceTagMapping(RowLevelSecurityProtectedModel): + """ + Through model for Resource-ResourceTag many-to-many relationship. + + Enables efficient tag association while maintaining tenant isolation. + Note: Primary key is included for Django ORM compatibility. + + Attributes: + id: UUID primary key. + resource: Foreign key to Resource. + tag: Foreign key to ResourceTag. + """ + # NOTE that we don't really need a primary key here, # but everything is easier with django if we do id = models.UUIDField(primary_key=True, default=uuid4, editable=False) @@ -817,11 +1150,53 @@ class Meta(RowLevelSecurityProtectedModel.Meta): class Finding(PostgresPartitionedModel, RowLevelSecurityProtectedModel): """ - Defines the Finding model. + Security finding from a Prowler scan. + + Findings represent individual security check results against cloud resources. + Uses PostgreSQL table partitioning based on UUIDv7 id for efficient querying + of large datasets. + + The model tracks finding status, severity, associated resources, and supports + muting for acknowledged issues. Full-text search is available on impact and + status extended fields. - Findings uses a partitioned table to store findings. The partitions are created based on the UUIDv7 `id` field. + Attributes: + id: UUIDv7 primary key (time-ordered for partitioning). + inserted_at: Timestamp of finding creation. + updated_at: Timestamp of last modification. + first_seen_at: When this finding was first detected. + uid: Unique identifier for the finding within a scan. + delta: Change status (new, changed, or None for unchanged). + status: Finding result (PASS, FAIL, MANUAL). + status_extended: Detailed status explanation. + severity: Finding severity level. + impact: Impact severity level. + impact_extended: Detailed impact description. + raw_result: Original Prowler check output as JSON. + tags: Resource tags as JSON. + check_id: Prowler check identifier (e.g., "s3_bucket_public_access"). + check_metadata: Check configuration and metadata as JSON. + muted: Whether finding is muted/acknowledged. + muted_reason: Explanation for muting (3-500 characters). + muted_at: Timestamp when finding was muted. + compliance: Compliance framework mappings as JSON. + scan: Foreign key to the parent Scan. + resources: Many-to-many relationship with Resource. + + Managers: + objects: Returns findings from active providers only. + all_objects: Returns all findings. - Note when creating migrations, you must use `python manage.py pgmakemigrations` to create the migrations. + Note: + When creating migrations, use `python manage.py pgmakemigrations` + to properly handle partitioned table changes. + + Example: + >>> findings = Finding.objects.filter( + ... scan=scan, + ... status=StatusChoices.FAIL, + ... severity__in=["critical", "high"] + ... ) """ objects = ActiveProviderPartitionedManager() @@ -832,6 +1207,14 @@ class PartitioningMeta: key = ["id"] class DeltaChoices(models.TextChoices): + """ + Change status for findings between scans. + + Attributes: + NEW: Finding detected for the first time. + CHANGED: Finding status changed from previous scan. + """ + NEW = "new", _("New") CHANGED = "changed", _("Changed") @@ -1045,10 +1428,55 @@ class Meta(RowLevelSecurityProtectedModel.Meta): class ProviderSecret(RowLevelSecurityProtectedModel): + """ + Encrypted credentials for cloud provider authentication. + + Stores provider-specific authentication credentials with Fernet encryption. + Each provider can have at most one associated secret. The secret property + handles transparent encryption/decryption. + + Attributes: + id: UUID primary key. + inserted_at: Timestamp of creation. + updated_at: Timestamp of last modification. + name: Optional human-readable name. + secret_type: Type of credential (static, role, service_account). + provider: One-to-one relationship with Provider. + + Secret Types: + - static: Key-value pairs (e.g., AWS access keys) + - role: IAM role assumption configuration + - service_account: GCP service account JSON key + + Example: + >>> secret = ProviderSecret.objects.create( + ... tenant=tenant, + ... provider=aws_provider, + ... secret_type=ProviderSecret.TypeChoices.STATIC, + ... name="AWS Credentials" + ... ) + >>> secret.secret = { + ... 'aws_access_key_id': 'AKIA...', + ... 'aws_secret_access_key': '...' + ... } + >>> secret.save() + >>> # Decryption is automatic + >>> creds = secret.secret # Returns decrypted dict + """ + objects = ActiveProviderManager() all_objects = models.Manager() class TypeChoices(models.TextChoices): + """ + Credential type options. + + Attributes: + STATIC: Static key-value credentials (access keys, tokens). + ROLE: IAM role assumption (AWS AssumeRole, Azure managed identity). + SERVICE_ACCOUNT: GCP service account JSON key file. + """ + STATIC = "static", _("Key-value pairs") ROLE = "role", _("Role assumption") SERVICE_ACCOUNT = "service_account", _("GCP Service Account Key") @@ -1100,7 +1528,48 @@ def secret(self, value): class Invitation(RowLevelSecurityProtectedModel): + """ + Tenant membership invitation for new users. + + Manages the invitation workflow for adding users to a tenant. Invitations + have a unique token, expiration date, and state tracking. Email addresses + are normalized to lowercase. + + Attributes: + id: UUID primary key. + inserted_at: Timestamp of creation. + updated_at: Timestamp of last modification. + email: Invitee's email address. + state: Current invitation state. + token: Unique 14-character invitation token. + expires_at: Expiration timestamp (default: 1 week). + inviter: User who created the invitation. + + State Lifecycle: + PENDING → ACCEPTED (user accepts) + → EXPIRED (time expires) + → REVOKED (admin revokes) + + Example: + >>> invitation = Invitation.objects.create( + ... tenant=tenant, + ... email="newuser@example.com", + ... inviter=current_user + ... ) + >>> # Send invitation.token to user via email + """ + class State(models.TextChoices): + """ + Invitation state options. + + Attributes: + PENDING: Awaiting user action. + ACCEPTED: User accepted and joined tenant. + EXPIRED: Invitation expired without action. + REVOKED: Admin cancelled the invitation. + """ + PENDING = "pending", _("Invitation is pending") ACCEPTED = "accepted", _("Invitation was accepted by a user") EXPIRED = "expired", _("Invitation expired after the configured time") @@ -1154,6 +1623,43 @@ class JSONAPIMeta: class Role(RowLevelSecurityProtectedModel): + """ + RBAC role with granular permission flags and provider group scoping. + + Roles define what actions users can perform within a tenant. Permissions + are boolean flags for each capability. Provider group associations limit + visibility to specific provider subsets. + + Attributes: + id: UUID primary key. + name: Role name (unique per tenant). + manage_users: Can manage tenant users. + manage_account: Can modify account settings. + manage_billing: Can access billing information. + manage_providers: Can add/modify providers. + manage_integrations: Can configure integrations. + manage_scans: Can execute and manage scans. + unlimited_visibility: Can see all providers (ignores group scoping). + inserted_at: Timestamp of creation. + updated_at: Timestamp of last modification. + provider_groups: Scoped provider groups for limited visibility. + users: Users assigned to this role. + invitations: Pending invitations with this role. + + Properties: + permission_state: Returns UNLIMITED, LIMITED, or NONE based on flags. + + Example: + >>> role = Role.objects.create( + ... tenant=tenant, + ... name="Security Analyst", + ... manage_scans=True, + ... unlimited_visibility=False + ... ) + >>> role.provider_groups.add(production_group) + >>> role.users.add(analyst_user) + """ + id = models.UUIDField(primary_key=True, default=uuid4, editable=False) name = models.CharField(max_length=255) manage_users = models.BooleanField(default=False) diff --git a/api/src/backend/api/parsers/README.md b/api/src/backend/api/parsers/README.md new file mode 100644 index 0000000000..c473a8efed --- /dev/null +++ b/api/src/backend/api/parsers/README.md @@ -0,0 +1,781 @@ +# Prowler API Parsers Module + +This module provides parsing functionality for importing external scan results into the Prowler platform. It supports various output formats from the Prowler CLI and other security scanning tools. + +## Overview + +The parsers module enables the "Scan Results Import" feature, allowing users to upload scan results from Prowler CLI executions and have them processed and stored in the Prowler platform database. + +## Supported Formats + +| Format | Status | Parser | Description | +|--------|--------|--------|-------------| +| JSON/OCSF | ✅ Implemented | `ocsf_parser` | Open Cybersecurity Schema Framework format (Prowler's default JSON output) | +| CSV | ✅ Implemented | `csv_parser` | Semicolon/comma-separated values format (Prowler's CSV output) | + +## Installation + +The parsers module is part of the Prowler API package. No additional installation is required. + +```python +# OCSF Parser +from api.parsers import parse_ocsf_json, OCSFFinding + +# CSV Parser +from api.parsers import parse_csv, CSVFinding +``` + +## Quick Start + +### Parsing OCSF JSON Content + +```python +from api.parsers import parse_ocsf_json, OCSFParseError + +# Read Prowler CLI JSON output +with open("prowler_output.ocsf.json", "rb") as f: + content = f.read() + +try: + findings = parse_ocsf_json(content) + print(f"Parsed {len(findings)} findings") + + for finding in findings: + print(f"- {finding.check_id}: {finding.status} ({finding.severity})") +except OCSFParseError as e: + print(f"Failed to parse: {e}") +``` + +### Validating OCSF Content + +```python +from api.parsers import validate_ocsf_content + +result = validate_ocsf_content(content) + +if result.is_valid: + print("Content is valid OCSF format") +else: + for error in result.errors: + print(f"Error: {error.message} (field: {error.field})") +``` + +### Extracting Provider Information + +```python +from api.parsers import parse_ocsf_json, extract_provider_info + +findings = parse_ocsf_json(content) +provider_info = extract_provider_info(findings) + +if provider_info: + provider_type, account_uid = provider_info + print(f"Provider: {provider_type}, Account: {account_uid}") +``` + +### Parsing CSV Content + +```python +from api.parsers import parse_csv, CSVParseError + +# Read Prowler CLI CSV output +with open("prowler_output.csv", "rb") as f: + content = f.read() + +try: + findings = parse_csv(content) + print(f"Parsed {len(findings)} findings") + + for finding in findings: + print(f"- {finding.check_id}: {finding.status} ({finding.severity})") +except CSVParseError as e: + print(f"Failed to parse: {e}") +``` + +### Validating CSV Content + +```python +from api.parsers import validate_csv_content + +result = validate_csv_content(content) + +if result.is_valid: + print("Content is valid CSV format") +else: + for error in result.errors: + print(f"Error: {error.message} (field: {error.field})") +``` + +### Extracting Provider Information from CSV + +```python +from api.parsers import parse_csv, extract_provider_info_csv + +findings = parse_csv(content) +provider_info = extract_provider_info_csv(findings) + +if provider_info: + provider_type, account_uid = provider_info + print(f"Provider: {provider_type}, Account: {account_uid}") +``` + +## API Reference + +### Data Classes + +#### `OCSFFinding` + +Represents a parsed security finding from OCSF JSON. + +```python +@dataclass +class OCSFFinding: + uid: str # Unique finding identifier + check_id: str # Check/event code (e.g., "accessanalyzer_enabled") + severity: str # Normalized severity (lowercase): critical, high, medium, low, informational + status: str # Normalized status (uppercase): PASS, FAIL, MANUAL + status_extended: str # Detailed status message + message: str # Finding message + impact_extended: str # Impact description + check_metadata: OCSFCheckMetadata # Check metadata (title, description, remediation) + compliance: dict[str, list[str]] # Compliance framework mappings + resources: list[OCSFResource] # Associated cloud resources + provider_type: str # Cloud provider (aws, azure, gcp, etc.) + account_uid: str # Cloud account identifier + account_name: str # Cloud account display name + timestamp: datetime | None # Finding timestamp + raw_result: dict[str, Any] # Original OCSF data +``` + +**Class Methods:** + +- `from_dict(data: dict, index: int = 0) -> OCSFFinding`: Parse from dictionary + +#### `OCSFResource` + +Represents a cloud resource associated with a finding. + +```python +@dataclass +class OCSFResource: + uid: str # Resource unique identifier (e.g., ARN) + name: str # Resource display name + region: str # Cloud region + service: str # Cloud service (e.g., "s3", "ec2") + type: str # Resource type + cloud_partition: str # Cloud partition (e.g., "aws") + labels: list[str] # Resource labels/tags + data: dict[str, Any] # Additional resource data +``` + +**Class Methods:** + +- `from_dict(data: dict, index: int = 0) -> OCSFResource`: Parse from dictionary + +#### `OCSFCheckMetadata` + +Metadata about the security check that generated the finding. + +```python +@dataclass +class OCSFCheckMetadata: + title: str # Check title + description: str # Check description + risk: str # Risk description + remediation_description: str # How to remediate + remediation_references: list[str] # Reference URLs + categories: list[str] # Check categories + related_url: str # Related documentation URL +``` + +#### `OCSFValidationResult` + +Result of OCSF content validation. + +```python +@dataclass +class OCSFValidationResult: + is_valid: bool # Overall validation status + errors: list[OCSFValidationError] # Validation errors (fatal) + warnings: list[OCSFValidationError] # Validation warnings (non-fatal) +``` + +**Methods:** + +- `add_error(message, field_path, index=None, value=None)`: Add a validation error +- `add_warning(message, field_path, index=None, value=None)`: Add a validation warning + +#### `OCSFValidationError` + +Represents a single validation error or warning. + +```python +@dataclass +class OCSFValidationError: + message: str # Error message + field: str # Field path (e.g., "cloud.account.uid") + index: int | None # Finding index (if applicable) + value: Any # Invalid value (if applicable) +``` + +**Methods:** + +- `to_dict() -> dict[str, Any]`: Convert to dictionary for API responses + +### CSV Data Classes + +#### `CSVFinding` + +Represents a parsed security finding from CSV. + +```python +@dataclass +class CSVFinding: + uid: str # Unique finding identifier (FINDING_UID) + check_id: str # Check identifier (CHECK_ID) + severity: str # Normalized severity (lowercase): critical, high, medium, low, informational + status: str # Normalized status (uppercase): PASS, FAIL, MANUAL + status_extended: str # Detailed status message (STATUS_EXTENDED) + muted: bool # Whether finding is muted + check_metadata: CSVCheckMetadata # Check metadata (title, description, remediation) + compliance: dict[str, list[str]] # Compliance framework mappings (pipe-separated format) + resource: CSVResource # Associated cloud resource + provider_type: str # Cloud provider (aws, azure, gcp, etc.) + account_uid: str # Cloud account identifier + account_name: str # Cloud account display name + account_email: str # Cloud account email + account_organization_uid: str # Organization identifier + account_organization_name: str # Organization name + account_tags: str # Account tags + auth_method: str # Authentication method used + timestamp: datetime | None # Finding timestamp + raw_row: dict[str, str] # Original CSV row data +``` + +**Class Methods:** + +- `from_row(row: dict[str, str], row_num: int = 0) -> CSVFinding`: Parse from CSV row dictionary + +#### `CSVResource` + +Represents a cloud resource associated with a CSV finding. + +```python +@dataclass +class CSVResource: + uid: str # Resource unique identifier (RESOURCE_UID) + name: str # Resource display name (RESOURCE_NAME) + region: str # Cloud region (REGION) + service: str # Cloud service (SERVICE_NAME) + type: str # Resource type (RESOURCE_TYPE) + partition: str # Cloud partition (PARTITION) + tags: str # Resource tags (RESOURCE_TAGS) + details: str # Additional details (RESOURCE_DETAILS) +``` + +**Class Methods:** + +- `from_row(row: dict[str, str], row_num: int = 0) -> CSVResource`: Parse from CSV row dictionary + +#### `CSVCheckMetadata` + +Metadata about the security check from CSV. + +```python +@dataclass +class CSVCheckMetadata: + title: str # Check title (CHECK_TITLE) + description: str # Check description (DESCRIPTION) + risk: str # Risk description (RISK) + remediation_description: str # Remediation text (REMEDIATION_RECOMMENDATION_TEXT) + remediation_url: str # Remediation URL (REMEDIATION_RECOMMENDATION_URL) + remediation_cli: str # CLI remediation (REMEDIATION_CODE_CLI) + remediation_terraform: str # Terraform remediation (REMEDIATION_CODE_TERRAFORM) + remediation_nativeiac: str # Native IaC remediation (REMEDIATION_CODE_NATIVEIAC) + remediation_other: str # Other remediation (REMEDIATION_CODE_OTHER) + categories: list[str] # Check categories (CATEGORIES) + related_url: str # Related URL (RELATED_URL) + additional_urls: list[str] # Additional URLs (ADDITIONAL_URLS) + notes: str # Notes (NOTES) +``` + +#### `CSVValidationResult` + +Result of CSV content validation. + +```python +@dataclass +class CSVValidationResult: + is_valid: bool # Overall validation status + errors: list[CSVValidationError] # Validation errors (fatal) + warnings: list[CSVValidationError] # Validation warnings (non-fatal) +``` + +**Methods:** + +- `add_error(message, field_path, row=None, value=None)`: Add a validation error +- `add_warning(message, field_path, row=None, value=None)`: Add a validation warning + +#### `CSVValidationError` + +Represents a single CSV validation error or warning. + +```python +@dataclass +class CSVValidationError: + message: str # Error message + field: str # Column name + row: int | None # Row number (if applicable) + value: Any # Invalid value (if applicable) +``` + +**Methods:** + +- `to_dict() -> dict[str, Any]`: Convert to dictionary for API responses + +### Exceptions + +#### `OCSFParseError` + +Raised when OCSF parsing fails. + +```python +class OCSFParseError(Exception): + message: str # Error message + index: int | None # Finding index where error occurred + field: str | None # Field that caused the error +``` + +#### `CSVParseError` + +Raised when CSV parsing fails. + +```python +class CSVParseError(Exception): + message: str # Error message + row: int | None # Row number where error occurred + column: str | None # Column name that caused the error +``` + +### Functions + +#### `parse_ocsf_json(content: bytes) -> list[OCSFFinding]` + +Parse OCSF JSON content into a list of findings. + +**Parameters:** +- `content`: Raw bytes containing OCSF JSON data (array of findings) + +**Returns:** +- List of `OCSFFinding` objects + +**Raises:** +- `OCSFParseError`: If content is not valid JSON or doesn't match OCSF format + +**Example:** +```python +findings = parse_ocsf_json(b'[{"metadata": {"event_code": "check_1"}, ...}]') +``` + +#### `validate_ocsf_structure(content: bytes) -> tuple[bool, str | None]` + +Lightweight validation for quick format detection. + +**Parameters:** +- `content`: Raw bytes to validate + +**Returns:** +- Tuple of `(is_valid, error_message)`. If valid, `error_message` is `None`. + +**Example:** +```python +is_valid, error = validate_ocsf_structure(content) +if not is_valid: + print(f"Invalid format: {error}") +``` + +#### `validate_ocsf_content(content: bytes, strict: bool = False, max_errors: int = 100) -> OCSFValidationResult` + +Comprehensive validation of OCSF content. + +**Parameters:** +- `content`: Raw bytes containing OCSF JSON data +- `strict`: If `True`, treat warnings as errors +- `max_errors`: Maximum errors to collect before stopping + +**Returns:** +- `OCSFValidationResult` with validation status, errors, and warnings + +**Example:** +```python +result = validate_ocsf_content(content, strict=True) +if not result.is_valid: + for error in result.errors: + print(f"{error.field}: {error.message}") +``` + +#### `validate_ocsf_finding(data: dict, index: int = 0, strict: bool = False) -> OCSFValidationResult` + +Validate a single OCSF finding dictionary. + +**Parameters:** +- `data`: Dictionary containing finding data +- `index`: Finding index for error reporting +- `strict`: If `True`, treat warnings as errors + +**Returns:** +- `OCSFValidationResult` for the single finding + +#### `extract_provider_info(findings: list[OCSFFinding]) -> tuple[str, str] | None` + +Extract provider type and account UID from parsed findings. + +**Parameters:** +- `findings`: List of parsed OCSF findings + +**Returns:** +- Tuple of `(provider_type, account_uid)` or `None` if no findings + +### CSV Functions + +#### `parse_csv(content: bytes) -> list[CSVFinding]` + +Parse CSV content into a list of findings. Automatically detects semicolon or comma delimiter. + +**Parameters:** +- `content`: Raw bytes containing CSV data + +**Returns:** +- List of `CSVFinding` objects + +**Raises:** +- `CSVParseError`: If content is not valid CSV or doesn't match expected Prowler format + +**Example:** +```python +csv_data = b"FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID\nfinding-1;aws;check_1;PASS;123456789012" +findings = parse_csv(csv_data) +``` + +#### `validate_csv_structure(content: bytes) -> tuple[bool, str | None]` + +Lightweight validation for quick format detection. + +**Parameters:** +- `content`: Raw bytes to validate + +**Returns:** +- Tuple of `(is_valid, error_message)`. If valid, `error_message` is `None`. + +**Example:** +```python +is_valid, error = validate_csv_structure(content) +if not is_valid: + print(f"Invalid format: {error}") +``` + +#### `validate_csv_content(content: bytes, strict: bool = False, max_errors: int = 100) -> CSVValidationResult` + +Comprehensive validation of CSV content. + +**Parameters:** +- `content`: Raw bytes containing CSV data +- `strict`: If `True`, treat warnings as errors +- `max_errors`: Maximum errors to collect before stopping + +**Returns:** +- `CSVValidationResult` with validation status, errors, and warnings + +**Example:** +```python +result = validate_csv_content(content, strict=True) +if not result.is_valid: + for error in result.errors: + print(f"Row {error.row}: {error.field} - {error.message}") +``` + +#### `extract_provider_info_csv(findings: list[CSVFinding]) -> tuple[str, str] | None` + +Extract provider type and account UID from parsed CSV findings. + +**Parameters:** +- `findings`: List of parsed CSV findings + +**Returns:** +- Tuple of `(provider_type, account_uid)` or `None` if no findings + +### Helper Functions + +#### `get_supported_provider_types() -> list[str]` + +Get sorted list of supported cloud provider types. + +**Returns:** +- `["alibabacloud", "aws", "azure", "gcp", "github", "kubernetes", "m365", "mongodbatlas", "nhn", "oraclecloud"]` + +#### `get_valid_severity_levels() -> list[str]` + +Get sorted list of valid severity levels. + +**Returns:** +- `["critical", "high", "informational", "low", "medium"]` + +#### `get_valid_status_codes() -> list[str]` + +Get sorted list of valid status codes. + +**Returns:** +- `["FAIL", "MANUAL", "PASS"]` + +### CSV Helper Functions + +#### `get_required_csv_columns() -> list[str]` + +Get sorted list of required CSV columns. + +**Returns:** +- `["ACCOUNT_UID", "CHECK_ID", "FINDING_UID", "PROVIDER", "STATUS"]` + +#### `get_expected_csv_columns() -> list[str]` + +Get sorted list of all expected CSV columns. + +**Returns:** +- Complete list of 42 expected Prowler CSV columns + +### Constants + +| Constant | Type | Description | +|----------|------|-------------| +| `SUPPORTED_PROVIDER_TYPES` | `frozenset[str]` | Valid cloud provider types | +| `VALID_SEVERITY_LEVELS` | `frozenset[str]` | Valid severity levels (lowercase) | +| `VALID_STATUS_CODES` | `frozenset[str]` | Valid status codes (uppercase) | +| `REQUIRED_OCSF_TOP_LEVEL_FIELDS` | `frozenset[str]` | Required top-level OCSF fields | +| `REQUIRED_OCSF_NESTED_FIELDS` | `dict[str, str]` | Required nested fields with descriptions | +| `REQUIRED_CSV_COLUMNS` | `frozenset[str]` | Required CSV columns | +| `EXPECTED_CSV_COLUMNS` | `frozenset[str]` | All expected CSV columns | + +## OCSF Format Reference + +### Required Fields + +Every OCSF finding must contain: + +```json +{ + "metadata": { + "event_code": "check_id" // Required: Check identifier + }, + "finding_info": { + "uid": "finding-uuid" // Required: Unique finding ID + }, + "cloud": { + "provider": "aws", // Required: Provider type + "account": { + "uid": "123456789012" // Required: Account identifier + } + } +} +``` + +### Complete Example + +```json +{ + "message": "IAM Access Analyzer is not enabled.", + "metadata": { + "event_code": "accessanalyzer_enabled", + "product": {"name": "Prowler", "version": "5.0.0"} + }, + "severity": "Low", + "status_code": "FAIL", + "status_detail": "IAM Access Analyzer is not enabled in us-east-1.", + "finding_info": { + "uid": "prowler-aws-accessanalyzer_enabled-123456789012-us-east-1", + "title": "Check if IAM Access Analyzer is enabled", + "desc": "Ensure IAM Access Analyzer is enabled for all regions." + }, + "cloud": { + "provider": "aws", + "account": {"uid": "123456789012", "name": "Production"}, + "region": "us-east-1" + }, + "resources": [ + { + "uid": "arn:aws:accessanalyzer:us-east-1:123456789012:analyzer", + "name": "analyzer", + "region": "us-east-1", + "group": {"name": "accessanalyzer"}, + "type": "Other" + } + ], + "remediation": { + "desc": "Enable IAM Access Analyzer in all regions.", + "references": ["https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer.html"] + }, + "risk_details": "Without Access Analyzer, you may miss unintended resource access.", + "unmapped": { + "compliance": {"CIS-1.4": ["1.20"], "CIS-1.5": ["1.20"]}, + "categories": ["security", "iam"], + "related_url": "https://docs.aws.amazon.com/" + }, + "time": 1739539623, + "time_dt": "2025-02-14T14:27:03.913874" +} +``` + +## CSV Format Reference + +### Delimiter Detection + +The CSV parser automatically detects the delimiter by analyzing the first line: +- **Semicolon (`;`)**: Prowler's default CSV delimiter +- **Comma (`,`)**: Standard CSV delimiter + +When delimiter counts are equal, semicolon is preferred (Prowler default). + +### Required Columns + +Every CSV file must contain these columns: + +| Column | Description | +|--------|-------------| +| `FINDING_UID` | Unique finding identifier | +| `PROVIDER` | Cloud provider type (aws, azure, gcp, etc.) | +| `CHECK_ID` | Check identifier | +| `STATUS` | Finding status (PASS, FAIL, MANUAL) | +| `ACCOUNT_UID` | Cloud account identifier | + +### Compliance Column Format + +The `COMPLIANCE` column uses a pipe-separated format for multiple frameworks: + +``` +FRAMEWORK1: control1, control2 | FRAMEWORK2: control3, control4 +``` + +**Example:** +``` +CIS-1.4: 1.20, 1.21 | CIS-1.5: 1.20 | NIST: AC-1, AC-2 +``` + +### Complete CSV Example + +```csv +FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;SEVERITY;STATUS_EXTENDED;RESOURCE_UID;RESOURCE_NAME;REGION;SERVICE_NAME;RESOURCE_TYPE;COMPLIANCE +finding-001;aws;accessanalyzer_enabled;FAIL;123456789012;low;IAM Access Analyzer is not enabled;arn:aws:accessanalyzer:us-east-1:123456789012:analyzer;analyzer;us-east-1;accessanalyzer;Other;CIS-1.4: 1.20 | CIS-1.5: 1.20 +finding-002;aws;s3_bucket_public_access;PASS;123456789012;high;S3 bucket has public access blocked;arn:aws:s3:::my-bucket;my-bucket;us-east-1;s3;bucket;CIS-1.4: 2.1.1 +``` + +### All Expected Columns + +The parser recognizes these 42 columns (all optional except required columns): + +| Category | Columns | +|----------|---------| +| **Identity** | `FINDING_UID`, `PROVIDER`, `CHECK_ID`, `CHECK_TITLE`, `CHECK_TYPE` | +| **Status** | `STATUS`, `STATUS_EXTENDED`, `MUTED`, `SEVERITY` | +| **Account** | `ACCOUNT_UID`, `ACCOUNT_NAME`, `ACCOUNT_EMAIL`, `ACCOUNT_ORGANIZATION_UID`, `ACCOUNT_ORGANIZATION_NAME`, `ACCOUNT_TAGS` | +| **Resource** | `RESOURCE_UID`, `RESOURCE_NAME`, `RESOURCE_TYPE`, `RESOURCE_DETAILS`, `RESOURCE_TAGS` | +| **Location** | `REGION`, `PARTITION`, `SERVICE_NAME`, `SUBSERVICE_NAME` | +| **Metadata** | `DESCRIPTION`, `RISK`, `RELATED_URL`, `CATEGORIES`, `DEPENDS_ON`, `RELATED_TO`, `NOTES` | +| **Remediation** | `REMEDIATION_RECOMMENDATION_TEXT`, `REMEDIATION_RECOMMENDATION_URL`, `REMEDIATION_CODE_CLI`, `REMEDIATION_CODE_TERRAFORM`, `REMEDIATION_CODE_NATIVEIAC`, `REMEDIATION_CODE_OTHER` | +| **Other** | `AUTH_METHOD`, `TIMESTAMP`, `COMPLIANCE`, `PROWLER_VERSION`, `ADDITIONAL_URLS` | + +## Error Handling + +### OCSF Parse Errors + +```python +from api.parsers import parse_ocsf_json, OCSFParseError + +try: + findings = parse_ocsf_json(content) +except OCSFParseError as e: + # e.message - Error description + # e.index - Finding index (if applicable) + # e.field - Field path (if applicable) + logger.error(f"Parse error: {e}") +``` + +### CSV Parse Errors + +```python +from api.parsers import parse_csv, CSVParseError + +try: + findings = parse_csv(content) +except CSVParseError as e: + # e.message - Error description + # e.row - Row number (if applicable) + # e.column - Column name (if applicable) + logger.error(f"Parse error: {e}") +``` + +### OCSF Validation Errors + +```python +from api.parsers import validate_ocsf_content + +result = validate_ocsf_content(content) + +for error in result.errors: + logger.error(f"[{error.index}] {error.field}: {error.message}") + +for warning in result.warnings: + logger.warning(f"[{warning.index}] {warning.field}: {warning.message}") +``` + +### CSV Validation Errors + +```python +from api.parsers import validate_csv_content + +result = validate_csv_content(content) + +for error in result.errors: + logger.error(f"Row {error.row}: {error.field} - {error.message}") + +for warning in result.warnings: + logger.warning(f"Row {warning.row}: {warning.field} - {warning.message}") +``` + +## Testing + +Run the parser tests: + +```bash +cd api/src/backend + +# Run OCSF parser tests +poetry run pytest api/tests/test_ocsf_parser.py -v + +# Run CSV parser tests +poetry run pytest api/tests/test_csv_parser.py -v + +# Run all parser tests +poetry run pytest api/tests/test_ocsf_parser.py api/tests/test_csv_parser.py -v +``` + +## Related Documentation + +- [Scan Results Import Feature Spec](/.kiro/specs/scan-results-import/) +- [API Models Documentation](/api/docs/models.md) +- [OCSF Specification](https://schema.ocsf.io/) + +## Changelog + +### v1.1.0 (CSV Parser) + +- Added CSV parser with semicolon/comma delimiter auto-detection +- Support for Prowler CLI CSV output format (42 columns) +- Pipe-separated compliance column parsing +- Comprehensive validation with row-level error reporting +- Helper functions for column introspection + +### v1.0.0 (Initial Release) + +- Added OCSF parser with full validation support +- Support for all Prowler-supported cloud providers +- Comprehensive error handling and reporting +- Validation functions for format detection and content verification diff --git a/api/src/backend/api/parsers/__init__.py b/api/src/backend/api/parsers/__init__.py new file mode 100644 index 0000000000..5a87987dd4 --- /dev/null +++ b/api/src/backend/api/parsers/__init__.py @@ -0,0 +1,210 @@ +""" +Parsers module for importing scan results from various formats. + +This package provides parsing functionality for Prowler CLI output files, +enabling the import of external scan results into the Prowler platform. + +Supported Formats +----------------- +- **JSON/OCSF**: Open Cybersecurity Schema Framework format (Prowler's default JSON output) +- **CSV**: Semicolon-separated values format (Prowler's CSV output) + +Quick Start +----------- +Parse OCSF JSON content:: + + from api.parsers import parse_ocsf_json, OCSFParseError + + try: + findings = parse_ocsf_json(json_content) + for finding in findings: + print(f"{finding.check_id}: {finding.status}") + except OCSFParseError as e: + print(f"Parse error: {e}") + +Parse CSV content:: + + from api.parsers import parse_csv, CSVParseError + + try: + findings = parse_csv(csv_content) + for finding in findings: + print(f"{finding.check_id}: {finding.status}") + except CSVParseError as e: + print(f"Parse error: {e}") + +Validate content before parsing:: + + from api.parsers import validate_ocsf_content, validate_csv_content + + result = validate_ocsf_content(content) + if result.is_valid: + findings = parse_ocsf_json(content) + + result = validate_csv_content(content) + if result.is_valid: + findings = parse_csv(content) + +Extract provider information:: + + from api.parsers import extract_provider_info + + provider_info = extract_provider_info(findings) + if provider_info: + provider_type, account_uid = provider_info + +Exports +------- +OCSF Data Classes: + OCSFFinding : Parsed security finding from OCSF JSON + OCSFResource : Cloud resource associated with a finding + OCSFCheckMetadata : Metadata about the security check + OCSFValidationResult : Result of OCSF validation + OCSFValidationError : Single validation error or warning + +CSV Data Classes: + CSVFinding : Parsed security finding from CSV + CSVResource : Cloud resource associated with a finding + CSVCheckMetadata : Metadata about the security check + CSVValidationResult : Result of CSV validation + CSVValidationError : Single validation error or warning + +Exceptions: + OCSFParseError : Raised when OCSF parsing fails + CSVParseError : Raised when CSV parsing fails + +OCSF Functions: + parse_ocsf_json : Parse OCSF JSON content into findings + validate_ocsf_structure : Lightweight format validation + validate_ocsf_content : Comprehensive content validation + validate_ocsf_finding : Validate a single finding + extract_provider_info : Extract provider type and account UID (OCSF) + +CSV Functions: + parse_csv : Parse CSV content into findings + validate_csv_structure : Lightweight format validation + validate_csv_content : Comprehensive content validation + extract_provider_info_csv : Extract provider type and account UID (CSV) + +Helper Functions: + get_supported_provider_types : Get list of supported providers + get_valid_severity_levels : Get list of valid severities + get_valid_status_codes : Get list of valid status codes + get_required_csv_columns : Get list of required CSV columns + get_expected_csv_columns : Get list of all expected CSV columns + +Constants: + SUPPORTED_PROVIDER_TYPES : Valid cloud provider types (frozenset) + VALID_SEVERITY_LEVELS : Valid severity levels (frozenset) + VALID_STATUS_CODES : Valid status codes (frozenset) + REQUIRED_OCSF_TOP_LEVEL_FIELDS : Required top-level fields (frozenset) + REQUIRED_OCSF_NESTED_FIELDS : Required nested fields (dict) + REQUIRED_CSV_COLUMNS : Required CSV columns (frozenset) + EXPECTED_CSV_COLUMNS : All expected CSV columns (frozenset) + +See Also +-------- +- README.md in this directory for full API documentation +- api/docs/models.md for database model documentation +- .kiro/specs/scan-results-import/ for feature specification + +Note +---- +Uses relative imports (e.g., `from .ocsf_parser`) to ensure proper +package resolution regardless of how the module is imported. +""" + +# OCSF Parser - Handles JSON/OCSF format from Prowler CLI +# Uses relative import for package-internal module resolution +from .ocsf_parser import ( + # Data Classes + OCSFCheckMetadata, + OCSFFinding, + OCSFResource, + OCSFValidationError, + OCSFValidationResult, + # Exception + OCSFParseError, + # Constants + REQUIRED_OCSF_NESTED_FIELDS, + REQUIRED_OCSF_TOP_LEVEL_FIELDS, + SUPPORTED_PROVIDER_TYPES, + VALID_SEVERITY_LEVELS, + VALID_STATUS_CODES, + # Core Functions + extract_provider_info, + parse_ocsf_json, + validate_ocsf_content, + validate_ocsf_finding, + validate_ocsf_structure, + # Helper Functions + get_supported_provider_types, + get_valid_severity_levels, + get_valid_status_codes, +) + +# CSV Parser - Handles CSV format from Prowler CLI +from .csv_parser import ( + # Data Classes + CSVCheckMetadata, + CSVFinding, + CSVResource, + CSVValidationError, + CSVValidationResult, + # Exception + CSVParseError, + # Constants + EXPECTED_CSV_COLUMNS, + REQUIRED_CSV_COLUMNS, + # Core Functions + parse_csv, + validate_csv_content, + validate_csv_structure, +) +from .csv_parser import extract_provider_info as extract_provider_info_csv +from .csv_parser import get_expected_csv_columns, get_required_csv_columns + +# Public API - All symbols exported for external use +__all__ = [ + # OCSF Data Classes + "OCSFCheckMetadata", + "OCSFFinding", + "OCSFResource", + "OCSFValidationError", + "OCSFValidationResult", + # CSV Data Classes + "CSVCheckMetadata", + "CSVFinding", + "CSVResource", + "CSVValidationError", + "CSVValidationResult", + # Exceptions + "OCSFParseError", + "CSVParseError", + # OCSF Constants + "REQUIRED_OCSF_NESTED_FIELDS", + "REQUIRED_OCSF_TOP_LEVEL_FIELDS", + "SUPPORTED_PROVIDER_TYPES", + "VALID_SEVERITY_LEVELS", + "VALID_STATUS_CODES", + # CSV Constants + "REQUIRED_CSV_COLUMNS", + "EXPECTED_CSV_COLUMNS", + # OCSF Core Functions + "extract_provider_info", + "parse_ocsf_json", + "validate_ocsf_content", + "validate_ocsf_finding", + "validate_ocsf_structure", + # CSV Core Functions + "extract_provider_info_csv", + "parse_csv", + "validate_csv_content", + "validate_csv_structure", + # Helper Functions + "get_supported_provider_types", + "get_valid_severity_levels", + "get_valid_status_codes", + "get_required_csv_columns", + "get_expected_csv_columns", +] diff --git a/api/src/backend/api/parsers/csv_parser.py b/api/src/backend/api/parsers/csv_parser.py new file mode 100644 index 0000000000..5bd9f78243 --- /dev/null +++ b/api/src/backend/api/parsers/csv_parser.py @@ -0,0 +1,918 @@ +""" +CSV Parser for Prowler scan results. + +This module provides parsing functionality for Prowler CLI CSV output format. +It extracts findings, resources, and provider information from semicolon-delimited CSV. +""" + +import csv +import io +import logging +from dataclasses import dataclass, field +from datetime import datetime +from typing import Any + +logger = logging.getLogger(__name__) + +# Supported provider types for validation (same as OCSF parser) +SUPPORTED_PROVIDER_TYPES = frozenset( + { + "aws", + "azure", + "gcp", + "kubernetes", + "github", + "m365", + "alibabacloud", + "nhn", + "oraclecloud", + "mongodbatlas", + } +) + +# Valid severity levels (normalized to lowercase) +VALID_SEVERITY_LEVELS = frozenset( + { + "critical", + "high", + "medium", + "low", + "informational", + } +) + +# Valid status codes (normalized to uppercase) +VALID_STATUS_CODES = frozenset( + { + "PASS", + "FAIL", + "MANUAL", + } +) + +# Required CSV columns for validation +REQUIRED_CSV_COLUMNS = frozenset( + { + "FINDING_UID", + "PROVIDER", + "CHECK_ID", + "STATUS", + "ACCOUNT_UID", + } +) + +# All expected CSV columns (for reference and validation) +EXPECTED_CSV_COLUMNS = frozenset( + { + "AUTH_METHOD", + "TIMESTAMP", + "ACCOUNT_UID", + "ACCOUNT_NAME", + "ACCOUNT_EMAIL", + "ACCOUNT_ORGANIZATION_UID", + "ACCOUNT_ORGANIZATION_NAME", + "ACCOUNT_TAGS", + "FINDING_UID", + "PROVIDER", + "CHECK_ID", + "CHECK_TITLE", + "CHECK_TYPE", + "STATUS", + "STATUS_EXTENDED", + "MUTED", + "SERVICE_NAME", + "SUBSERVICE_NAME", + "SEVERITY", + "RESOURCE_TYPE", + "RESOURCE_UID", + "RESOURCE_NAME", + "RESOURCE_DETAILS", + "RESOURCE_TAGS", + "PARTITION", + "REGION", + "DESCRIPTION", + "RISK", + "RELATED_URL", + "REMEDIATION_RECOMMENDATION_TEXT", + "REMEDIATION_RECOMMENDATION_URL", + "REMEDIATION_CODE_NATIVEIAC", + "REMEDIATION_CODE_TERRAFORM", + "REMEDIATION_CODE_CLI", + "REMEDIATION_CODE_OTHER", + "COMPLIANCE", + "CATEGORIES", + "DEPENDS_ON", + "RELATED_TO", + "NOTES", + "PROWLER_VERSION", + "ADDITIONAL_URLS", + } +) + + +class CSVParseError(Exception): + """Exception raised when CSV parsing fails.""" + + def __init__( + self, + message: str, + row: int | None = None, + column: str | None = None, + ): + self.message = message + self.row = row + self.column = column + super().__init__(self._format_message()) + + def _format_message(self) -> str: + parts = [self.message] + if self.row is not None: + parts.append(f"at row {self.row}") + if self.column: + parts.append(f"(column: {self.column})") + return " ".join(parts) + + +@dataclass +class CSVValidationError: + """Represents a single CSV validation error.""" + + message: str + field: str + row: int | None = None + value: Any = None + + def to_dict(self) -> dict[str, Any]: + """Convert to dictionary for API responses.""" + result = { + "message": self.message, + "field": self.field, + } + if self.row is not None: + result["row"] = self.row + if self.value is not None: + result["value"] = str(self.value)[:100] # Truncate long values + return result + + +@dataclass +class CSVValidationResult: + """Result of CSV validation.""" + + is_valid: bool + errors: list[CSVValidationError] = field(default_factory=list) + warnings: list[CSVValidationError] = field(default_factory=list) + + def add_error( + self, + message: str, + field_path: str, + row: int | None = None, + value: Any = None, + ) -> None: + """Add a validation error.""" + self.errors.append( + CSVValidationError( + message=message, + field=field_path, + row=row, + value=value, + ) + ) + self.is_valid = False + + def add_warning( + self, + message: str, + field_path: str, + row: int | None = None, + value: Any = None, + ) -> None: + """Add a validation warning (non-fatal).""" + self.warnings.append( + CSVValidationError( + message=message, + field=field_path, + row=row, + value=value, + ) + ) + + +@dataclass +class CSVResource: + """Parsed CSV resource structure.""" + + uid: str + name: str + region: str + service: str + type: str + partition: str = "" + tags: str = "" + details: str = "" + + @classmethod + def from_row(cls, row: dict[str, str], row_num: int = 0) -> "CSVResource": + """ + Create a CSVResource from a CSV row dictionary. + + Args: + row: Dictionary containing CSV row data. + row_num: Row number for error reporting. + + Returns: + CSVResource instance. + + Raises: + CSVParseError: If required fields are missing. + """ + uid = row.get("RESOURCE_UID", "").strip() + if not uid: + raise CSVParseError( + "Missing required field 'RESOURCE_UID'", + row=row_num, + column="RESOURCE_UID", + ) + + return cls( + uid=uid, + name=row.get("RESOURCE_NAME", uid).strip() or uid, + region=row.get("REGION", "").strip(), + service=row.get("SERVICE_NAME", "").strip(), + type=row.get("RESOURCE_TYPE", "").strip(), + partition=row.get("PARTITION", "").strip(), + tags=row.get("RESOURCE_TAGS", "").strip(), + details=row.get("RESOURCE_DETAILS", "").strip(), + ) + + +@dataclass +class CSVCheckMetadata: + """Check metadata extracted from CSV row.""" + + title: str = "" + description: str = "" + risk: str = "" + remediation_description: str = "" + remediation_url: str = "" + remediation_cli: str = "" + remediation_terraform: str = "" + remediation_nativeiac: str = "" + remediation_other: str = "" + categories: list[str] = field(default_factory=list) + related_url: str = "" + additional_urls: list[str] = field(default_factory=list) + notes: str = "" + + +@dataclass +class CSVFinding: + """Parsed CSV finding structure.""" + + # Core finding identifiers + uid: str + check_id: str + + # Status and severity + severity: str + status: str + status_extended: str + + # Muted flag + muted: bool + + # Check metadata + check_metadata: CSVCheckMetadata + + # Compliance mappings + compliance: dict[str, list[str]] + + # Associated resource + resource: CSVResource + + # Provider information + provider_type: str + account_uid: str + account_name: str + account_email: str + account_organization_uid: str + account_organization_name: str + account_tags: str + + # Authentication method + auth_method: str + + # Timestamps + timestamp: datetime | None = None + + # Raw data for reference + raw_row: dict[str, str] = field(default_factory=dict) + + @classmethod + def from_row(cls, row: dict[str, str], row_num: int = 0) -> "CSVFinding": + """ + Create a CSVFinding from a CSV row dictionary. + + Args: + row: Dictionary containing CSV row data. + row_num: Row number for error reporting. + + Returns: + CSVFinding instance. + + Raises: + CSVParseError: If required fields are missing or invalid. + """ + # Extract and validate required fields + finding_uid = row.get("FINDING_UID", "").strip() + if not finding_uid: + raise CSVParseError( + "Missing required field 'FINDING_UID'", + row=row_num, + column="FINDING_UID", + ) + + check_id = row.get("CHECK_ID", "").strip() + if not check_id: + raise CSVParseError( + "Missing required field 'CHECK_ID'", + row=row_num, + column="CHECK_ID", + ) + + provider_type = row.get("PROVIDER", "").strip() + if not provider_type: + raise CSVParseError( + "Missing required field 'PROVIDER'", + row=row_num, + column="PROVIDER", + ) + + # Normalize and validate provider type + provider_type_normalized = provider_type.lower() + if provider_type_normalized not in SUPPORTED_PROVIDER_TYPES: + logger.warning( + f"Unknown provider type '{provider_type}' at row {row_num}. " + f"Supported types: {', '.join(sorted(SUPPORTED_PROVIDER_TYPES))}" + ) + # Don't fail - allow unknown providers but log warning + + account_uid = row.get("ACCOUNT_UID", "").strip() + if not account_uid: + raise CSVParseError( + "Missing required field 'ACCOUNT_UID'", + row=row_num, + column="ACCOUNT_UID", + ) + + # Extract severity (normalize to lowercase) + severity = row.get("SEVERITY", "informational").strip().lower() + if severity not in VALID_SEVERITY_LEVELS: + logger.warning( + f"Unknown severity '{severity}' at row {row_num}, " + "defaulting to 'informational'" + ) + severity = "informational" + + # Extract status (normalize to uppercase) + status = row.get("STATUS", "").strip().upper() + if status not in VALID_STATUS_CODES: + logger.warning( + f"Unknown status '{status}' at row {row_num}, defaulting to 'MANUAL'" + ) + status = "MANUAL" + + # Extract status extended + status_extended = row.get("STATUS_EXTENDED", "").strip() + + # Extract muted flag + muted_str = row.get("MUTED", "").strip().lower() + muted = muted_str in ("true", "1", "yes") + + # Parse compliance column (pipe-separated frameworks) + compliance = _parse_compliance(row.get("COMPLIANCE", "")) + + # Parse categories + categories_str = row.get("CATEGORIES", "").strip() + categories = [c.strip() for c in categories_str.split(",") if c.strip()] + + # Parse additional URLs + additional_urls_str = row.get("ADDITIONAL_URLS", "").strip() + additional_urls = [ + u.strip() for u in additional_urls_str.split("|") if u.strip() + ] + + # Build check metadata + check_metadata = CSVCheckMetadata( + title=row.get("CHECK_TITLE", "").strip(), + description=row.get("DESCRIPTION", "").strip(), + risk=row.get("RISK", "").strip(), + remediation_description=row.get( + "REMEDIATION_RECOMMENDATION_TEXT", "" + ).strip(), + remediation_url=row.get("REMEDIATION_RECOMMENDATION_URL", "").strip(), + remediation_cli=row.get("REMEDIATION_CODE_CLI", "").strip(), + remediation_terraform=row.get("REMEDIATION_CODE_TERRAFORM", "").strip(), + remediation_nativeiac=row.get("REMEDIATION_CODE_NATIVEIAC", "").strip(), + remediation_other=row.get("REMEDIATION_CODE_OTHER", "").strip(), + categories=categories, + related_url=row.get("RELATED_URL", "").strip(), + additional_urls=additional_urls, + notes=row.get("NOTES", "").strip(), + ) + + # Parse resource + resource = CSVResource.from_row(row, row_num) + + # Parse timestamp + timestamp = None + timestamp_str = row.get("TIMESTAMP", "").strip() + if timestamp_str: + timestamp = _parse_timestamp(timestamp_str) + + return cls( + uid=finding_uid, + check_id=check_id, + severity=severity, + status=status, + status_extended=status_extended, + muted=muted, + check_metadata=check_metadata, + compliance=compliance, + resource=resource, + provider_type=provider_type_normalized, + account_uid=account_uid, + account_name=row.get("ACCOUNT_NAME", "").strip(), + account_email=row.get("ACCOUNT_EMAIL", "").strip(), + account_organization_uid=row.get("ACCOUNT_ORGANIZATION_UID", "").strip(), + account_organization_name=row.get("ACCOUNT_ORGANIZATION_NAME", "").strip(), + account_tags=row.get("ACCOUNT_TAGS", "").strip(), + auth_method=row.get("AUTH_METHOD", "").strip(), + timestamp=timestamp, + raw_row=dict(row), + ) + + +def _parse_compliance(compliance_str: str) -> dict[str, list[str]]: + """ + Parse the compliance column from Prowler CSV. + + Format: "FRAMEWORK1: control1, control2 | FRAMEWORK2: control3" + + Args: + compliance_str: Raw compliance string from CSV. + + Returns: + Dictionary mapping framework names to lists of controls. + """ + result: dict[str, list[str]] = {} + + if not compliance_str or not compliance_str.strip(): + return result + + # Split by pipe to get individual framework entries + entries = compliance_str.split("|") + + for entry in entries: + entry = entry.strip() + if not entry: + continue + + # Split by colon to separate framework from controls + if ":" in entry: + parts = entry.split(":", 1) + framework = parts[0].strip() + controls_str = parts[1].strip() if len(parts) > 1 else "" + + if framework: + # Split controls by comma + controls = [c.strip() for c in controls_str.split(",") if c.strip()] + if framework in result: + result[framework].extend(controls) + else: + result[framework] = controls + else: + # No colon - treat entire entry as framework with no controls + framework = entry.strip() + if framework and framework not in result: + result[framework] = [] + + return result + + +def _parse_timestamp(timestamp_str: str) -> datetime | None: + """ + Parse timestamp string from CSV. + + Supports multiple formats: + - ISO 8601: "2025-02-14T14:27:03.913874" + - Space-separated: "2025-02-14 14:27:03.913874" + + Args: + timestamp_str: Raw timestamp string. + + Returns: + Parsed datetime or None if parsing fails. + """ + if not timestamp_str: + return None + + # Try different formats + formats = [ + "%Y-%m-%dT%H:%M:%S.%f", # ISO 8601 with microseconds + "%Y-%m-%d %H:%M:%S.%f", # Space-separated with microseconds + "%Y-%m-%dT%H:%M:%S", # ISO 8601 without microseconds + "%Y-%m-%d %H:%M:%S", # Space-separated without microseconds + "%Y-%m-%d", # Date only + ] + + for fmt in formats: + try: + return datetime.strptime(timestamp_str, fmt) + except ValueError: + continue + + logger.warning(f"Could not parse timestamp: {timestamp_str}") + return None + + +def _detect_delimiter(content_str: str) -> str: + """ + Detect the CSV delimiter by analyzing the first line. + + Args: + content_str: CSV content as string. + + Returns: + Detected delimiter (semicolon or comma). + """ + first_line = content_str.split("\n")[0] if "\n" in content_str else content_str + + # Count occurrences of potential delimiters + semicolon_count = first_line.count(";") + comma_count = first_line.count(",") + + # Prowler default is semicolon, prefer it if counts are close + if semicolon_count >= comma_count: + return ";" + return "," + + +def parse_csv(content: bytes) -> list[CSVFinding]: + """ + Parse CSV content into a list of CSVFinding objects. + + Args: + content: Raw bytes containing CSV data. + + Returns: + List of CSVFinding objects. + + Raises: + CSVParseError: If the content is not valid CSV or doesn't match + the expected Prowler format. + """ + # Decode bytes to string + try: + content_str = content.decode("utf-8") + except UnicodeDecodeError as e: + raise CSVParseError(f"Invalid UTF-8 encoding: {e}") + + if not content_str.strip(): + raise CSVParseError("CSV content is empty") + + # Detect delimiter + delimiter = _detect_delimiter(content_str) + + # Parse CSV + try: + reader = csv.DictReader(io.StringIO(content_str), delimiter=delimiter) + headers = reader.fieldnames + + if not headers: + raise CSVParseError("CSV has no headers") + + # Validate required columns exist + headers_set = set(headers) + missing_required = REQUIRED_CSV_COLUMNS - headers_set + if missing_required: + raise CSVParseError( + f"Missing required CSV columns: {', '.join(sorted(missing_required))}" + ) + + # Warn about unexpected columns + unexpected = headers_set - EXPECTED_CSV_COLUMNS + if unexpected: + logger.warning( + f"CSV contains unexpected columns: {', '.join(sorted(unexpected))}" + ) + + # Parse each row + findings: list[CSVFinding] = [] + errors: list[str] = [] + + for row_num, row in enumerate(reader, start=2): # Start at 2 (header is row 1) + try: + finding = CSVFinding.from_row(row, row_num) + findings.append(finding) + except CSVParseError as e: + errors.append(str(e)) + + # If all rows failed to parse, raise an error + if len(errors) > 0 and len(findings) == 0: + raise CSVParseError( + f"Failed to parse any rows. Errors: {'; '.join(errors[:5])}" + + (f" (and {len(errors) - 5} more)" if len(errors) > 5 else "") + ) + + # Log warnings for partial failures + if len(errors) > 0: + logger.warning( + f"Parsed {len(findings)} findings with {len(errors)} errors: " + f"{'; '.join(errors[:3])}" + ) + + return findings + + except csv.Error as e: + raise CSVParseError(f"CSV parsing error: {e}") + + +def validate_csv_structure(content: bytes) -> tuple[bool, str | None]: + """ + Validate that content is valid Prowler CSV without fully parsing. + + This is a lightweight validation for quick format detection. + + Args: + content: Raw bytes to validate. + + Returns: + Tuple of (is_valid, error_message). + If valid, error_message is None. + """ + try: + content_str = content.decode("utf-8") + except UnicodeDecodeError: + return False, "Invalid UTF-8 encoding" + + if not content_str.strip(): + return False, "CSV content is empty" + + # Detect delimiter + delimiter = _detect_delimiter(content_str) + + try: + reader = csv.DictReader(io.StringIO(content_str), delimiter=delimiter) + headers = reader.fieldnames + + if not headers: + return False, "CSV has no headers" + + # Check for required columns + headers_set = set(headers) + missing_required = REQUIRED_CSV_COLUMNS - headers_set + if missing_required: + return ( + False, + f"Missing required columns: {', '.join(sorted(missing_required))}", + ) + + # Try to read first row to validate structure + try: + first_row = next(reader, None) + if first_row is None: + return True, None # Empty CSV with headers is valid + + # Check that required fields have values + for col in REQUIRED_CSV_COLUMNS: + if not first_row.get(col, "").strip(): + return False, f"First row missing value for required column: {col}" + + except csv.Error as e: + return False, f"CSV parsing error: {e}" + + return True, None + + except csv.Error as e: + return False, f"CSV parsing error: {e}" + + +def validate_csv_content( + content: bytes, + strict: bool = False, + max_errors: int = 100, +) -> CSVValidationResult: + """ + Validate CSV content comprehensively. + + This function performs full validation of CSV content, checking: + - CSV syntax and structure + - Required columns + - Required field values + - Provider type validity + - Severity and status values + + Args: + content: Raw bytes containing CSV data. + strict: If True, treat warnings as errors. + max_errors: Maximum number of errors to collect before stopping. + + Returns: + CSVValidationResult with comprehensive validation results. + """ + result = CSVValidationResult(is_valid=True) + + # Decode bytes to string + try: + content_str = content.decode("utf-8") + except UnicodeDecodeError as e: + result.add_error(f"Invalid UTF-8 encoding: {e}", "content") + return result + + if not content_str.strip(): + result.add_error("CSV content is empty", "content") + return result + + # Detect delimiter + delimiter = _detect_delimiter(content_str) + + try: + reader = csv.DictReader(io.StringIO(content_str), delimiter=delimiter) + headers = reader.fieldnames + + if not headers: + result.add_error("CSV has no headers", "headers") + return result + + # Check for required columns + headers_set = set(headers) + missing_required = REQUIRED_CSV_COLUMNS - headers_set + if missing_required: + for col in sorted(missing_required): + result.add_error(f"Missing required column: {col}", col) + return result + + # Warn about unexpected columns + unexpected = headers_set - EXPECTED_CSV_COLUMNS + for col in sorted(unexpected): + result.add_warning(f"Unexpected column: {col}", col) + + # Validate each row + row_count = 0 + for row_num, row in enumerate(reader, start=2): + if len(result.errors) >= max_errors: + result.add_warning( + f"Validation stopped after {max_errors} errors. " + f"Additional rows not validated.", + "content", + ) + break + + row_count += 1 + _validate_csv_row(row, row_num, result, strict) + + if row_count == 0: + result.add_warning("CSV contains no data rows", "content") + + except csv.Error as e: + result.add_error(f"CSV parsing error: {e}", "content") + + return result + + +def _validate_csv_row( + row: dict[str, str], + row_num: int, + result: CSVValidationResult, + strict: bool, +) -> None: + """ + Validate a single CSV row. + + Args: + row: Dictionary containing CSV row data. + row_num: Row number for error reporting. + result: CSVValidationResult to add errors/warnings to. + strict: If True, treat warnings as errors. + """ + # Check required fields have values + for col in REQUIRED_CSV_COLUMNS: + value = row.get(col, "").strip() + if not value: + result.add_error( + f"Missing required value for '{col}'", + col, + row=row_num, + ) + + # Validate provider type + provider = row.get("PROVIDER", "").strip() + if provider: + provider_lower = provider.lower() + if provider_lower not in SUPPORTED_PROVIDER_TYPES: + msg = ( + f"Unknown provider type '{provider}'. " + f"Supported: {', '.join(sorted(SUPPORTED_PROVIDER_TYPES))}" + ) + if strict: + result.add_error(msg, "PROVIDER", row=row_num, value=provider) + else: + result.add_warning(msg, "PROVIDER", row=row_num, value=provider) + + # Validate severity + severity = row.get("SEVERITY", "").strip() + if severity: + severity_lower = severity.lower() + if severity_lower not in VALID_SEVERITY_LEVELS: + msg = ( + f"Unknown severity '{severity}'. " + f"Valid values: {', '.join(sorted(VALID_SEVERITY_LEVELS))}" + ) + if strict: + result.add_error(msg, "SEVERITY", row=row_num, value=severity) + else: + result.add_warning(msg, "SEVERITY", row=row_num, value=severity) + + # Validate status + status = row.get("STATUS", "").strip() + if status: + status_upper = status.upper() + if status_upper not in VALID_STATUS_CODES: + msg = ( + f"Unknown status '{status}'. " + f"Valid values: {', '.join(sorted(VALID_STATUS_CODES))}" + ) + if strict: + result.add_error(msg, "STATUS", row=row_num, value=status) + else: + result.add_warning(msg, "STATUS", row=row_num, value=status) + + +def extract_provider_info(findings: list[CSVFinding]) -> tuple[str, str] | None: + """ + Extract provider type and account UID from parsed findings. + + Args: + findings: List of parsed CSV findings. + + Returns: + Tuple of (provider_type, account_uid) or None if no findings. + """ + if not findings: + return None + + # Use the first finding's provider info + first = findings[0] + return (first.provider_type, first.account_uid) + + +def get_supported_provider_types() -> list[str]: + """ + Get list of supported provider types. + + Returns: + Sorted list of supported provider type strings. + """ + return sorted(SUPPORTED_PROVIDER_TYPES) + + +def get_valid_severity_levels() -> list[str]: + """ + Get list of valid severity levels. + + Returns: + Sorted list of valid severity level strings. + """ + return sorted(VALID_SEVERITY_LEVELS) + + +def get_valid_status_codes() -> list[str]: + """ + Get list of valid status codes. + + Returns: + Sorted list of valid status code strings. + """ + return sorted(VALID_STATUS_CODES) + + +def get_required_csv_columns() -> list[str]: + """ + Get list of required CSV columns. + + Returns: + Sorted list of required column names. + """ + return sorted(REQUIRED_CSV_COLUMNS) + + +def get_expected_csv_columns() -> list[str]: + """ + Get list of all expected CSV columns. + + Returns: + Sorted list of expected column names. + """ + return sorted(EXPECTED_CSV_COLUMNS) diff --git a/api/src/backend/api/parsers/ocsf_parser.py b/api/src/backend/api/parsers/ocsf_parser.py new file mode 100644 index 0000000000..f1b865b0a9 --- /dev/null +++ b/api/src/backend/api/parsers/ocsf_parser.py @@ -0,0 +1,800 @@ +""" +OCSF (Open Cybersecurity Schema Framework) Parser for Prowler scan results. + +This module provides parsing functionality for Prowler CLI JSON/OCSF output format. +It extracts findings, resources, and provider information from OCSF-formatted JSON. +""" + +import json +import logging +from dataclasses import dataclass, field +from datetime import datetime +from typing import Any + +logger = logging.getLogger(__name__) + +# Supported provider types for validation +SUPPORTED_PROVIDER_TYPES = frozenset( + { + "aws", + "azure", + "gcp", + "kubernetes", + "github", + "m365", + "alibabacloud", + "nhn", + "oraclecloud", + "mongodbatlas", + } +) + +# Valid severity levels (normalized to lowercase) +VALID_SEVERITY_LEVELS = frozenset( + { + "critical", + "high", + "medium", + "low", + "informational", + } +) + +# Valid status codes (normalized to uppercase) +VALID_STATUS_CODES = frozenset( + { + "PASS", + "FAIL", + "MANUAL", + } +) + +# Required top-level OCSF fields +REQUIRED_OCSF_TOP_LEVEL_FIELDS = frozenset( + { + "metadata", + "finding_info", + "cloud", + } +) + +# Required nested OCSF fields (path -> description) +REQUIRED_OCSF_NESTED_FIELDS = { + "metadata.event_code": "Check ID/event code", + "finding_info.uid": "Finding unique identifier", + "cloud.provider": "Cloud provider type", + "cloud.account.uid": "Cloud account identifier", +} + + +@dataclass +class OCSFValidationError: + """Represents a single validation error.""" + + message: str + field: str + index: int | None = None + value: Any = None + + def to_dict(self) -> dict[str, Any]: + """Convert to dictionary for API responses.""" + result = { + "message": self.message, + "field": self.field, + } + if self.index is not None: + result["index"] = self.index + if self.value is not None: + result["value"] = str(self.value)[:100] # Truncate long values + return result + + +@dataclass +class OCSFValidationResult: + """Result of OCSF validation.""" + + is_valid: bool + errors: list[OCSFValidationError] = field(default_factory=list) + warnings: list[OCSFValidationError] = field(default_factory=list) + + def add_error( + self, + message: str, + field_path: str, + index: int | None = None, + value: Any = None, + ) -> None: + """Add a validation error.""" + self.errors.append( + OCSFValidationError( + message=message, + field=field_path, + index=index, + value=value, + ) + ) + self.is_valid = False + + def add_warning( + self, + message: str, + field_path: str, + index: int | None = None, + value: Any = None, + ) -> None: + """Add a validation warning (non-fatal).""" + self.warnings.append( + OCSFValidationError( + message=message, + field=field_path, + index=index, + value=value, + ) + ) + + +class OCSFParseError(Exception): + """Exception raised when OCSF parsing fails.""" + + def __init__( + self, message: str, index: int | None = None, field: str | None = None + ): + self.message = message + self.index = index + self.field = field + super().__init__(self._format_message()) + + def _format_message(self) -> str: + parts = [self.message] + if self.index is not None: + parts.append(f"at index {self.index}") + if self.field: + parts.append(f"(field: {self.field})") + return " ".join(parts) + + +@dataclass +class OCSFResource: + """Parsed OCSF resource structure.""" + + uid: str + name: str + region: str + service: str + type: str + cloud_partition: str = "" + labels: list[str] = field(default_factory=list) + data: dict[str, Any] = field(default_factory=dict) + + @classmethod + def from_dict(cls, data: dict[str, Any], index: int = 0) -> "OCSFResource": + """ + Create an OCSFResource from a dictionary. + + Args: + data: Dictionary containing resource data from OCSF JSON. + index: Index of the finding for error reporting. + + Returns: + OCSFResource instance. + + Raises: + OCSFParseError: If required fields are missing. + """ + uid = data.get("uid") + if not uid: + raise OCSFParseError( + "Missing required field 'uid' in resource", index, "resources[].uid" + ) + + return cls( + uid=str(uid), + name=str(data.get("name", uid)), + region=str(data.get("region", "")), + service=str(data.get("group", {}).get("name", "")), + type=str(data.get("type", "")), + cloud_partition=str(data.get("cloud_partition", "")), + labels=data.get("labels", []), + data=data.get("data", {}), + ) + + +@dataclass +class OCSFCheckMetadata: + """Check metadata extracted from OCSF finding.""" + + title: str = "" + description: str = "" + risk: str = "" + remediation_description: str = "" + remediation_references: list[str] = field(default_factory=list) + categories: list[str] = field(default_factory=list) + related_url: str = "" + + +@dataclass +class OCSFFinding: + """Parsed OCSF finding structure.""" + + # Core finding identifiers + uid: str + check_id: str + + # Status and severity + severity: str + status: str + status_extended: str + + # Descriptive fields + message: str + impact_extended: str + + # Check metadata + check_metadata: OCSFCheckMetadata + + # Compliance mappings + compliance: dict[str, list[str]] + + # Associated resources + resources: list[OCSFResource] + + # Provider information + provider_type: str + account_uid: str + account_name: str + + # Timestamps + timestamp: datetime | None = None + + # Raw data for reference + raw_result: dict[str, Any] = field(default_factory=dict) + + @classmethod + def from_dict(cls, data: dict[str, Any], index: int = 0) -> "OCSFFinding": + """ + Create an OCSFFinding from a dictionary. + + Args: + data: Dictionary containing finding data from OCSF JSON. + index: Index of the finding for error reporting. + + Returns: + OCSFFinding instance. + + Raises: + OCSFParseError: If required fields are missing or invalid. + """ + # Extract and validate required fields + metadata = data.get("metadata", {}) + check_id = metadata.get("event_code") + if not check_id: + raise OCSFParseError( + "Missing required field 'metadata.event_code'", + index, + "metadata.event_code", + ) + + finding_info = data.get("finding_info", {}) + uid = finding_info.get("uid") + if not uid: + raise OCSFParseError( + "Missing required field 'finding_info.uid'", index, "finding_info.uid" + ) + + # Extract cloud/provider information + cloud = data.get("cloud", {}) + provider_type = cloud.get("provider", "") + if not provider_type: + raise OCSFParseError( + "Missing required field 'cloud.provider'", index, "cloud.provider" + ) + + # Normalize and validate provider type + provider_type_normalized = provider_type.lower() + if provider_type_normalized not in SUPPORTED_PROVIDER_TYPES: + logger.warning( + f"Unknown provider type '{provider_type}' at index {index}. " + f"Supported types: {', '.join(sorted(SUPPORTED_PROVIDER_TYPES))}" + ) + # Don't fail - allow unknown providers but log warning + + account = cloud.get("account", {}) + account_uid = account.get("uid", "") + if not account_uid: + raise OCSFParseError( + "Missing required field 'cloud.account.uid'", index, "cloud.account.uid" + ) + + # Extract severity (normalize to lowercase) + severity = str(data.get("severity", "informational")).lower() + if severity not in VALID_SEVERITY_LEVELS: + logger.warning( + f"Unknown severity '{severity}' at index {index}, defaulting to 'informational'" + ) + severity = "informational" + + # Extract status (normalize to uppercase for model compatibility) + status_code = str(data.get("status_code", "")).upper() + if status_code not in ("PASS", "FAIL", "MANUAL"): + # Default to MANUAL if unknown status + status_code = "MANUAL" + + # Extract status extended + status_extended = str(data.get("status_detail", data.get("message", ""))) + + # Extract message/impact + message = str(data.get("message", "")) + + # Extract remediation info + remediation = data.get("remediation", {}) + remediation_desc = str(remediation.get("desc", "")) + remediation_refs = remediation.get("references", []) + if not isinstance(remediation_refs, list): + remediation_refs = [] + + # Extract unmapped data (contains compliance, categories, etc.) + unmapped = data.get("unmapped", {}) + compliance = unmapped.get("compliance", {}) + if not isinstance(compliance, dict): + compliance = {} + + categories = unmapped.get("categories", []) + if not isinstance(categories, list): + categories = [] + + related_url = str(unmapped.get("related_url", "")) + + # Build check metadata + check_metadata = OCSFCheckMetadata( + title=str(finding_info.get("title", "")), + description=str(finding_info.get("desc", "")), + risk=str(data.get("risk_details", "")), + remediation_description=remediation_desc, + remediation_references=remediation_refs, + categories=categories, + related_url=related_url, + ) + + # Parse resources + resources_data = data.get("resources", []) + if not isinstance(resources_data, list): + resources_data = [] + + resources = [] + for res_data in resources_data: + try: + resources.append(OCSFResource.from_dict(res_data, index)) + except OCSFParseError: + # Log warning but continue - resource parsing is not critical + logger.warning(f"Failed to parse resource at finding index {index}") + + # Parse timestamp + timestamp = None + time_dt = data.get("time_dt") + if time_dt: + try: + timestamp = datetime.fromisoformat(str(time_dt)) + except (ValueError, TypeError): + # Try parsing from Unix timestamp + time_val = data.get("time") + if time_val: + try: + timestamp = datetime.fromtimestamp(float(time_val)) + except (ValueError, TypeError): + pass + + return cls( + uid=str(uid), + check_id=str(check_id), + severity=severity, + status=status_code, + status_extended=status_extended, + message=message, + impact_extended=message, # OCSF uses message for impact + check_metadata=check_metadata, + compliance=compliance, + resources=resources, + provider_type=provider_type_normalized, + account_uid=str(account_uid), + account_name=str(account.get("name", "")), + timestamp=timestamp, + raw_result=data, + ) + + +def parse_ocsf_json(content: bytes) -> list[OCSFFinding]: + """ + Parse OCSF JSON content into a list of OCSFFinding objects. + + Args: + content: Raw bytes containing OCSF JSON data (array of findings). + + Returns: + List of OCSFFinding objects. + + Raises: + OCSFParseError: If the content is not valid JSON or doesn't match + the expected OCSF format. + """ + # Decode bytes to string + try: + content_str = content.decode("utf-8") + except UnicodeDecodeError as e: + raise OCSFParseError(f"Invalid UTF-8 encoding: {e}") + + # Parse JSON + try: + data = json.loads(content_str) + except json.JSONDecodeError as e: + raise OCSFParseError(f"Invalid JSON: {e}") + + # Validate structure - must be a list + if not isinstance(data, list): + raise OCSFParseError("Invalid OCSF format: expected a JSON array of findings") + + if len(data) == 0: + logger.warning("OCSF JSON contains no findings") + return [] + + # Parse each finding + findings: list[OCSFFinding] = [] + errors: list[str] = [] + + for index, finding_data in enumerate(data): + if not isinstance(finding_data, dict): + errors.append(f"Finding at index {index} is not a JSON object") + continue + + try: + finding = OCSFFinding.from_dict(finding_data, index) + findings.append(finding) + except OCSFParseError as e: + errors.append(str(e)) + + # If all findings failed to parse, raise an error + if len(errors) > 0 and len(findings) == 0: + raise OCSFParseError( + f"Failed to parse any findings. Errors: {'; '.join(errors[:5])}" + + (f" (and {len(errors) - 5} more)" if len(errors) > 5 else "") + ) + + # Log warnings for partial failures + if len(errors) > 0: + logger.warning( + f"Parsed {len(findings)} findings with {len(errors)} errors: " + f"{'; '.join(errors[:3])}" + ) + + return findings + + +def validate_ocsf_structure(content: bytes) -> tuple[bool, str | None]: + """ + Validate that content is valid OCSF JSON without fully parsing. + + This is a lightweight validation for quick format detection. + + Args: + content: Raw bytes to validate. + + Returns: + Tuple of (is_valid, error_message). + If valid, error_message is None. + """ + try: + content_str = content.decode("utf-8") + except UnicodeDecodeError: + return False, "Invalid UTF-8 encoding" + + try: + data = json.loads(content_str) + except json.JSONDecodeError as e: + return False, f"Invalid JSON: {e}" + + if not isinstance(data, list): + return False, "Expected JSON array" + + if len(data) == 0: + return True, None # Empty array is valid + + # Check first item has expected OCSF fields + first_item = data[0] + if not isinstance(first_item, dict): + return False, "Array items must be objects" + + # Check for key OCSF fields + required_fields = ["metadata", "finding_info", "cloud"] + missing = [f for f in required_fields if f not in first_item] + if missing: + return False, f"Missing required OCSF fields: {', '.join(missing)}" + + # Check metadata has event_code + metadata = first_item.get("metadata", {}) + if not isinstance(metadata, dict) or "event_code" not in metadata: + return False, "Missing metadata.event_code" + + return True, None + + +def extract_provider_info(findings: list[OCSFFinding]) -> tuple[str, str] | None: + """ + Extract provider type and account UID from parsed findings. + + Args: + findings: List of parsed OCSF findings. + + Returns: + Tuple of (provider_type, account_uid) or None if no findings. + """ + if not findings: + return None + + # Use the first finding's provider info + first = findings[0] + return (first.provider_type, first.account_uid) + + +def _get_nested_value(data: dict[str, Any], path: str) -> Any: + """ + Get a nested value from a dictionary using dot notation. + + Args: + data: Dictionary to search. + path: Dot-separated path (e.g., "cloud.account.uid"). + + Returns: + The value at the path, or None if not found. + """ + keys = path.split(".") + current = data + for key in keys: + if not isinstance(current, dict): + return None + current = current.get(key) + if current is None: + return None + return current + + +def validate_ocsf_finding( + data: dict[str, Any], + index: int = 0, + strict: bool = False, +) -> OCSFValidationResult: + """ + Validate a single OCSF finding dictionary. + + Args: + data: Dictionary containing finding data from OCSF JSON. + index: Index of the finding for error reporting. + strict: If True, treat warnings as errors. + + Returns: + OCSFValidationResult with validation status and any errors/warnings. + """ + result = OCSFValidationResult(is_valid=True) + + # Validate required top-level fields + for field_name in REQUIRED_OCSF_TOP_LEVEL_FIELDS: + if field_name not in data: + result.add_error( + f"Missing required field '{field_name}'", + field_name, + index=index, + ) + elif not isinstance(data[field_name], dict): + result.add_error( + f"Field '{field_name}' must be an object", + field_name, + index=index, + value=type(data[field_name]).__name__, + ) + + # Validate required nested fields + for field_path, description in REQUIRED_OCSF_NESTED_FIELDS.items(): + value = _get_nested_value(data, field_path) + if value is None or (isinstance(value, str) and not value.strip()): + result.add_error( + f"Missing required field '{field_path}' ({description})", + field_path, + index=index, + ) + + # Validate provider type if present + provider_type = _get_nested_value(data, "cloud.provider") + if provider_type: + provider_type_lower = str(provider_type).lower() + if provider_type_lower not in SUPPORTED_PROVIDER_TYPES: + msg = ( + f"Unknown provider type '{provider_type}'. " + f"Supported: {', '.join(sorted(SUPPORTED_PROVIDER_TYPES))}" + ) + if strict: + result.add_error( + msg, "cloud.provider", index=index, value=provider_type + ) + else: + result.add_warning( + msg, "cloud.provider", index=index, value=provider_type + ) + + # Validate severity if present + severity = data.get("severity") + if severity: + severity_lower = str(severity).lower() + if severity_lower not in VALID_SEVERITY_LEVELS: + msg = ( + f"Unknown severity '{severity}'. " + f"Valid values: {', '.join(sorted(VALID_SEVERITY_LEVELS))}" + ) + if strict: + result.add_error(msg, "severity", index=index, value=severity) + else: + result.add_warning(msg, "severity", index=index, value=severity) + + # Validate status_code if present + status_code = data.get("status_code") + if status_code: + status_upper = str(status_code).upper() + if status_upper not in VALID_STATUS_CODES: + msg = ( + f"Unknown status_code '{status_code}'. " + f"Valid values: {', '.join(sorted(VALID_STATUS_CODES))}" + ) + if strict: + result.add_error(msg, "status_code", index=index, value=status_code) + else: + result.add_warning(msg, "status_code", index=index, value=status_code) + + # Validate resources array if present + resources = data.get("resources") + if resources is not None: + if not isinstance(resources, list): + result.add_error( + "Field 'resources' must be an array", + "resources", + index=index, + value=type(resources).__name__, + ) + else: + for res_idx, resource in enumerate(resources): + if not isinstance(resource, dict): + result.add_error( + f"Resource at index {res_idx} must be an object", + f"resources[{res_idx}]", + index=index, + ) + elif not resource.get("uid"): + result.add_error( + f"Resource at index {res_idx} missing required 'uid' field", + f"resources[{res_idx}].uid", + index=index, + ) + + # Validate compliance structure if present + unmapped = data.get("unmapped", {}) + if isinstance(unmapped, dict): + compliance = unmapped.get("compliance") + if compliance is not None and not isinstance(compliance, dict): + result.add_warning( + "Field 'unmapped.compliance' should be an object", + "unmapped.compliance", + index=index, + value=type(compliance).__name__, + ) + + return result + + +def validate_ocsf_content( + content: bytes, + strict: bool = False, + max_errors: int = 100, +) -> OCSFValidationResult: + """ + Validate OCSF JSON content comprehensively. + + This function performs full validation of OCSF content, checking: + - JSON syntax and structure + - Required fields at all levels + - Field types and formats + - Provider type validity + - Severity and status values + + Args: + content: Raw bytes containing OCSF JSON data. + strict: If True, treat warnings as errors. + max_errors: Maximum number of errors to collect before stopping. + + Returns: + OCSFValidationResult with comprehensive validation results. + """ + result = OCSFValidationResult(is_valid=True) + + # Decode bytes to string + try: + content_str = content.decode("utf-8") + except UnicodeDecodeError as e: + result.add_error(f"Invalid UTF-8 encoding: {e}", "content") + return result + + # Parse JSON + try: + data = json.loads(content_str) + except json.JSONDecodeError as e: + result.add_error( + f"Invalid JSON syntax at line {e.lineno}, column {e.colno}: {e.msg}", + "content", + ) + return result + + # Validate structure - must be a list + if not isinstance(data, list): + result.add_error( + f"Expected JSON array of findings, got {type(data).__name__}", + "content", + ) + return result + + if len(data) == 0: + result.add_warning("OCSF content contains no findings", "content") + return result + + # Validate each finding + for index, finding_data in enumerate(data): + if len(result.errors) >= max_errors: + result.add_warning( + f"Validation stopped after {max_errors} errors. " + f"Additional findings not validated.", + "content", + ) + break + + if not isinstance(finding_data, dict): + result.add_error( + f"Finding must be a JSON object, got {type(finding_data).__name__}", + f"[{index}]", + index=index, + ) + continue + + # Validate individual finding + finding_result = validate_ocsf_finding(finding_data, index, strict) + + # Merge errors and warnings + result.errors.extend(finding_result.errors) + result.warnings.extend(finding_result.warnings) + if not finding_result.is_valid: + result.is_valid = False + + return result + + +def get_supported_provider_types() -> list[str]: + """ + Get list of supported provider types. + + Returns: + Sorted list of supported provider type strings. + """ + return sorted(SUPPORTED_PROVIDER_TYPES) + + +def get_valid_severity_levels() -> list[str]: + """ + Get list of valid severity levels. + + Returns: + Sorted list of valid severity level strings. + """ + return sorted(VALID_SEVERITY_LEVELS) + + +def get_valid_status_codes() -> list[str]: + """ + Get list of valid status codes. + + Returns: + Sorted list of valid status code strings. + """ + return sorted(VALID_STATUS_CODES) diff --git a/api/src/backend/api/rls.py b/api/src/backend/api/rls.py index 285b06a974..e733c2f9a7 100644 --- a/api/src/backend/api/rls.py +++ b/api/src/backend/api/rls.py @@ -132,7 +132,9 @@ def deconstruct(self) -> tuple[str, tuple, dict]: path, _, kwargs = super().deconstruct() return (path, (self.target_field,), kwargs) - def validate(self, model, instance, exclude=None, using=DEFAULT_DB_ALIAS): # noqa: F841 + def validate( + self, model, instance, exclude=None, using=DEFAULT_DB_ALIAS + ): # noqa: F841 if not hasattr(instance, "tenant_id"): raise ValidationError(f"{model.__name__} does not have a tenant_id field.") diff --git a/api/src/backend/api/services/README.md b/api/src/backend/api/services/README.md new file mode 100644 index 0000000000..8995be9ff3 --- /dev/null +++ b/api/src/backend/api/services/README.md @@ -0,0 +1,454 @@ +# Prowler API Services + +This package contains business logic services for scan operations in the Prowler API. + +## Overview + +The services module provides high-level business logic that orchestrates database operations, parsing, and validation for scan-related functionality. Services are designed to be used by API views and handle complex multi-step operations within atomic transactions. + +## Modules + +### scan_import.py + +Service for importing external Prowler CLI scan results (JSON/OCSF and CSV formats) into the Prowler platform. + +## Quick Start + +```python +from api.services import ScanImportService, ScanImportResult, ScanImportError + +# Initialize service with tenant ID +service = ScanImportService(tenant_id="550e8400-e29b-41d4-a716-446655440000") + +# Import scan from file content +try: + result = service.import_scan( + file_content=file_bytes, + provider_id=None, # Auto-detect or create provider + create_provider=True + ) + print(f"Imported {result.findings_count} findings") + print(f"Scan ID: {result.scan_id}") +except ScanImportError as e: + print(f"Import failed: {e.message} (code: {e.code})") +``` + +--- + +## ScanImportService + +Main service class for importing Prowler scan results. + +### Class Signature + +```python +class ScanImportService: + def __init__(self, tenant_id: str) -> None: ... + + def import_scan( + self, + file_content: bytes, + provider_id: UUID | str | None = None, + create_provider: bool = True, + ) -> ScanImportResult: ... +``` + +### Constructor + +```python +ScanImportService(tenant_id: str) +``` + +**Parameters:** +| Parameter | Type | Description | +|-----------|------|-------------| +| `tenant_id` | `str` | UUID string of the tenant performing the import | + +**Example:** +```python +service = ScanImportService(tenant_id="550e8400-e29b-41d4-a716-446655440000") +``` + +### Methods + +#### import_scan() + +Main entry point for importing scan results. Handles format detection, parsing, provider resolution, and bulk database operations within an atomic transaction. + +```python +def import_scan( + self, + file_content: bytes, + provider_id: UUID | str | None = None, + create_provider: bool = True, +) -> ScanImportResult +``` + +**Parameters:** +| Parameter | Type | Default | Description | +|-----------|------|---------|-------------| +| `file_content` | `bytes` | *required* | Raw bytes of the scan file (JSON or CSV) | +| `provider_id` | `UUID \| str \| None` | `None` | Optional UUID of existing provider to associate with | +| `create_provider` | `bool` | `True` | If True, create provider if not found | + +**Returns:** +- `ScanImportResult` - Result object containing scan ID, counts, and warnings + +**Raises:** +- `ScanImportError` - If import fails due to validation or processing errors + +**Example:** +```python +# Import with auto-detected provider +result = service.import_scan(file_content=json_bytes) + +# Import with specific provider +result = service.import_scan( + file_content=csv_bytes, + provider_id="123e4567-e89b-12d3-a456-426614174000" +) + +# Import without creating new provider +result = service.import_scan( + file_content=json_bytes, + create_provider=False # Raises error if provider not found +) +``` + +### Internal Methods + +These methods are used internally by `import_scan()` and are not part of the public API: + +| Method | Description | +|--------|-------------| +| `_detect_format(content: bytes) -> str` | Detect file format (json/csv) | +| `_parse_content(content: bytes, file_format: str) -> list[ParsedFinding]` | Parse content based on format | +| `_resolve_provider(findings, provider_id, create_provider) -> tuple[Provider, bool]` | Find or create provider | +| `_create_scan(findings, provider) -> Scan` | Create scan record | +| `_bulk_create_resources(findings, provider) -> dict[str, Resource]` | Bulk create resources | +| `_bulk_create_findings(findings, scan, resources_map) -> int` | Bulk create findings | +| `_create_resource_finding_mappings(findings, pairs, resources_map) -> None` | Create resource-finding mappings | +| `_build_check_metadata(finding) -> dict[str, Any]` | Build check metadata dictionary | +| `_get_resource_uids(finding) -> list[str]` | Extract resource UIDs from finding | +| `_get_impact_extended(finding) -> str` | Get impact extended text | +| `_get_raw_result(finding) -> dict[str, Any]` | Get raw result data | +| `_get_muted_status(finding) -> bool` | Get muted status | + +--- + +## ScanImportResult + +Dataclass representing the result of a scan import operation. + +### Class Signature + +```python +@dataclass +class ScanImportResult: + scan_id: UUID + provider_id: UUID + findings_count: int + resources_count: int + provider_created: bool = False + warnings: list[str] = field(default_factory=list) + + def to_dict(self) -> dict[str, Any]: ... +``` + +### Attributes + +| Attribute | Type | Description | +|-----------|------|-------------| +| `scan_id` | `UUID` | UUID of the created scan | +| `provider_id` | `UUID` | UUID of the associated provider | +| `findings_count` | `int` | Number of findings imported | +| `resources_count` | `int` | Number of unique resources created/resolved | +| `provider_created` | `bool` | Whether a new provider was created | +| `warnings` | `list[str]` | List of warning messages (non-fatal issues) | + +### Methods + +#### to_dict() + +Convert result to dictionary for API responses. + +```python +def to_dict(self) -> dict[str, Any] +``` + +**Returns:** +```python +{ + "scan_id": "550e8400-e29b-41d4-a716-446655440000", + "provider_id": "123e4567-e89b-12d3-a456-426614174000", + "findings_count": 1500, + "resources_count": 250, + "provider_created": True, + "warnings": [] +} +``` + +--- + +## ScanImportError + +Exception raised when scan import fails. + +### Class Signature + +```python +class ScanImportError(Exception): + def __init__( + self, + message: str, + code: str = "import_error", + details: dict[str, Any] | None = None, + ) -> None: ... + + def to_dict(self) -> dict[str, Any]: ... +``` + +### Attributes + +| Attribute | Type | Description | +|-----------|------|-------------| +| `message` | `str` | Human-readable error message | +| `code` | `str` | Machine-readable error code | +| `details` | `dict[str, Any]` | Additional error context | + +### Error Codes + +| Code | Description | +|------|-------------| +| `file_too_large` | File exceeds maximum size limit (1GB) | +| `invalid_format` | File format not recognized (not JSON or CSV) | +| `no_findings` | No findings found in the imported file | +| `invalid_provider_id` | Provider ID format is invalid | +| `provider_not_found` | Specified provider does not exist | +| `invalid_provider_type` | Provider type from file is not supported | +| `json_parse_error` | Failed to parse JSON/OCSF content | +| `csv_parse_error` | Failed to parse CSV content | +| `unsupported_format` | Internal error - unsupported format string | + +### Methods + +#### to_dict() + +Convert error to dictionary for API responses. + +```python +def to_dict(self) -> dict[str, Any] +``` + +**Returns:** +```python +{ + "message": "File size exceeds maximum of 1024MB", + "code": "file_too_large", + "details": {"size": 1500000000, "max_size": 1073741824} +} +``` + +--- + +## Constants + +| Constant | Value | Description | +|----------|-------|-------------| +| `BULK_CREATE_BATCH_SIZE` | `500` | Batch size for bulk database operations | +| `MAX_FILE_SIZE` | `1073741824` (1GB) | Maximum allowed file size for imports | + +--- + +## Type Aliases + +```python +ParsedFinding = OCSFFinding | CSVFinding +``` + +Union type representing a parsed finding from either OCSF JSON or CSV format. + +--- + +## Usage Examples + +### Basic Import + +```python +from api.services import ScanImportService, ScanImportError + +service = ScanImportService(tenant_id="550e8400-...") + +# Read file content +with open("prowler-output.json", "rb") as f: + content = f.read() + +try: + result = service.import_scan(file_content=content) + print(f"✓ Imported {result.findings_count} findings") + print(f"✓ Created {result.resources_count} resources") + print(f"✓ Scan ID: {result.scan_id}") +except ScanImportError as e: + print(f"✗ Import failed: {e.message}") + print(f" Code: {e.code}") + print(f" Details: {e.details}") +``` + +### Import with Existing Provider + +```python +from uuid import UUID + +result = service.import_scan( + file_content=content, + provider_id=UUID("123e4567-e89b-12d3-a456-426614174000"), + create_provider=False # Don't create if not found +) +``` + +### Import from API View + +```python +from rest_framework.views import APIView +from rest_framework.response import Response +from api.services import ScanImportService, ScanImportError + +class ScanImportView(APIView): + def post(self, request): + file = request.FILES.get("file") + if not file: + return Response({"error": "No file provided"}, status=400) + + service = ScanImportService(tenant_id=str(request.tenant.id)) + + try: + result = service.import_scan( + file_content=file.read(), + provider_id=request.data.get("provider_id"), + create_provider=request.data.get("create_provider", True), + ) + return Response(result.to_dict(), status=201) + except ScanImportError as e: + return Response(e.to_dict(), status=400) +``` + +### Handling Warnings + +```python +result = service.import_scan(file_content=content) + +if result.warnings: + print("Import completed with warnings:") + for warning in result.warnings: + print(f" ⚠ {warning}") +``` + +--- + +## Supported File Formats + +### JSON/OCSF Format + +The service accepts Prowler's default JSON output in OCSF (Open Cybersecurity Schema Framework) format: + +```json +[ + { + "finding_info": { + "uid": "prowler-aws-iam_user_mfa_enabled_console_access-...", + "title": "IAM User MFA Enabled for Console Access" + }, + "status": "FAIL", + "severity": "high", + "cloud": { + "provider": "aws", + "account": { + "uid": "123456789012", + "name": "my-account" + } + }, + "resources": [...] + } +] +``` + +### CSV Format + +The service accepts Prowler's CSV output (semicolon-delimited): + +```csv +ASSESSMENT_START_TIME;FINDING_UID;PROVIDER;CHECK_ID;STATUS;... +2024-01-15T10:30:00Z;prowler-aws-...;aws;iam_user_mfa_enabled;FAIL;... +``` + +--- + +## Database Operations + +The service performs the following database operations within an atomic transaction: + +1. **Provider Resolution**: Find existing or create new provider +2. **Scan Creation**: Create scan record with `IMPORTED` trigger type +3. **Resource Creation**: Bulk create/resolve unique resources +4. **Finding Creation**: Bulk create findings with metadata +5. **Mapping Creation**: Create resource-finding relationships + +All operations use batch sizes of 500 records for optimal performance. + +--- + +## Error Handling + +The service provides detailed error information through `ScanImportError`: + +```python +try: + result = service.import_scan(file_content=content) +except ScanImportError as e: + # Log structured error + logger.error( + "Scan import failed", + extra={ + "error_code": e.code, + "error_message": e.message, + "error_details": e.details, + } + ) + + # Return API response + return Response({ + "errors": [{ + "title": "Import Error", + "detail": e.message, + "code": e.code, + "source": e.details, + }] + }, status=400) +``` + +--- + +## Performance Considerations + +- **File Size Limit**: Maximum 1GB to accommodate large enterprise scans +- **Batch Operations**: Uses bulk_create with batch_size=500 for efficiency +- **Resource Deduplication**: Existing resources are reused, not duplicated +- **Atomic Transactions**: All operations succeed or fail together +- **RLS Context**: Operations run within tenant's Row-Level Security context + +--- + +## Related Modules + +- `api.parsers` - OCSF and CSV parsing functionality +- `api.models` - Database models (Scan, Finding, Resource, Provider) +- `api.v1.views` - API views that use this service +- `api.db_utils` - Database utilities including RLS transaction context + +--- + +## See Also + +- [Parsers README](../parsers/README.md) - Parser documentation +- [API Models Documentation](../../docs/models.md) - Database model documentation +- [Scan Import Spec](/.kiro/specs/scan-results-import/) - Feature specification diff --git a/api/src/backend/api/services/__init__.py b/api/src/backend/api/services/__init__.py new file mode 100644 index 0000000000..8fcb2af677 --- /dev/null +++ b/api/src/backend/api/services/__init__.py @@ -0,0 +1,22 @@ +# Services module for Prowler API +# Contains business logic services for scan operations + +""" +Services module for Prowler API. + +This package contains business logic services for scan operations, +including scan import functionality. + +Exports: + ScanImportService: Service for importing external scan results + ScanImportResult: Result dataclass for import operations + ScanImportError: Exception for import failures +""" + +from .scan_import import ScanImportError, ScanImportResult, ScanImportService + +__all__ = [ + "ScanImportService", + "ScanImportResult", + "ScanImportError", +] diff --git a/api/src/backend/api/services/scan_import.py b/api/src/backend/api/services/scan_import.py new file mode 100644 index 0000000000..9db71ec137 --- /dev/null +++ b/api/src/backend/api/services/scan_import.py @@ -0,0 +1,1150 @@ +""" +Scan Import Service for importing Prowler CLI scan results. + +This module provides the ScanImportService class for importing external scan +results (JSON/OCSF and CSV formats) into the Prowler platform. + +The service handles: +- Format detection and parsing (JSON/OCSF and CSV) +- Provider resolution or creation +- Bulk creation of resources, findings, and mappings +- Atomic transactions for data integrity + +Classes: + ScanImportService: Main service class for importing scan results. + ScanImportResult: Dataclass containing import operation results. + ScanImportError: Exception raised when import fails. + +Constants: + BULK_CREATE_BATCH_SIZE: Batch size for bulk database operations (500). + MAX_FILE_SIZE: Maximum allowed file size for imports (1GB). + +Type Aliases: + ParsedFinding: Union of OCSFFinding | CSVFinding. + +Example: + Basic usage:: + + from api.services.scan_import import ScanImportService + + service = ScanImportService(tenant_id="550e8400-...") + result = service.import_scan( + file_content=json_bytes, + provider_id=None, + create_provider=True + ) + print(f"Imported {result.findings_count} findings") + + With existing provider:: + + result = service.import_scan( + file_content=csv_bytes, + provider_id="123e4567-e89b-12d3-a456-426614174000", + create_provider=False + ) + + Error handling:: + + from api.services.scan_import import ScanImportService, ScanImportError + + try: + result = service.import_scan(file_content=content) + except ScanImportError as e: + print(f"Import failed: {e.message} (code: {e.code})") + +See Also: + - api.parsers: OCSF and CSV parsing functionality + - api.models: Database models (Scan, Finding, Resource, Provider) + - README.md in this directory for full API documentation +""" + +import logging +import time +from dataclasses import dataclass, field +from datetime import datetime, timezone +from typing import Any +from uuid import UUID + +from django.db import transaction + +from api.db_utils import POSTGRES_TENANT_VAR, rls_transaction +from api.models import ( + Finding, + Provider, + Resource, + ResourceFindingMapping, + Scan, + StateChoices, +) +from api.parsers import ( + CSVFinding, + CSVParseError, + OCSFFinding, + OCSFParseError, + parse_csv, + parse_ocsf_json, + validate_csv_structure, + validate_ocsf_structure, +) + +logger = logging.getLogger(__name__) + +# Batch size for bulk operations +BULK_CREATE_BATCH_SIZE = 500 + +# Maximum file size for scan imports (1GB). +# This limit accommodates large scan result files from enterprise environments +# with thousands of resources and findings. The limit should be kept in sync +# with the Next.js server actions body size limit in ui/next.config.js. +MAX_FILE_SIZE = 1024 * 1024 * 1024 + + +class ScanImportError(Exception): + """Exception raised when scan import fails.""" + + def __init__( + self, + message: str, + code: str = "import_error", + details: dict[str, Any] | None = None, + ): + self.message = message + self.code = code + self.details = details or {} + super().__init__(self.message) + + def to_dict(self) -> dict[str, Any]: + """Convert to dictionary for API responses.""" + return { + "message": self.message, + "code": self.code, + "details": self.details, + } + + +@dataclass +class ScanImportResult: + """Result of a scan import operation.""" + + scan_id: UUID + provider_id: UUID + findings_count: int + resources_count: int + provider_created: bool = False + warnings: list[str] = field(default_factory=list) + + def to_dict(self) -> dict[str, Any]: + """Convert to dictionary for API responses.""" + return { + "scan_id": str(self.scan_id), + "provider_id": str(self.provider_id), + "findings_count": self.findings_count, + "resources_count": self.resources_count, + "provider_created": self.provider_created, + "warnings": self.warnings, + } + + +# Type alias for parsed findings (either OCSF or CSV) +ParsedFinding = OCSFFinding | CSVFinding + + +class ScanImportService: + """ + Service for importing Prowler scan results. + + Handles parsing, validation, and bulk database operations for importing + external scan results into the Prowler platform. + + Attributes: + tenant_id: UUID of the tenant performing the import. + + Example: + >>> service = ScanImportService(tenant_id="550e8400-...") + >>> result = service.import_scan( + ... file_content=json_bytes, + ... provider_id=None, + ... create_provider=True + ... ) + """ + + def __init__(self, tenant_id: str): + """ + Initialize the scan import service. + + Args: + tenant_id: UUID string of the tenant performing the import. + """ + self.tenant_id = tenant_id + + def import_scan( + self, + file_content: bytes, + provider_id: UUID | str | None = None, + create_provider: bool = True, + ) -> ScanImportResult: + """ + Import scan results from file content. + + This is the main entry point for scan import. It handles: + 1. Format detection (JSON/OCSF or CSV) + 2. Content parsing and validation + 3. Provider resolution or creation + 4. Bulk creation of scan, resources, findings, and mappings + + All database operations are performed within a single atomic transaction + to ensure data integrity. + + Args: + file_content: Raw bytes of the scan file (JSON or CSV). + provider_id: Optional UUID of existing provider to associate with. + create_provider: If True, create provider if not found. Default True. + + Returns: + ScanImportResult with scan ID, counts, and any warnings. + + Raises: + ScanImportError: If import fails due to validation or processing errors. + """ + import_start_time = time.time() + file_size = len(file_content) + + logger.info( + f"Starting scan import for tenant {self.tenant_id}", + extra={ + "tenant_id": self.tenant_id, + "file_size": file_size, + "provider_id": str(provider_id) if provider_id else None, + "create_provider": create_provider, + }, + ) + + # Validate file size + if file_size > MAX_FILE_SIZE: + logger.warning( + f"File size {file_size} exceeds maximum {MAX_FILE_SIZE}", + extra={ + "tenant_id": self.tenant_id, + "file_size": file_size, + "max_size": MAX_FILE_SIZE, + }, + ) + raise ScanImportError( + message=f"File size exceeds maximum of {MAX_FILE_SIZE // (1024 * 1024)}MB", + code="file_too_large", + details={"size": file_size, "max_size": MAX_FILE_SIZE}, + ) + + # Detect format and parse + format_start_time = time.time() + file_format = self._detect_format(file_content) + logger.debug( + f"Detected file format: {file_format}", + extra={ + "tenant_id": self.tenant_id, + "file_format": file_format, + "detection_time_ms": int((time.time() - format_start_time) * 1000), + }, + ) + + parse_start_time = time.time() + findings = self._parse_content(file_content, file_format) + parse_time_ms = int((time.time() - parse_start_time) * 1000) + + logger.info( + f"Parsed {len(findings)} findings from {file_format} file", + extra={ + "tenant_id": self.tenant_id, + "findings_count": len(findings), + "file_format": file_format, + "parse_time_ms": parse_time_ms, + }, + ) + + if not findings: + logger.warning( + "No findings found in imported file", + extra={"tenant_id": self.tenant_id, "file_format": file_format}, + ) + raise ScanImportError( + message="No findings found in the imported file", + code="no_findings", + ) + + # Convert provider_id to UUID if string + if isinstance(provider_id, str): + try: + provider_id = UUID(provider_id) + except ValueError: + logger.warning( + f"Invalid provider_id format: {provider_id}", + extra={"tenant_id": self.tenant_id, "provider_id": provider_id}, + ) + raise ScanImportError( + message="Invalid provider_id format", + code="invalid_provider_id", + details={"provider_id": provider_id}, + ) + + # Perform import within RLS transaction + db_start_time = time.time() + with rls_transaction(value=self.tenant_id, parameter=POSTGRES_TENANT_VAR): + with transaction.atomic(): + # Resolve or create provider + provider, provider_created = self._resolve_provider( + findings=findings, + provider_id=provider_id, + create_provider=create_provider, + ) + + logger.debug( + f"Provider resolved: {provider.id} (created={provider_created})", + extra={ + "tenant_id": self.tenant_id, + "provider_id": str(provider.id), + "provider_created": provider_created, + "provider_type": provider.provider, + }, + ) + + # Create scan record + scan = self._create_scan(findings, provider) + + # Bulk create resources + resources_start_time = time.time() + resources_map = self._bulk_create_resources(findings, provider) + resources_time_ms = int((time.time() - resources_start_time) * 1000) + + logger.debug( + f"Created/resolved {len(resources_map)} resources", + extra={ + "tenant_id": self.tenant_id, + "scan_id": str(scan.id), + "resources_count": len(resources_map), + "resources_time_ms": resources_time_ms, + }, + ) + + # Bulk create findings + findings_start_time = time.time() + findings_count = self._bulk_create_findings( + findings, scan, resources_map + ) + findings_time_ms = int((time.time() - findings_start_time) * 1000) + + logger.debug( + f"Created {findings_count} findings", + extra={ + "tenant_id": self.tenant_id, + "scan_id": str(scan.id), + "findings_count": findings_count, + "findings_time_ms": findings_time_ms, + }, + ) + + # Update scan with resource count + scan.unique_resource_count = len(resources_map) + scan.save(update_fields=["unique_resource_count"]) + + db_time_ms = int((time.time() - db_start_time) * 1000) + total_time_ms = int((time.time() - import_start_time) * 1000) + + logger.info( + f"Scan import completed successfully for tenant {self.tenant_id}", + extra={ + "tenant_id": self.tenant_id, + "scan_id": str(scan.id), + "provider_id": str(provider.id), + "findings_count": findings_count, + "resources_count": len(resources_map), + "provider_created": provider_created, + "total_time_ms": total_time_ms, + "db_time_ms": db_time_ms, + "parse_time_ms": parse_time_ms, + }, + ) + + return ScanImportResult( + scan_id=scan.id, + provider_id=provider.id, + findings_count=findings_count, + resources_count=len(resources_map), + provider_created=provider_created, + ) + + def _detect_format(self, content: bytes) -> str: + """ + Detect the format of the file content. + + Attempts to validate content as JSON/OCSF first, then CSV. + + Args: + content: Raw bytes to analyze. + + Returns: + Format string: "json" or "csv". + + Raises: + ScanImportError: If format cannot be determined. + """ + logger.debug( + "Detecting file format", + extra={"tenant_id": self.tenant_id, "content_size": len(content)}, + ) + + # Try JSON/OCSF first + is_valid_json, json_error = validate_ocsf_structure(content) + if is_valid_json: + logger.debug( + "File format detected as JSON/OCSF", + extra={"tenant_id": self.tenant_id}, + ) + return "json" + + # Try CSV + is_valid_csv, csv_error = validate_csv_structure(content) + if is_valid_csv: + logger.debug( + "File format detected as CSV", + extra={"tenant_id": self.tenant_id}, + ) + return "csv" + + # Neither format is valid + logger.warning( + "File format not recognized", + extra={ + "tenant_id": self.tenant_id, + "json_error": json_error, + "csv_error": csv_error, + }, + ) + raise ScanImportError( + message="File format not recognized. Must be valid JSON/OCSF or CSV.", + code="invalid_format", + details={ + "json_error": json_error, + "csv_error": csv_error, + }, + ) + + def _parse_content(self, content: bytes, file_format: str) -> list[ParsedFinding]: + """ + Parse file content based on detected format. + + Args: + content: Raw bytes to parse. + file_format: Format string ("json" or "csv"). + + Returns: + List of parsed findings. + + Raises: + ScanImportError: If parsing fails. + """ + logger.debug( + f"Parsing content as {file_format}", + extra={ + "tenant_id": self.tenant_id, + "file_format": file_format, + "content_size": len(content), + }, + ) + + try: + if file_format == "json": + findings = parse_ocsf_json(content) + logger.debug( + f"Successfully parsed {len(findings)} findings from JSON/OCSF", + extra={ + "tenant_id": self.tenant_id, + "findings_count": len(findings), + }, + ) + return findings + elif file_format == "csv": + findings = parse_csv(content) + logger.debug( + f"Successfully parsed {len(findings)} findings from CSV", + extra={ + "tenant_id": self.tenant_id, + "findings_count": len(findings), + }, + ) + return findings + else: + logger.error( + f"Unsupported format: {file_format}", + extra={"tenant_id": self.tenant_id, "file_format": file_format}, + ) + raise ScanImportError( + message=f"Unsupported format: {file_format}", + code="unsupported_format", + ) + except OCSFParseError as e: + logger.warning( + f"Failed to parse JSON/OCSF: {e.message}", + extra={ + "tenant_id": self.tenant_id, + "error_message": e.message, + "error_index": e.index, + "error_field": e.field, + }, + ) + raise ScanImportError( + message=f"Failed to parse JSON/OCSF: {e.message}", + code="json_parse_error", + details={"index": e.index, "field": e.field}, + ) + except CSVParseError as e: + logger.warning( + f"Failed to parse CSV: {e.message}", + extra={ + "tenant_id": self.tenant_id, + "error_message": e.message, + "error_row": e.row, + "error_column": e.column, + }, + ) + raise ScanImportError( + message=f"Failed to parse CSV: {e.message}", + code="csv_parse_error", + details={"row": e.row, "column": e.column}, + ) + + def _resolve_provider( + self, + findings: list[ParsedFinding], + provider_id: UUID | None, + create_provider: bool, + ) -> tuple[Provider, bool]: + """ + Find or create provider from findings data. + + Resolution order: + 1. If provider_id is given, use that provider + 2. Try to find existing provider by type and account UID + 3. If create_provider is True, create new provider + 4. Otherwise, raise error + + Args: + findings: List of parsed findings to extract provider info from. + provider_id: Optional UUID of existing provider. + create_provider: Whether to create provider if not found. + + Returns: + Tuple of (Provider instance, was_created boolean). + + Raises: + ScanImportError: If provider cannot be resolved. + """ + # If provider_id is specified, use it + if provider_id: + logger.debug( + f"Looking up provider by ID: {provider_id}", + extra={"tenant_id": self.tenant_id, "provider_id": str(provider_id)}, + ) + try: + provider = Provider.objects.get( + id=provider_id, + tenant_id=self.tenant_id, + ) + logger.debug( + f"Found provider by ID: {provider.id}", + extra={ + "tenant_id": self.tenant_id, + "provider_id": str(provider.id), + "provider_type": provider.provider, + }, + ) + return provider, False + except Provider.DoesNotExist: + logger.warning( + f"Provider with ID {provider_id} not found", + extra={ + "tenant_id": self.tenant_id, + "provider_id": str(provider_id), + }, + ) + raise ScanImportError( + message=f"Provider with ID {provider_id} not found", + code="provider_not_found", + details={"provider_id": str(provider_id)}, + ) + + # Extract provider info from findings + first_finding = findings[0] + provider_type = first_finding.provider_type.lower() + account_uid = first_finding.account_uid + + # Get account name if available + account_name = "" + if isinstance(first_finding, OCSFFinding): + account_name = first_finding.account_name + elif isinstance(first_finding, CSVFinding): + account_name = first_finding.account_name + + logger.debug( + f"Extracted provider info from findings: type={provider_type}, uid={account_uid}", + extra={ + "tenant_id": self.tenant_id, + "provider_type": provider_type, + "account_uid": account_uid, + "account_name": account_name, + }, + ) + + # Validate provider type + valid_provider_types = [ + choice[0] for choice in Provider.ProviderChoices.choices + ] + if provider_type not in valid_provider_types: + logger.warning( + f"Unsupported provider type: {provider_type}", + extra={ + "tenant_id": self.tenant_id, + "provider_type": provider_type, + "supported_types": valid_provider_types, + }, + ) + raise ScanImportError( + message=f"Unsupported provider type: {provider_type}", + code="invalid_provider_type", + details={ + "provider_type": provider_type, + "supported_types": valid_provider_types, + }, + ) + + # Try to find existing provider + logger.debug( + f"Looking up existing provider: type={provider_type}, uid={account_uid}", + extra={ + "tenant_id": self.tenant_id, + "provider_type": provider_type, + "account_uid": account_uid, + }, + ) + try: + provider = Provider.objects.get( + tenant_id=self.tenant_id, + provider=provider_type, + uid=account_uid, + ) + logger.debug( + f"Found existing provider: {provider.id}", + extra={ + "tenant_id": self.tenant_id, + "provider_id": str(provider.id), + "provider_type": provider_type, + }, + ) + return provider, False + except Provider.DoesNotExist: + logger.debug( + f"No existing provider found for type={provider_type}, uid={account_uid}", + extra={ + "tenant_id": self.tenant_id, + "provider_type": provider_type, + "account_uid": account_uid, + }, + ) + + # Create new provider if allowed + if not create_provider: + logger.warning( + "Provider not found and create_provider=False", + extra={ + "tenant_id": self.tenant_id, + "provider_type": provider_type, + "account_uid": account_uid, + }, + ) + raise ScanImportError( + message=f"No provider found for {provider_type} account {account_uid}", + code="provider_not_found", + details={ + "provider_type": provider_type, + "account_uid": account_uid, + }, + ) + + # Create new provider + provider = Provider.objects.create( + tenant_id=self.tenant_id, + provider=provider_type, + uid=account_uid, + alias=account_name or None, + connected=None, # Unknown connection status for imported providers + ) + logger.info( + f"Created new provider {provider.id} for {provider_type}/{account_uid}", + extra={ + "tenant_id": self.tenant_id, + "provider_id": str(provider.id), + "provider_type": provider_type, + "account_uid": account_uid, + "account_name": account_name, + }, + ) + return provider, True + + def _create_scan( + self, + findings: list[ParsedFinding], + provider: Provider, + ) -> Scan: + """ + Create a scan record for the import. + + Args: + findings: List of parsed findings to extract timestamps from. + provider: Provider to associate the scan with. + + Returns: + Created Scan instance. + """ + # Extract timestamps from findings + timestamps = [] + for finding in findings: + if finding.timestamp: + timestamps.append(finding.timestamp) + + # Determine scan timestamps + now = datetime.now(timezone.utc) + started_at = min(timestamps) if timestamps else now + completed_at = max(timestamps) if timestamps else now + + # Calculate duration in seconds + duration = int((completed_at - started_at).total_seconds()) + + logger.debug( + f"Creating scan record with {len(findings)} findings", + extra={ + "tenant_id": self.tenant_id, + "provider_id": str(provider.id), + "findings_count": len(findings), + "timestamps_found": len(timestamps), + "started_at": started_at.isoformat(), + "completed_at": completed_at.isoformat(), + "duration_seconds": duration, + }, + ) + + scan = Scan.objects.create( + tenant_id=self.tenant_id, + provider=provider, + trigger=Scan.TriggerChoices.IMPORTED, + state=StateChoices.COMPLETED, + started_at=started_at, + completed_at=completed_at, + duration=duration, + unique_resource_count=0, # Will be updated after resource creation + progress=100, + ) + logger.info( + f"Created scan {scan.id} for import", + extra={ + "tenant_id": self.tenant_id, + "scan_id": str(scan.id), + "provider_id": str(provider.id), + "trigger": "imported", + }, + ) + return scan + + def _bulk_create_resources( + self, + findings: list[ParsedFinding], + provider: Provider, + ) -> dict[str, Resource]: + """ + Bulk create or update resources from findings. + + Extracts unique resources from findings and creates/updates them + in the database using bulk operations. + + Args: + findings: List of parsed findings containing resource data. + provider: Provider to associate resources with. + + Returns: + Dictionary mapping resource UID to Resource instance. + """ + # Extract unique resources + resources_data: dict[str, dict[str, Any]] = {} + + for finding in findings: + if isinstance(finding, OCSFFinding): + # OCSF findings can have multiple resources + for resource in finding.resources: + if resource.uid not in resources_data: + resources_data[resource.uid] = { + "uid": resource.uid, + "name": resource.name or resource.uid, + "region": resource.region or "", + "service": resource.service or "", + "type": resource.type or "", + } + elif isinstance(finding, CSVFinding): + # CSV findings have a single resource + resource = finding.resource + if resource.uid not in resources_data: + resources_data[resource.uid] = { + "uid": resource.uid, + "name": resource.name or resource.uid, + "region": resource.region or "", + "service": resource.service or "", + "type": resource.type or "", + } + + if not resources_data: + logger.debug( + "No resources found in findings", + extra={"tenant_id": self.tenant_id, "provider_id": str(provider.id)}, + ) + return {} + + logger.debug( + f"Extracted {len(resources_data)} unique resources from findings", + extra={ + "tenant_id": self.tenant_id, + "provider_id": str(provider.id), + "unique_resources": len(resources_data), + }, + ) + + # Get existing resources + existing_resources = { + r.uid: r + for r in Resource.objects.filter( + tenant_id=self.tenant_id, + provider=provider, + uid__in=resources_data.keys(), + ) + } + + logger.debug( + f"Found {len(existing_resources)} existing resources", + extra={ + "tenant_id": self.tenant_id, + "provider_id": str(provider.id), + "existing_resources": len(existing_resources), + }, + ) + + # Prepare resources to create + resources_to_create = [] + for uid, data in resources_data.items(): + if uid not in existing_resources: + resources_to_create.append( + Resource( + tenant_id=self.tenant_id, + provider=provider, + uid=data["uid"], + name=data["name"], + region=data["region"], + service=data["service"], + type=data["type"], + ) + ) + + # Bulk create new resources + if resources_to_create: + logger.debug( + f"Creating {len(resources_to_create)} new resources", + extra={ + "tenant_id": self.tenant_id, + "provider_id": str(provider.id), + "new_resources": len(resources_to_create), + }, + ) + created_resources = Resource.objects.bulk_create( + resources_to_create, + batch_size=BULK_CREATE_BATCH_SIZE, + ) + for resource in created_resources: + existing_resources[resource.uid] = resource + + logger.info( + f"Created {len(resources_to_create)} new resources, " + f"reused {len(existing_resources) - len(resources_to_create)} existing", + extra={ + "tenant_id": self.tenant_id, + "provider_id": str(provider.id), + "new_resources": len(resources_to_create), + "reused_resources": len(existing_resources) - len(resources_to_create), + "total_resources": len(existing_resources), + }, + ) + return existing_resources + + def _bulk_create_findings( + self, + findings: list[ParsedFinding], + scan: Scan, + resources_map: dict[str, Resource], + ) -> int: + """ + Bulk create findings with resource mappings. + + Args: + findings: List of parsed findings to create. + scan: Scan to associate findings with. + resources_map: Dictionary mapping resource UID to Resource instance. + + Returns: + Number of findings created. + """ + logger.debug( + f"Creating {len(findings)} findings for scan {scan.id}", + extra={ + "tenant_id": self.tenant_id, + "scan_id": str(scan.id), + "findings_count": len(findings), + "resources_count": len(resources_map), + }, + ) + + finding_objects = [] + finding_resource_pairs: list[tuple[int, list[str]]] = ( + [] + ) # (finding_index, resource_uids) + + for idx, parsed_finding in enumerate(findings): + # Build check metadata + check_metadata = self._build_check_metadata(parsed_finding) + + # Get resource UIDs for this finding + resource_uids = self._get_resource_uids(parsed_finding) + + # Build finding object + finding = Finding( + tenant_id=self.tenant_id, + scan=scan, + uid=parsed_finding.uid, + check_id=parsed_finding.check_id, + status=parsed_finding.status, + status_extended=parsed_finding.status_extended or "", + severity=parsed_finding.severity, + impact=parsed_finding.severity, # Use severity as impact + impact_extended=self._get_impact_extended(parsed_finding), + check_metadata=check_metadata, + compliance=parsed_finding.compliance or {}, + raw_result=self._get_raw_result(parsed_finding), + first_seen_at=parsed_finding.timestamp or datetime.now(timezone.utc), + delta=Finding.DeltaChoices.NEW, + muted=self._get_muted_status(parsed_finding), + ) + + # Set denormalized resource fields + if resource_uids: + resources = [ + resources_map[uid] for uid in resource_uids if uid in resources_map + ] + if resources: + finding.resource_regions = list( + {r.region for r in resources if r.region} + ) + finding.resource_services = list( + {r.service for r in resources if r.service} + ) + finding.resource_types = list({r.type for r in resources if r.type}) + + # Set categories from check metadata + categories = check_metadata.get("categories", []) + if categories: + finding.categories = categories + + finding_objects.append(finding) + finding_resource_pairs.append((idx, resource_uids)) + + # Bulk create findings + logger.debug( + f"Bulk creating {len(finding_objects)} finding objects", + extra={ + "tenant_id": self.tenant_id, + "scan_id": str(scan.id), + "batch_size": BULK_CREATE_BATCH_SIZE, + }, + ) + created_findings = Finding.objects.bulk_create( + finding_objects, + batch_size=BULK_CREATE_BATCH_SIZE, + ) + + # Create resource-finding mappings + self._create_resource_finding_mappings( + created_findings, finding_resource_pairs, resources_map + ) + + logger.info( + f"Created {len(created_findings)} findings", + extra={ + "tenant_id": self.tenant_id, + "scan_id": str(scan.id), + "findings_created": len(created_findings), + }, + ) + return len(created_findings) + + def _create_resource_finding_mappings( + self, + findings: list[Finding], + finding_resource_pairs: list[tuple[int, list[str]]], + resources_map: dict[str, Resource], + ) -> None: + """ + Create resource-finding mappings in bulk. + + Args: + findings: List of created Finding instances. + finding_resource_pairs: List of (finding_index, resource_uids) tuples. + resources_map: Dictionary mapping resource UID to Resource instance. + """ + mappings = [] + + for finding_idx, resource_uids in finding_resource_pairs: + finding = findings[finding_idx] + for uid in resource_uids: + if uid in resources_map: + mappings.append( + ResourceFindingMapping( + tenant_id=self.tenant_id, + finding=finding, + resource=resources_map[uid], + ) + ) + + if mappings: + logger.debug( + f"Creating {len(mappings)} resource-finding mappings", + extra={ + "tenant_id": self.tenant_id, + "mappings_count": len(mappings), + "batch_size": BULK_CREATE_BATCH_SIZE, + }, + ) + ResourceFindingMapping.objects.bulk_create( + mappings, + batch_size=BULK_CREATE_BATCH_SIZE, + ignore_conflicts=True, # Handle potential duplicates + ) + logger.info( + f"Created {len(mappings)} resource-finding mappings", + extra={ + "tenant_id": self.tenant_id, + "mappings_created": len(mappings), + }, + ) + else: + logger.debug( + "No resource-finding mappings to create", + extra={"tenant_id": self.tenant_id}, + ) + + def _build_check_metadata(self, finding: ParsedFinding) -> dict[str, Any]: + """ + Build check metadata dictionary from parsed finding. + + Args: + finding: Parsed finding (OCSF or CSV). + + Returns: + Dictionary containing check metadata. + """ + if isinstance(finding, OCSFFinding): + metadata = finding.check_metadata + return { + "title": metadata.title, + "description": metadata.description, + "risk": metadata.risk, + "remediation": { + "description": metadata.remediation_description, + "references": metadata.remediation_references, + }, + "categories": metadata.categories, + "related_url": metadata.related_url, + } + elif isinstance(finding, CSVFinding): + metadata = finding.check_metadata + return { + "title": metadata.title, + "description": metadata.description, + "risk": metadata.risk, + "remediation": { + "description": metadata.remediation_description, + "url": metadata.remediation_url, + "cli": metadata.remediation_cli, + "terraform": metadata.remediation_terraform, + "nativeiac": metadata.remediation_nativeiac, + "other": metadata.remediation_other, + }, + "categories": metadata.categories, + "related_url": metadata.related_url, + "additional_urls": metadata.additional_urls, + "notes": metadata.notes, + } + return {} + + def _get_resource_uids(self, finding: ParsedFinding) -> list[str]: + """ + Extract resource UIDs from a parsed finding. + + Args: + finding: Parsed finding (OCSF or CSV). + + Returns: + List of resource UID strings. + """ + if isinstance(finding, OCSFFinding): + return [r.uid for r in finding.resources] + elif isinstance(finding, CSVFinding): + return [finding.resource.uid] + return [] + + def _get_impact_extended(self, finding: ParsedFinding) -> str: + """ + Get impact extended text from parsed finding. + + Args: + finding: Parsed finding (OCSF or CSV). + + Returns: + Impact extended string. + """ + if isinstance(finding, OCSFFinding): + return finding.impact_extended or finding.message or "" + elif isinstance(finding, CSVFinding): + return finding.status_extended or "" + return "" + + def _get_raw_result(self, finding: ParsedFinding) -> dict[str, Any]: + """ + Get raw result data from parsed finding. + + Args: + finding: Parsed finding (OCSF or CSV). + + Returns: + Dictionary containing raw result data. + """ + if isinstance(finding, OCSFFinding): + return finding.raw_result + elif isinstance(finding, CSVFinding): + return finding.raw_row + return {} + + def _get_muted_status(self, finding: ParsedFinding) -> bool: + """ + Get muted status from parsed finding. + + Args: + finding: Parsed finding (OCSF or CSV). + + Returns: + Boolean indicating if finding is muted. + """ + if isinstance(finding, CSVFinding): + return finding.muted + return False diff --git a/api/src/backend/api/tests/test_csv_parser.py b/api/src/backend/api/tests/test_csv_parser.py new file mode 100644 index 0000000000..f3b406d8c9 --- /dev/null +++ b/api/src/backend/api/tests/test_csv_parser.py @@ -0,0 +1,1329 @@ +""" +Unit tests for the CSV parser module. + +Tests parsing of Prowler CLI CSV output format with semicolon delimiter support. + +This module provides comprehensive test coverage for: +- Delimiter detection (semicolon vs comma) +- CSV parsing with both delimiter types +- Compliance column parsing (pipe-separated format) +- Required field validation +- Required column validation +- Error handling and reporting +- Data class construction from CSV rows +- Timestamp parsing +- Muted field parsing +- Provider info extraction +- Helper functions + +Test Classes +------------ +TestDetectDelimiter + Tests for the `_detect_delimiter` internal function. + Verifies correct detection of semicolon (Prowler default) and comma delimiters. + +TestParseCSVWithSemicolonDelimiter + Tests for `parse_csv` function with semicolon-delimited content. + Covers single row, multiple rows, and both delimiter types. + +TestValidateCSVStructureWithDelimiters + Tests for `validate_csv_structure` function. + Validates lightweight format detection for both delimiter types. + +TestParseCompliance + Tests for `_parse_compliance` internal function. + Verifies parsing of pipe-separated compliance framework mappings. + +TestCSVParseError + Tests for `CSVParseError` exception class. + Validates error message formatting with row and column context. + +TestCSVFindingFromRow + Tests for `CSVFinding.from_row` class method. + Covers valid row parsing, required field validation, and normalization. + +TestCSVResourceFromRow + Tests for `CSVResource.from_row` class method. + Covers valid row parsing and required field validation. + +TestRequiredColumnValidation + Tests for required CSV column validation. + Covers missing columns in headers and empty values in data rows. + +TestParseTimestamp + Tests for `_parse_timestamp` internal function. + Verifies parsing of various timestamp formats. + +TestMutedFieldParsing + Tests for muted field parsing in CSVFinding. + Covers various boolean representations. + +TestExtractProviderInfo + Tests for `extract_provider_info` function. + Verifies extraction of provider type and account UID from findings. + +TestHelperFunctions + Tests for helper functions that return constants. + Covers get_supported_provider_types, get_valid_severity_levels, etc. + +TestEmptyAndInvalidContent + Tests for edge cases with empty or invalid content. + Covers empty CSV, invalid UTF-8, and malformed content. + +Usage +----- +Run tests from the api/src/backend directory:: + + poetry run pytest api/tests/test_csv_parser.py -v + +Run specific test class:: + + poetry run pytest api/tests/test_csv_parser.py::TestParseCompliance -v + +Run with coverage:: + + poetry run pytest api/tests/test_csv_parser.py --cov=api.parsers.csv_parser + +See Also +-------- +- api/src/backend/api/parsers/csv_parser.py : Implementation module +- api/src/backend/api/parsers/README.md : Full API documentation +- .kiro/specs/scan-results-import/tasks.md : Feature specification +""" + +import pytest +from datetime import datetime + +from api.parsers.csv_parser import ( + CSVFinding, + CSVParseError, + CSVResource, + SUPPORTED_PROVIDER_TYPES, + VALID_SEVERITY_LEVELS, + VALID_STATUS_CODES, + REQUIRED_CSV_COLUMNS, + EXPECTED_CSV_COLUMNS, + _detect_delimiter, + _parse_compliance, + _parse_timestamp, + parse_csv, + validate_csv_structure, + validate_csv_content, + extract_provider_info, + get_supported_provider_types, + get_valid_severity_levels, + get_valid_status_codes, + get_required_csv_columns, + get_expected_csv_columns, +) + + +class TestDetectDelimiter: + """ + Tests for _detect_delimiter function. + + The delimiter detection analyzes the first line of CSV content to determine + whether semicolon (Prowler default) or comma is used as the field separator. + + Test Coverage: + - Semicolon delimiter detection (Prowler default) + - Comma delimiter detection (standard CSV) + - Preference for semicolon when counts are equal + - Single line content handling + - Empty content handling + """ + + def test_detect_semicolon_delimiter(self): + """Test detection of semicolon delimiter (Prowler default).""" + content = "FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID\nfinding-1;aws;check_1;PASS;123456789012" + + delimiter = _detect_delimiter(content) + + assert delimiter == ";" + + def test_detect_comma_delimiter(self): + """Test detection of comma delimiter.""" + content = "FINDING_UID,PROVIDER,CHECK_ID,STATUS,ACCOUNT_UID\nfinding-1,aws,check_1,PASS,123456789012" + + delimiter = _detect_delimiter(content) + + assert delimiter == "," + + def test_prefer_semicolon_when_equal(self): + """Test that semicolon is preferred when counts are equal.""" + # Both delimiters appear same number of times + content = "A;B,C;D,E" + + delimiter = _detect_delimiter(content) + + assert delimiter == ";" + + def test_prefer_semicolon_when_more(self): + """Test that semicolon is chosen when more frequent.""" + content = "A;B;C;D,E" + + delimiter = _detect_delimiter(content) + + assert delimiter == ";" + + def test_choose_comma_when_more_frequent(self): + """Test that comma is chosen when more frequent.""" + content = "A,B,C,D;E" + + delimiter = _detect_delimiter(content) + + assert delimiter == "," + + def test_single_line_content(self): + """Test delimiter detection with single line (no newline).""" + content = "FINDING_UID;PROVIDER;CHECK_ID" + + delimiter = _detect_delimiter(content) + + assert delimiter == ";" + + def test_empty_content_defaults_to_semicolon(self): + """Test that empty content defaults to semicolon.""" + content = "" + + delimiter = _detect_delimiter(content) + + # Both counts are 0, so semicolon is preferred + assert delimiter == ";" + + +class TestParseCSVWithSemicolonDelimiter: + """ + Tests for parse_csv function with semicolon delimiter. + + Verifies that the parser correctly handles Prowler's default semicolon-delimited + CSV format as well as standard comma-delimited CSV. + + Test Coverage: + - Semicolon-delimited CSV parsing + - Comma-delimited CSV parsing + - Multiple row parsing + - Field extraction and normalization + + Fixtures: + valid_semicolon_csv_content: Sample CSV with semicolon delimiter + valid_comma_csv_content: Sample CSV with comma delimiter + """ + + @pytest.fixture + def valid_semicolon_csv_content(self): + """ + Return valid CSV content with semicolon delimiter. + + Returns: + bytes: UTF-8 encoded CSV content with semicolon delimiter + containing one finding row with all required fields. + """ + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;SEVERITY;STATUS_EXTENDED;RESOURCE_UID;RESOURCE_NAME;REGION;SERVICE_NAME;RESOURCE_TYPE +finding-001;aws;accessanalyzer_enabled;FAIL;123456789012;low;IAM Access Analyzer is not enabled;arn:aws:accessanalyzer:us-east-1:123456789012:analyzer;analyzer;us-east-1;accessanalyzer;Other""" + return csv_data.encode("utf-8") + + @pytest.fixture + def valid_comma_csv_content(self): + """ + Return valid CSV content with comma delimiter. + + Returns: + bytes: UTF-8 encoded CSV content with comma delimiter + containing one finding row with all required fields. + """ + csv_data = """FINDING_UID,PROVIDER,CHECK_ID,STATUS,ACCOUNT_UID,SEVERITY,STATUS_EXTENDED,RESOURCE_UID,RESOURCE_NAME,REGION,SERVICE_NAME,RESOURCE_TYPE +finding-001,aws,accessanalyzer_enabled,FAIL,123456789012,low,IAM Access Analyzer is not enabled,arn:aws:accessanalyzer:us-east-1:123456789012:analyzer,analyzer,us-east-1,accessanalyzer,Other""" + return csv_data.encode("utf-8") + + def test_parse_semicolon_delimited_csv(self, valid_semicolon_csv_content): + """Test parsing CSV with semicolon delimiter (Prowler default).""" + findings = parse_csv(valid_semicolon_csv_content) + + assert len(findings) == 1 + assert findings[0].uid == "finding-001" + assert findings[0].provider_type == "aws" + assert findings[0].check_id == "accessanalyzer_enabled" + assert findings[0].status == "FAIL" + assert findings[0].account_uid == "123456789012" + assert findings[0].severity == "low" + assert ( + findings[0].resource.uid + == "arn:aws:accessanalyzer:us-east-1:123456789012:analyzer" + ) + assert findings[0].resource.region == "us-east-1" + assert findings[0].resource.service == "accessanalyzer" + + def test_parse_comma_delimited_csv(self, valid_comma_csv_content): + """Test parsing CSV with comma delimiter.""" + findings = parse_csv(valid_comma_csv_content) + + assert len(findings) == 1 + assert findings[0].uid == "finding-001" + assert findings[0].provider_type == "aws" + assert findings[0].check_id == "accessanalyzer_enabled" + + def test_parse_multiple_rows_semicolon(self): + """Test parsing multiple rows with semicolon delimiter.""" + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;SEVERITY;RESOURCE_UID +finding-001;aws;check_1;PASS;123456789012;low;resource-1 +finding-002;aws;check_2;FAIL;123456789012;high;resource-2 +finding-003;azure;check_3;MANUAL;subscription-123;medium;resource-3""" + content = csv_data.encode("utf-8") + + findings = parse_csv(content) + + assert len(findings) == 3 + assert findings[0].uid == "finding-001" + assert findings[0].status == "PASS" + assert findings[1].uid == "finding-002" + assert findings[1].status == "FAIL" + assert findings[2].uid == "finding-003" + assert findings[2].provider_type == "azure" + + +class TestValidateCSVStructureWithDelimiters: + """ + Tests for validate_csv_structure with different delimiters. + + The structure validation performs lightweight format detection without + fully parsing all rows, useful for quick format identification. + + Test Coverage: + - Semicolon-delimited CSV structure validation + - Comma-delimited CSV structure validation + - Required column presence verification + """ + + def test_validate_semicolon_csv_structure(self): + """Test validation of semicolon-delimited CSV structure.""" + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +finding-001;aws;check_1;PASS;123456789012;resource-1""" + content = csv_data.encode("utf-8") + + is_valid, error = validate_csv_structure(content) + + assert is_valid is True + assert error is None + + def test_validate_comma_csv_structure(self): + """Test validation of comma-delimited CSV structure.""" + csv_data = """FINDING_UID,PROVIDER,CHECK_ID,STATUS,ACCOUNT_UID,RESOURCE_UID +finding-001,aws,check_1,PASS,123456789012,resource-1""" + content = csv_data.encode("utf-8") + + is_valid, error = validate_csv_structure(content) + + assert is_valid is True + assert error is None + + +class TestParseCompliance: + """ + Tests for _parse_compliance function. + + The compliance column in Prowler CSV uses a pipe-separated format: + "FRAMEWORK1: control1, control2 | FRAMEWORK2: control3" + + Test Coverage: + - Single framework parsing + - Multiple frameworks with pipe separator + - Empty compliance string + - Framework without controls + """ + + def test_parse_single_framework(self): + """Test parsing single compliance framework.""" + compliance_str = "CIS-1.4: 1.20, 1.21" + + result = _parse_compliance(compliance_str) + + assert "CIS-1.4" in result + assert result["CIS-1.4"] == ["1.20", "1.21"] + + def test_parse_multiple_frameworks_pipe_separated(self): + """Test parsing multiple frameworks separated by pipe.""" + compliance_str = "CIS-1.4: 1.20 | CIS-1.5: 1.20, 1.21 | NIST: AC-1" + + result = _parse_compliance(compliance_str) + + assert "CIS-1.4" in result + assert "CIS-1.5" in result + assert "NIST" in result + assert result["CIS-1.4"] == ["1.20"] + assert result["CIS-1.5"] == ["1.20", "1.21"] + assert result["NIST"] == ["AC-1"] + + def test_parse_empty_compliance(self): + """Test parsing empty compliance string.""" + result = _parse_compliance("") + + assert result == {} + + def test_parse_framework_without_controls(self): + """Test parsing framework without controls.""" + compliance_str = "CIS-1.4" + + result = _parse_compliance(compliance_str) + + assert "CIS-1.4" in result + assert result["CIS-1.4"] == [] + + +class TestCSVParseError: + """ + Tests for CSVParseError exception. + + CSVParseError provides contextual error information including: + - Error message + - Row number (optional) + - Column name (optional) + + Test Coverage: + - Basic error message formatting + - Error message with row number + - Error message with column name + """ + + def test_error_message_basic(self): + """Test basic error message.""" + error = CSVParseError("Test error") + + assert str(error) == "Test error" + + def test_error_message_with_row(self): + """Test error message with row number.""" + error = CSVParseError("Test error", row=5) + + assert "at row 5" in str(error) + + def test_error_message_with_column(self): + """Test error message with column name.""" + error = CSVParseError("Test error", column="FINDING_UID") + + assert "FINDING_UID" in str(error) + + +class TestCSVFindingFromRow: + """ + Tests for CSVFinding.from_row method. + + The from_row class method constructs a CSVFinding from a dictionary + representing a CSV row. It validates required fields and normalizes + values (e.g., severity to lowercase, status to uppercase). + + Test Coverage: + - Valid row parsing with all fields + - Missing FINDING_UID raises error + - Missing PROVIDER raises error + - Severity normalization to lowercase + - Status normalization to uppercase + + Fixtures: + valid_row: Dictionary with all required and optional CSV fields + """ + + @pytest.fixture + def valid_row(self): + """ + Return a valid CSV row dictionary. + + Returns: + dict[str, str]: Dictionary containing all required fields + and common optional fields for a CSV finding row. + """ + return { + "FINDING_UID": "finding-123", + "PROVIDER": "aws", + "CHECK_ID": "accessanalyzer_enabled", + "STATUS": "FAIL", + "ACCOUNT_UID": "123456789012", + "SEVERITY": "low", + "STATUS_EXTENDED": "IAM Access Analyzer is not enabled", + "RESOURCE_UID": "arn:aws:accessanalyzer:us-east-1:123456789012:analyzer", + "RESOURCE_NAME": "analyzer", + "REGION": "us-east-1", + "SERVICE_NAME": "accessanalyzer", + "RESOURCE_TYPE": "Other", + } + + def test_from_row_valid(self, valid_row): + """Test creating CSVFinding from valid row.""" + finding = CSVFinding.from_row(valid_row) + + assert finding.uid == "finding-123" + assert finding.check_id == "accessanalyzer_enabled" + assert finding.provider_type == "aws" + assert finding.status == "FAIL" + assert finding.severity == "low" + + def test_from_row_missing_finding_uid_raises_error(self, valid_row): + """Test that missing FINDING_UID raises error.""" + del valid_row["FINDING_UID"] + + with pytest.raises(CSVParseError) as exc_info: + CSVFinding.from_row(valid_row, row_num=2) + + assert "FINDING_UID" in str(exc_info.value) + + def test_from_row_missing_provider_raises_error(self, valid_row): + """Test that missing PROVIDER raises error.""" + del valid_row["PROVIDER"] + + with pytest.raises(CSVParseError) as exc_info: + CSVFinding.from_row(valid_row, row_num=2) + + assert "PROVIDER" in str(exc_info.value) + + def test_from_row_normalizes_severity(self, valid_row): + """Test that severity is normalized to lowercase.""" + valid_row["SEVERITY"] = "HIGH" + + finding = CSVFinding.from_row(valid_row) + + assert finding.severity == "high" + + def test_from_row_normalizes_status(self, valid_row): + """Test that status is normalized to uppercase.""" + valid_row["STATUS"] = "pass" + + finding = CSVFinding.from_row(valid_row) + + assert finding.status == "PASS" + + +class TestCSVResourceFromRow: + """ + Tests for CSVResource.from_row method. + + The from_row class method constructs a CSVResource from a dictionary + representing a CSV row. It validates the required RESOURCE_UID field + and provides defaults for optional fields. + + Test Coverage: + - Valid row parsing with all fields + - Missing RESOURCE_UID raises error + - Name defaults to UID when not provided + """ + + def test_from_row_valid(self): + """Test creating CSVResource from valid row.""" + row = { + "RESOURCE_UID": "arn:aws:s3:::my-bucket", + "RESOURCE_NAME": "my-bucket", + "REGION": "us-east-1", + "SERVICE_NAME": "s3", + "RESOURCE_TYPE": "bucket", + } + + resource = CSVResource.from_row(row) + + assert resource.uid == "arn:aws:s3:::my-bucket" + assert resource.name == "my-bucket" + assert resource.region == "us-east-1" + assert resource.service == "s3" + assert resource.type == "bucket" + + def test_from_row_missing_uid_raises_error(self): + """Test that missing RESOURCE_UID raises error.""" + row = {"RESOURCE_NAME": "my-bucket"} + + with pytest.raises(CSVParseError) as exc_info: + CSVResource.from_row(row, row_num=2) + + assert "RESOURCE_UID" in str(exc_info.value) + + def test_from_row_defaults_name_to_uid(self): + """Test that name defaults to uid when not provided.""" + row = {"RESOURCE_UID": "resource-123"} + + resource = CSVResource.from_row(row) + + assert resource.name == "resource-123" + + +class TestRequiredColumnValidation: + """ + Tests for required CSV column validation. + + The CSV parser validates that all required columns are present in the + CSV headers and that required field values are not empty in data rows. + + Required columns: FINDING_UID, PROVIDER, CHECK_ID, STATUS, ACCOUNT_UID + + Test Coverage: + - Missing required column in headers raises error + - Multiple missing columns are reported + - Empty required field value raises error + - Whitespace-only required field value raises error + - validate_csv_structure detects missing columns + - validate_csv_content detects missing column values + """ + + def test_parse_csv_missing_finding_uid_column_raises_error(self): + """Test that missing FINDING_UID column raises CSVParseError.""" + csv_data = """PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +aws;check_1;PASS;123456789012;resource-1""" + content = csv_data.encode("utf-8") + + with pytest.raises(CSVParseError) as exc_info: + parse_csv(content) + + assert "FINDING_UID" in str(exc_info.value) + assert "Missing required CSV columns" in str(exc_info.value) + + def test_parse_csv_missing_provider_column_raises_error(self): + """Test that missing PROVIDER column raises CSVParseError.""" + csv_data = """FINDING_UID;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +finding-001;check_1;PASS;123456789012;resource-1""" + content = csv_data.encode("utf-8") + + with pytest.raises(CSVParseError) as exc_info: + parse_csv(content) + + assert "PROVIDER" in str(exc_info.value) + + def test_parse_csv_missing_check_id_column_raises_error(self): + """Test that missing CHECK_ID column raises CSVParseError.""" + csv_data = """FINDING_UID;PROVIDER;STATUS;ACCOUNT_UID;RESOURCE_UID +finding-001;aws;PASS;123456789012;resource-1""" + content = csv_data.encode("utf-8") + + with pytest.raises(CSVParseError) as exc_info: + parse_csv(content) + + assert "CHECK_ID" in str(exc_info.value) + + def test_parse_csv_missing_status_column_raises_error(self): + """Test that missing STATUS column raises CSVParseError.""" + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;ACCOUNT_UID;RESOURCE_UID +finding-001;aws;check_1;123456789012;resource-1""" + content = csv_data.encode("utf-8") + + with pytest.raises(CSVParseError) as exc_info: + parse_csv(content) + + assert "STATUS" in str(exc_info.value) + + def test_parse_csv_missing_account_uid_column_raises_error(self): + """Test that missing ACCOUNT_UID column raises CSVParseError.""" + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;RESOURCE_UID +finding-001;aws;check_1;PASS;resource-1""" + content = csv_data.encode("utf-8") + + with pytest.raises(CSVParseError) as exc_info: + parse_csv(content) + + assert "ACCOUNT_UID" in str(exc_info.value) + + def test_parse_csv_missing_multiple_columns_reports_all(self): + """Test that multiple missing columns are all reported.""" + csv_data = """RESOURCE_UID;REGION +resource-1;us-east-1""" + content = csv_data.encode("utf-8") + + with pytest.raises(CSVParseError) as exc_info: + parse_csv(content) + + error_msg = str(exc_info.value) + assert "FINDING_UID" in error_msg + assert "PROVIDER" in error_msg + assert "CHECK_ID" in error_msg + assert "STATUS" in error_msg + assert "ACCOUNT_UID" in error_msg + + def test_validate_csv_structure_missing_column_returns_error(self): + """Test that validate_csv_structure detects missing required columns.""" + csv_data = """PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +aws;check_1;PASS;123456789012;resource-1""" + content = csv_data.encode("utf-8") + + is_valid, error = validate_csv_structure(content) + + assert is_valid is False + assert error is not None + assert "FINDING_UID" in error + + def test_validate_csv_structure_empty_required_value_returns_error(self): + """Test that validate_csv_structure detects empty required field values.""" + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +;aws;check_1;PASS;123456789012;resource-1""" + content = csv_data.encode("utf-8") + + is_valid, error = validate_csv_structure(content) + + assert is_valid is False + assert error is not None + assert "FINDING_UID" in error + + def test_validate_csv_content_missing_column_adds_error(self): + """Test that validate_csv_content adds error for missing columns.""" + csv_data = """PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +aws;check_1;PASS;123456789012;resource-1""" + content = csv_data.encode("utf-8") + + result = validate_csv_content(content) + + assert result.is_valid is False + assert len(result.errors) > 0 + error_fields = [e.field for e in result.errors] + assert "FINDING_UID" in error_fields + + def test_validate_csv_content_empty_required_value_adds_error(self): + """Test that validate_csv_content adds error for empty required values.""" + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +finding-001;aws;check_1;PASS;123456789012;resource-1 +;aws;check_2;FAIL;123456789012;resource-2""" + content = csv_data.encode("utf-8") + + result = validate_csv_content(content) + + assert result.is_valid is False + error_messages = [e.message for e in result.errors] + assert any("FINDING_UID" in msg for msg in error_messages) + + def test_validate_csv_content_whitespace_only_value_adds_error(self): + """Test that validate_csv_content treats whitespace-only as empty.""" + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID + ;aws;check_1;PASS;123456789012;resource-1""" + content = csv_data.encode("utf-8") + + result = validate_csv_content(content) + + assert result.is_valid is False + error_messages = [e.message for e in result.errors] + assert any("FINDING_UID" in msg for msg in error_messages) + + def test_parse_csv_empty_finding_uid_value_raises_error(self): + """Test that empty FINDING_UID value in row raises error.""" + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +;aws;check_1;PASS;123456789012;resource-1""" + content = csv_data.encode("utf-8") + + with pytest.raises(CSVParseError) as exc_info: + parse_csv(content) + + assert "FINDING_UID" in str(exc_info.value) + + def test_parse_csv_empty_check_id_value_raises_error(self): + """Test that empty CHECK_ID value in row raises error.""" + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +finding-001;aws;;PASS;123456789012;resource-1""" + content = csv_data.encode("utf-8") + + with pytest.raises(CSVParseError) as exc_info: + parse_csv(content) + + assert "CHECK_ID" in str(exc_info.value) + + def test_parse_csv_empty_account_uid_value_raises_error(self): + """Test that empty ACCOUNT_UID value in row raises error.""" + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +finding-001;aws;check_1;PASS;;resource-1""" + content = csv_data.encode("utf-8") + + with pytest.raises(CSVParseError) as exc_info: + parse_csv(content) + + assert "ACCOUNT_UID" in str(exc_info.value) + + +class TestParseTimestamp: + """ + Tests for _parse_timestamp function. + + The timestamp parsing supports multiple formats: + - ISO 8601 with microseconds: "2025-02-14T14:27:03.913874" + - Space-separated with microseconds: "2025-02-14 14:27:03.913874" + - ISO 8601 without microseconds: "2025-02-14T14:27:03" + - Space-separated without microseconds: "2025-02-14 14:27:03" + - Date only: "2025-02-14" + + Test Coverage: + - ISO 8601 format with microseconds + - Space-separated format with microseconds + - ISO 8601 format without microseconds + - Date only format + - Empty string returns None + - Invalid format returns None + """ + + def test_parse_iso8601_with_microseconds(self): + """Test parsing ISO 8601 timestamp with microseconds.""" + timestamp_str = "2025-02-14T14:27:03.913874" + + result = _parse_timestamp(timestamp_str) + + assert result is not None + assert isinstance(result, datetime) + assert result.year == 2025 + assert result.month == 2 + assert result.day == 14 + assert result.hour == 14 + assert result.minute == 27 + assert result.second == 3 + + def test_parse_space_separated_with_microseconds(self): + """Test parsing space-separated timestamp with microseconds.""" + timestamp_str = "2025-02-14 14:27:03.913874" + + result = _parse_timestamp(timestamp_str) + + assert result is not None + assert result.year == 2025 + assert result.month == 2 + assert result.day == 14 + + def test_parse_iso8601_without_microseconds(self): + """Test parsing ISO 8601 timestamp without microseconds.""" + timestamp_str = "2025-02-14T14:27:03" + + result = _parse_timestamp(timestamp_str) + + assert result is not None + assert result.hour == 14 + assert result.minute == 27 + assert result.second == 3 + + def test_parse_date_only(self): + """Test parsing date-only timestamp.""" + timestamp_str = "2025-02-14" + + result = _parse_timestamp(timestamp_str) + + assert result is not None + assert result.year == 2025 + assert result.month == 2 + assert result.day == 14 + + def test_parse_empty_string_returns_none(self): + """Test that empty string returns None.""" + result = _parse_timestamp("") + + assert result is None + + def test_parse_invalid_format_returns_none(self): + """Test that invalid format returns None.""" + result = _parse_timestamp("not-a-timestamp") + + assert result is None + + +class TestMutedFieldParsing: + """ + Tests for muted field parsing in CSVFinding. + + The muted field accepts various boolean representations: + - "true", "1", "yes" -> True + - Any other value -> False + + Test Coverage: + - Muted field with "true" value + - Muted field with "1" value + - Muted field with "yes" value + - Muted field with "false" value + - Muted field with empty value + - Muted field case insensitivity + """ + + @pytest.fixture + def base_row(self): + """Return a base CSV row with all required fields.""" + return { + "FINDING_UID": "finding-123", + "PROVIDER": "aws", + "CHECK_ID": "check_1", + "STATUS": "FAIL", + "ACCOUNT_UID": "123456789012", + "SEVERITY": "low", + "RESOURCE_UID": "resource-1", + } + + def test_muted_true_string(self, base_row): + """Test muted field with 'true' value.""" + base_row["MUTED"] = "true" + + finding = CSVFinding.from_row(base_row) + + assert finding.muted is True + + def test_muted_one_string(self, base_row): + """Test muted field with '1' value.""" + base_row["MUTED"] = "1" + + finding = CSVFinding.from_row(base_row) + + assert finding.muted is True + + def test_muted_yes_string(self, base_row): + """Test muted field with 'yes' value.""" + base_row["MUTED"] = "yes" + + finding = CSVFinding.from_row(base_row) + + assert finding.muted is True + + def test_muted_false_string(self, base_row): + """Test muted field with 'false' value.""" + base_row["MUTED"] = "false" + + finding = CSVFinding.from_row(base_row) + + assert finding.muted is False + + def test_muted_empty_string(self, base_row): + """Test muted field with empty value.""" + base_row["MUTED"] = "" + + finding = CSVFinding.from_row(base_row) + + assert finding.muted is False + + def test_muted_case_insensitive(self, base_row): + """Test muted field is case insensitive.""" + base_row["MUTED"] = "TRUE" + + finding = CSVFinding.from_row(base_row) + + assert finding.muted is True + + +class TestExtractProviderInfo: + """ + Tests for extract_provider_info function. + + The function extracts provider type and account UID from the first finding + in a list of parsed CSV findings. + + Test Coverage: + - Extract from single finding + - Extract from multiple findings (uses first) + - Empty list returns None + """ + + def test_extract_from_single_finding(self): + """Test extracting provider info from single finding.""" + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +finding-001;aws;check_1;PASS;123456789012;resource-1""" + content = csv_data.encode("utf-8") + + findings = parse_csv(content) + result = extract_provider_info(findings) + + assert result is not None + assert result == ("aws", "123456789012") + + def test_extract_from_multiple_findings(self): + """Test extracting provider info from multiple findings (uses first).""" + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +finding-001;aws;check_1;PASS;123456789012;resource-1 +finding-002;azure;check_2;FAIL;subscription-123;resource-2""" + content = csv_data.encode("utf-8") + + findings = parse_csv(content) + result = extract_provider_info(findings) + + assert result is not None + assert result == ("aws", "123456789012") + + def test_extract_from_empty_list_returns_none(self): + """Test extracting provider info from empty list returns None.""" + result = extract_provider_info([]) + + assert result is None + + +class TestHelperFunctions: + """ + Tests for helper functions that return constants. + + These functions provide access to the parser's configuration constants + in a sorted list format. + + Test Coverage: + - get_supported_provider_types returns sorted list + - get_valid_severity_levels returns sorted list + - get_valid_status_codes returns sorted list + - get_required_csv_columns returns sorted list + - get_expected_csv_columns returns sorted list + - Constants are immutable frozen sets + """ + + def test_get_supported_provider_types_returns_sorted_list(self): + """Test get_supported_provider_types returns sorted list.""" + providers = get_supported_provider_types() + + assert isinstance(providers, list) + assert "aws" in providers + assert "azure" in providers + assert "gcp" in providers + assert providers == sorted(providers) + + def test_get_valid_severity_levels_returns_sorted_list(self): + """Test get_valid_severity_levels returns sorted list.""" + severities = get_valid_severity_levels() + + assert isinstance(severities, list) + assert "critical" in severities + assert "high" in severities + assert "low" in severities + assert severities == sorted(severities) + + def test_get_valid_status_codes_returns_sorted_list(self): + """Test get_valid_status_codes returns sorted list.""" + statuses = get_valid_status_codes() + + assert isinstance(statuses, list) + assert "PASS" in statuses + assert "FAIL" in statuses + assert "MANUAL" in statuses + assert statuses == sorted(statuses) + + def test_get_required_csv_columns_returns_sorted_list(self): + """Test get_required_csv_columns returns sorted list.""" + columns = get_required_csv_columns() + + assert isinstance(columns, list) + assert "FINDING_UID" in columns + assert "PROVIDER" in columns + assert "CHECK_ID" in columns + assert "STATUS" in columns + assert "ACCOUNT_UID" in columns + assert columns == sorted(columns) + + def test_get_expected_csv_columns_returns_sorted_list(self): + """Test get_expected_csv_columns returns sorted list.""" + columns = get_expected_csv_columns() + + assert isinstance(columns, list) + assert "FINDING_UID" in columns + assert "COMPLIANCE" in columns + assert "TIMESTAMP" in columns + assert columns == sorted(columns) + + def test_constants_are_frozen_sets(self): + """Test that constants are immutable frozen sets.""" + assert isinstance(SUPPORTED_PROVIDER_TYPES, frozenset) + assert isinstance(VALID_SEVERITY_LEVELS, frozenset) + assert isinstance(VALID_STATUS_CODES, frozenset) + assert isinstance(REQUIRED_CSV_COLUMNS, frozenset) + assert isinstance(EXPECTED_CSV_COLUMNS, frozenset) + + +class TestEmptyAndInvalidContent: + """ + Tests for edge cases with empty or invalid content. + + Test Coverage: + - Empty CSV content raises error + - Invalid UTF-8 encoding raises error + - CSV with only headers (no data rows) is valid + - Whitespace-only content raises error + """ + + def test_parse_csv_empty_content_raises_error(self): + """Test that empty content raises CSVParseError.""" + content = b"" + + with pytest.raises(CSVParseError) as exc_info: + parse_csv(content) + + assert "empty" in str(exc_info.value).lower() + + def test_parse_csv_invalid_utf8_raises_error(self): + """Test that invalid UTF-8 encoding raises CSVParseError.""" + content = b"\xff\xfe" + + with pytest.raises(CSVParseError) as exc_info: + parse_csv(content) + + assert "UTF-8" in str(exc_info.value) + + def test_parse_csv_headers_only_returns_empty_list(self): + """Test that CSV with only headers returns empty list.""" + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID""" + content = csv_data.encode("utf-8") + + findings = parse_csv(content) + + assert findings == [] + + def test_parse_csv_whitespace_only_raises_error(self): + """Test that whitespace-only content raises CSVParseError.""" + content = b" \n\t\n " + + with pytest.raises(CSVParseError) as exc_info: + parse_csv(content) + + assert ( + "empty" in str(exc_info.value).lower() + or "no headers" in str(exc_info.value).lower() + ) + + def test_validate_csv_structure_empty_content_returns_error(self): + """Test that validate_csv_structure returns error for empty content.""" + content = b"" + + is_valid, error = validate_csv_structure(content) + + assert is_valid is False + assert error is not None + assert "empty" in error.lower() + + def test_validate_csv_structure_invalid_utf8_returns_error(self): + """Test that validate_csv_structure returns error for invalid UTF-8.""" + content = b"\xff\xfe" + + is_valid, error = validate_csv_structure(content) + + assert is_valid is False + assert error is not None + assert "UTF-8" in error + + def test_validate_csv_content_empty_content_adds_error(self): + """Test that validate_csv_content adds error for empty content.""" + content = b"" + + result = validate_csv_content(content) + + assert result.is_valid is False + assert len(result.errors) > 0 + + +class TestTimestampInFinding: + """ + Tests for timestamp field in CSVFinding. + + Test Coverage: + - Finding with valid timestamp + - Finding without timestamp + - Finding with invalid timestamp + """ + + @pytest.fixture + def base_row(self): + """Return a base CSV row with all required fields.""" + return { + "FINDING_UID": "finding-123", + "PROVIDER": "aws", + "CHECK_ID": "check_1", + "STATUS": "FAIL", + "ACCOUNT_UID": "123456789012", + "SEVERITY": "low", + "RESOURCE_UID": "resource-1", + } + + def test_finding_with_valid_timestamp(self, base_row): + """Test creating finding with valid timestamp.""" + base_row["TIMESTAMP"] = "2025-02-14T14:27:03.913874" + + finding = CSVFinding.from_row(base_row) + + assert finding.timestamp is not None + assert finding.timestamp.year == 2025 + assert finding.timestamp.month == 2 + assert finding.timestamp.day == 14 + + def test_finding_without_timestamp(self, base_row): + """Test creating finding without timestamp.""" + finding = CSVFinding.from_row(base_row) + + assert finding.timestamp is None + + def test_finding_with_invalid_timestamp(self, base_row): + """Test creating finding with invalid timestamp (returns None).""" + base_row["TIMESTAMP"] = "not-a-timestamp" + + finding = CSVFinding.from_row(base_row) + + assert finding.timestamp is None + + +class TestProviderTypeValidation: + """ + Tests for provider type validation in CSV parsing. + + Test Coverage: + - All supported provider types are accepted + - Unknown provider types are accepted with warning (not error) + - Provider type is normalized to lowercase + """ + + @pytest.fixture + def base_row(self): + """Return a base CSV row with all required fields.""" + return { + "FINDING_UID": "finding-123", + "CHECK_ID": "check_1", + "STATUS": "FAIL", + "ACCOUNT_UID": "123456789012", + "SEVERITY": "low", + "RESOURCE_UID": "resource-1", + } + + def test_aws_provider_accepted(self, base_row): + """Test that AWS provider is accepted.""" + base_row["PROVIDER"] = "aws" + + finding = CSVFinding.from_row(base_row) + + assert finding.provider_type == "aws" + + def test_azure_provider_accepted(self, base_row): + """Test that Azure provider is accepted.""" + base_row["PROVIDER"] = "azure" + + finding = CSVFinding.from_row(base_row) + + assert finding.provider_type == "azure" + + def test_gcp_provider_accepted(self, base_row): + """Test that GCP provider is accepted.""" + base_row["PROVIDER"] = "gcp" + + finding = CSVFinding.from_row(base_row) + + assert finding.provider_type == "gcp" + + def test_kubernetes_provider_accepted(self, base_row): + """Test that Kubernetes provider is accepted.""" + base_row["PROVIDER"] = "kubernetes" + + finding = CSVFinding.from_row(base_row) + + assert finding.provider_type == "kubernetes" + + def test_provider_normalized_to_lowercase(self, base_row): + """Test that provider type is normalized to lowercase.""" + base_row["PROVIDER"] = "AWS" + + finding = CSVFinding.from_row(base_row) + + assert finding.provider_type == "aws" + + def test_unknown_provider_accepted_with_warning(self, base_row): + """Test that unknown provider is accepted (logs warning but doesn't fail).""" + base_row["PROVIDER"] = "unknown_provider" + + # Should not raise an error + finding = CSVFinding.from_row(base_row) + + assert finding.provider_type == "unknown_provider" + + +class TestSeverityValidation: + """ + Tests for severity validation in CSV parsing. + + Test Coverage: + - All valid severity levels are accepted + - Unknown severity defaults to 'informational' + - Severity is normalized to lowercase + """ + + @pytest.fixture + def base_row(self): + """Return a base CSV row with all required fields.""" + return { + "FINDING_UID": "finding-123", + "PROVIDER": "aws", + "CHECK_ID": "check_1", + "STATUS": "FAIL", + "ACCOUNT_UID": "123456789012", + "RESOURCE_UID": "resource-1", + } + + def test_critical_severity_accepted(self, base_row): + """Test that critical severity is accepted.""" + base_row["SEVERITY"] = "critical" + + finding = CSVFinding.from_row(base_row) + + assert finding.severity == "critical" + + def test_high_severity_accepted(self, base_row): + """Test that high severity is accepted.""" + base_row["SEVERITY"] = "high" + + finding = CSVFinding.from_row(base_row) + + assert finding.severity == "high" + + def test_unknown_severity_defaults_to_informational(self, base_row): + """Test that unknown severity defaults to informational.""" + base_row["SEVERITY"] = "unknown_severity" + + finding = CSVFinding.from_row(base_row) + + assert finding.severity == "informational" + + def test_severity_normalized_to_lowercase(self, base_row): + """Test that severity is normalized to lowercase.""" + base_row["SEVERITY"] = "HIGH" + + finding = CSVFinding.from_row(base_row) + + assert finding.severity == "high" + + +class TestStatusValidation: + """ + Tests for status validation in CSV parsing. + + Test Coverage: + - All valid status codes are accepted + - Unknown status defaults to 'MANUAL' + - Status is normalized to uppercase + """ + + @pytest.fixture + def base_row(self): + """Return a base CSV row with all required fields.""" + return { + "FINDING_UID": "finding-123", + "PROVIDER": "aws", + "CHECK_ID": "check_1", + "ACCOUNT_UID": "123456789012", + "SEVERITY": "low", + "RESOURCE_UID": "resource-1", + } + + def test_pass_status_accepted(self, base_row): + """Test that PASS status is accepted.""" + base_row["STATUS"] = "PASS" + + finding = CSVFinding.from_row(base_row) + + assert finding.status == "PASS" + + def test_fail_status_accepted(self, base_row): + """Test that FAIL status is accepted.""" + base_row["STATUS"] = "FAIL" + + finding = CSVFinding.from_row(base_row) + + assert finding.status == "FAIL" + + def test_manual_status_accepted(self, base_row): + """Test that MANUAL status is accepted.""" + base_row["STATUS"] = "MANUAL" + + finding = CSVFinding.from_row(base_row) + + assert finding.status == "MANUAL" + + def test_unknown_status_defaults_to_manual(self, base_row): + """Test that unknown status defaults to MANUAL.""" + base_row["STATUS"] = "UNKNOWN" + + finding = CSVFinding.from_row(base_row) + + assert finding.status == "MANUAL" + + def test_status_normalized_to_uppercase(self, base_row): + """Test that status is normalized to uppercase.""" + base_row["STATUS"] = "pass" + + finding = CSVFinding.from_row(base_row) + + assert finding.status == "PASS" diff --git a/api/src/backend/api/tests/test_ocsf_parser.py b/api/src/backend/api/tests/test_ocsf_parser.py new file mode 100644 index 0000000000..2e7486896c --- /dev/null +++ b/api/src/backend/api/tests/test_ocsf_parser.py @@ -0,0 +1,946 @@ +""" +Unit tests for the OCSF parser module. + +Tests parsing of Prowler CLI JSON/OCSF output format. +""" + +import json +from datetime import datetime + +import pytest + +from api.parsers.ocsf_parser import ( + OCSFCheckMetadata, + OCSFFinding, + OCSFParseError, + OCSFResource, + OCSFValidationError, + OCSFValidationResult, + SUPPORTED_PROVIDER_TYPES, + VALID_SEVERITY_LEVELS, + VALID_STATUS_CODES, + extract_provider_info, + get_supported_provider_types, + get_valid_severity_levels, + get_valid_status_codes, + parse_ocsf_json, + validate_ocsf_content, + validate_ocsf_finding, + validate_ocsf_structure, +) + + +class TestOCSFResource: + """Tests for OCSFResource dataclass.""" + + def test_from_dict_valid_resource(self): + """Test parsing a valid resource.""" + data = { + "uid": "arn:aws:s3:::my-bucket", + "name": "my-bucket", + "region": "us-east-1", + "group": {"name": "s3"}, + "type": "bucket", + "cloud_partition": "aws", + "labels": ["production"], + "data": {"details": "test"}, + } + + resource = OCSFResource.from_dict(data) + + assert resource.uid == "arn:aws:s3:::my-bucket" + assert resource.name == "my-bucket" + assert resource.region == "us-east-1" + assert resource.service == "s3" + assert resource.type == "bucket" + assert resource.cloud_partition == "aws" + assert resource.labels == ["production"] + assert resource.data == {"details": "test"} + + def test_from_dict_minimal_resource(self): + """Test parsing a resource with only required fields.""" + data = {"uid": "resource-123"} + + resource = OCSFResource.from_dict(data) + + assert resource.uid == "resource-123" + assert resource.name == "resource-123" # Defaults to uid + assert resource.region == "" + assert resource.service == "" + assert resource.type == "" + + def test_from_dict_missing_uid_raises_error(self): + """Test that missing uid raises OCSFParseError.""" + data = {"name": "my-resource"} + + with pytest.raises(OCSFParseError) as exc_info: + OCSFResource.from_dict(data, index=5) + + assert "uid" in str(exc_info.value) + assert exc_info.value.index == 5 + + +class TestOCSFFinding: + """Tests for OCSFFinding dataclass.""" + + @pytest.fixture + def valid_finding_data(self): + """Return valid OCSF finding data.""" + return { + "message": "IAM Access Analyzer is not enabled.", + "metadata": { + "event_code": "accessanalyzer_enabled", + "product": {"name": "Prowler", "version": "5.0.0"}, + }, + "severity": "Low", + "status_code": "FAIL", + "status_detail": "IAM Access Analyzer is not enabled.", + "finding_info": { + "uid": "finding-123", + "title": "Check if IAM Access Analyzer is enabled", + "desc": "Check if IAM Access Analyzer is enabled", + "types": ["IAM"], + }, + "cloud": { + "provider": "aws", + "account": {"uid": "123456789012", "name": "Production"}, + "region": "us-east-1", + }, + "resources": [ + { + "uid": "arn:aws:accessanalyzer:us-east-1:123456789012:analyzer", + "name": "analyzer", + "region": "us-east-1", + "group": {"name": "accessanalyzer"}, + "type": "Other", + } + ], + "remediation": { + "desc": "Enable IAM Access Analyzer", + "references": ["https://docs.aws.amazon.com/"], + }, + "risk_details": "IAM Access Analyzer helps identify resources.", + "unmapped": { + "compliance": {"CIS-1.4": ["1.20"], "CIS-1.5": ["1.20"]}, + "categories": ["security"], + "related_url": "https://docs.aws.amazon.com/", + }, + "time": 1739539623, + "time_dt": "2025-02-14T14:27:03.913874", + } + + def test_from_dict_valid_finding(self, valid_finding_data): + """Test parsing a valid finding.""" + finding = OCSFFinding.from_dict(valid_finding_data) + + assert finding.uid == "finding-123" + assert finding.check_id == "accessanalyzer_enabled" + assert finding.severity == "low" + assert finding.status == "FAIL" + assert finding.status_extended == "IAM Access Analyzer is not enabled." + assert finding.provider_type == "aws" + assert finding.account_uid == "123456789012" + assert finding.account_name == "Production" + assert len(finding.resources) == 1 + assert ( + finding.resources[0].uid + == "arn:aws:accessanalyzer:us-east-1:123456789012:analyzer" + ) + assert finding.compliance == {"CIS-1.4": ["1.20"], "CIS-1.5": ["1.20"]} + assert finding.check_metadata.title == "Check if IAM Access Analyzer is enabled" + assert ( + finding.check_metadata.risk + == "IAM Access Analyzer helps identify resources." + ) + + def test_from_dict_missing_event_code_raises_error(self, valid_finding_data): + """Test that missing event_code raises OCSFParseError.""" + del valid_finding_data["metadata"]["event_code"] + + with pytest.raises(OCSFParseError) as exc_info: + OCSFFinding.from_dict(valid_finding_data) + + assert "metadata.event_code" in str(exc_info.value) + + def test_from_dict_missing_finding_uid_raises_error(self, valid_finding_data): + """Test that missing finding_info.uid raises OCSFParseError.""" + del valid_finding_data["finding_info"]["uid"] + + with pytest.raises(OCSFParseError) as exc_info: + OCSFFinding.from_dict(valid_finding_data) + + assert "finding_info.uid" in str(exc_info.value) + + def test_from_dict_missing_provider_raises_error(self, valid_finding_data): + """Test that missing cloud.provider raises OCSFParseError.""" + del valid_finding_data["cloud"]["provider"] + + with pytest.raises(OCSFParseError) as exc_info: + OCSFFinding.from_dict(valid_finding_data) + + assert "cloud.provider" in str(exc_info.value) + + def test_from_dict_missing_account_uid_raises_error(self, valid_finding_data): + """Test that missing cloud.account.uid raises OCSFParseError.""" + del valid_finding_data["cloud"]["account"]["uid"] + + with pytest.raises(OCSFParseError) as exc_info: + OCSFFinding.from_dict(valid_finding_data) + + assert "cloud.account.uid" in str(exc_info.value) + + def test_from_dict_normalizes_severity(self, valid_finding_data): + """Test that severity is normalized to lowercase.""" + valid_finding_data["severity"] = "HIGH" + + finding = OCSFFinding.from_dict(valid_finding_data) + + assert finding.severity == "high" + + def test_from_dict_normalizes_status(self, valid_finding_data): + """Test that status is normalized to uppercase.""" + valid_finding_data["status_code"] = "pass" + + finding = OCSFFinding.from_dict(valid_finding_data) + + assert finding.status == "PASS" + + def test_from_dict_unknown_status_defaults_to_manual(self, valid_finding_data): + """Test that unknown status defaults to MANUAL.""" + valid_finding_data["status_code"] = "UNKNOWN" + + finding = OCSFFinding.from_dict(valid_finding_data) + + assert finding.status == "MANUAL" + + def test_from_dict_parses_timestamp(self, valid_finding_data): + """Test that timestamp is parsed correctly.""" + finding = OCSFFinding.from_dict(valid_finding_data) + + assert finding.timestamp is not None + assert isinstance(finding.timestamp, datetime) + + def test_from_dict_handles_missing_optional_fields(self, valid_finding_data): + """Test parsing with missing optional fields.""" + del valid_finding_data["remediation"] + del valid_finding_data["risk_details"] + del valid_finding_data["unmapped"] + + finding = OCSFFinding.from_dict(valid_finding_data) + + assert finding.check_metadata.remediation_description == "" + assert finding.check_metadata.risk == "" + assert finding.compliance == {} + + +class TestParseOCSFJson: + """Tests for parse_ocsf_json function.""" + + @pytest.fixture + def valid_ocsf_content(self): + """Return valid OCSF JSON content as bytes.""" + data = [ + { + "message": "Finding 1", + "metadata": {"event_code": "check_1"}, + "severity": "Low", + "status_code": "FAIL", + "status_detail": "Finding 1 detail", + "finding_info": { + "uid": "finding-1", + "title": "Check 1", + "desc": "Desc 1", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "123456789012", "name": "Test"}, + }, + "resources": [], + }, + { + "message": "Finding 2", + "metadata": {"event_code": "check_2"}, + "severity": "High", + "status_code": "PASS", + "status_detail": "Finding 2 detail", + "finding_info": { + "uid": "finding-2", + "title": "Check 2", + "desc": "Desc 2", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "123456789012", "name": "Test"}, + }, + "resources": [], + }, + ] + return json.dumps(data).encode("utf-8") + + def test_parse_valid_ocsf_json(self, valid_ocsf_content): + """Test parsing valid OCSF JSON.""" + findings = parse_ocsf_json(valid_ocsf_content) + + assert len(findings) == 2 + assert findings[0].check_id == "check_1" + assert findings[0].severity == "low" + assert findings[1].check_id == "check_2" + assert findings[1].severity == "high" + + def test_parse_empty_array(self): + """Test parsing empty array returns empty list.""" + content = b"[]" + + findings = parse_ocsf_json(content) + + assert findings == [] + + def test_parse_invalid_json_raises_error(self): + """Test that invalid JSON raises OCSFParseError.""" + content = b"not valid json" + + with pytest.raises(OCSFParseError) as exc_info: + parse_ocsf_json(content) + + assert "Invalid JSON" in str(exc_info.value) + + def test_parse_non_array_raises_error(self): + """Test that non-array JSON raises OCSFParseError.""" + content = b'{"key": "value"}' + + with pytest.raises(OCSFParseError) as exc_info: + parse_ocsf_json(content) + + assert "expected a JSON array" in str(exc_info.value) + + def test_parse_invalid_utf8_raises_error(self): + """Test that invalid UTF-8 raises OCSFParseError.""" + content = b"\xff\xfe" + + with pytest.raises(OCSFParseError) as exc_info: + parse_ocsf_json(content) + + assert "Invalid UTF-8" in str(exc_info.value) + + def test_parse_partial_failures_returns_valid_findings(self): + """Test that partial failures still return valid findings.""" + data = [ + { + "message": "Valid finding", + "metadata": {"event_code": "check_1"}, + "severity": "Low", + "status_code": "FAIL", + "finding_info": { + "uid": "finding-1", + "title": "Check 1", + "desc": "Desc", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "123456789012"}, + }, + }, + { + "message": "Invalid finding - missing required fields", + }, + ] + content = json.dumps(data).encode("utf-8") + + findings = parse_ocsf_json(content) + + assert len(findings) == 1 + assert findings[0].check_id == "check_1" + + def test_parse_all_invalid_raises_error(self): + """Test that all invalid findings raises OCSFParseError.""" + data = [ + {"message": "Invalid 1"}, + {"message": "Invalid 2"}, + ] + content = json.dumps(data).encode("utf-8") + + with pytest.raises(OCSFParseError) as exc_info: + parse_ocsf_json(content) + + assert "Failed to parse any findings" in str(exc_info.value) + + +class TestValidateOCSFStructure: + """Tests for validate_ocsf_structure function.""" + + def test_valid_ocsf_structure(self): + """Test validation of valid OCSF structure.""" + data = [ + { + "metadata": {"event_code": "check_1"}, + "finding_info": {"uid": "finding-1"}, + "cloud": {"provider": "aws"}, + } + ] + content = json.dumps(data).encode("utf-8") + + is_valid, error = validate_ocsf_structure(content) + + assert is_valid is True + assert error is None + + def test_empty_array_is_valid(self): + """Test that empty array is valid.""" + content = b"[]" + + is_valid, error = validate_ocsf_structure(content) + + assert is_valid is True + assert error is None + + def test_invalid_json(self): + """Test validation of invalid JSON.""" + content = b"not json" + + is_valid, error = validate_ocsf_structure(content) + + assert is_valid is False + assert "Invalid JSON" in error + + def test_non_array(self): + """Test validation of non-array JSON.""" + content = b'{"key": "value"}' + + is_valid, error = validate_ocsf_structure(content) + + assert is_valid is False + assert "Expected JSON array" in error + + def test_missing_required_fields(self): + """Test validation with missing required fields.""" + data = [{"message": "test"}] + content = json.dumps(data).encode("utf-8") + + is_valid, error = validate_ocsf_structure(content) + + assert is_valid is False + assert "Missing required OCSF fields" in error + + def test_missing_event_code(self): + """Test validation with missing event_code.""" + data = [ + { + "metadata": {}, + "finding_info": {"uid": "finding-1"}, + "cloud": {"provider": "aws"}, + } + ] + content = json.dumps(data).encode("utf-8") + + is_valid, error = validate_ocsf_structure(content) + + assert is_valid is False + assert "metadata.event_code" in error + + +class TestExtractProviderInfo: + """Tests for extract_provider_info function.""" + + def test_extract_provider_info(self): + """Test extracting provider info from findings.""" + findings = [ + OCSFFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="Detail", + message="Message", + impact_extended="Impact", + check_metadata=OCSFCheckMetadata(), + compliance={}, + resources=[], + provider_type="aws", + account_uid="123456789012", + account_name="Test", + ) + ] + + result = extract_provider_info(findings) + + assert result == ("aws", "123456789012") + + def test_extract_provider_info_empty_list(self): + """Test extracting provider info from empty list.""" + result = extract_provider_info([]) + + assert result is None + + +class TestOCSFParseError: + """Tests for OCSFParseError exception.""" + + def test_error_message_basic(self): + """Test basic error message.""" + error = OCSFParseError("Test error") + + assert str(error) == "Test error" + + def test_error_message_with_index(self): + """Test error message with index.""" + error = OCSFParseError("Test error", index=5) + + assert "at index 5" in str(error) + + def test_error_message_with_field(self): + """Test error message with field.""" + error = OCSFParseError("Test error", field="metadata.event_code") + + assert "metadata.event_code" in str(error) + + def test_error_message_with_all_params(self): + """Test error message with all parameters.""" + error = OCSFParseError("Test error", index=3, field="cloud.provider") + + message = str(error) + assert "Test error" in message + assert "at index 3" in message + assert "cloud.provider" in message + + +class TestOCSFValidationResult: + """Tests for OCSFValidationResult dataclass.""" + + def test_initial_state_is_valid(self): + """Test that initial state is valid.""" + result = OCSFValidationResult(is_valid=True) + + assert result.is_valid is True + assert result.errors == [] + assert result.warnings == [] + + def test_add_error_sets_invalid(self): + """Test that adding an error sets is_valid to False.""" + result = OCSFValidationResult(is_valid=True) + + result.add_error("Test error", "test.field") + + assert result.is_valid is False + assert len(result.errors) == 1 + assert result.errors[0].message == "Test error" + assert result.errors[0].field == "test.field" + + def test_add_warning_keeps_valid(self): + """Test that adding a warning keeps is_valid True.""" + result = OCSFValidationResult(is_valid=True) + + result.add_warning("Test warning", "test.field") + + assert result.is_valid is True + assert len(result.warnings) == 1 + + def test_error_to_dict(self): + """Test OCSFValidationError.to_dict().""" + error = OCSFValidationError( + message="Test error", + field="test.field", + index=5, + value="test_value", + ) + + result = error.to_dict() + + assert result["message"] == "Test error" + assert result["field"] == "test.field" + assert result["index"] == 5 + assert result["value"] == "test_value" + + +class TestValidateOCSFFinding: + """Tests for validate_ocsf_finding function.""" + + @pytest.fixture + def valid_finding_data(self): + """Return valid OCSF finding data.""" + return { + "message": "Test finding", + "metadata": {"event_code": "test_check"}, + "severity": "Low", + "status_code": "FAIL", + "finding_info": {"uid": "finding-123", "title": "Test", "desc": "Desc"}, + "cloud": { + "provider": "aws", + "account": {"uid": "123456789012", "name": "Test"}, + }, + "resources": [{"uid": "resource-1", "name": "test-resource"}], + } + + def test_valid_finding_passes(self, valid_finding_data): + """Test that valid finding passes validation.""" + result = validate_ocsf_finding(valid_finding_data) + + assert result.is_valid is True + assert len(result.errors) == 0 + + def test_missing_metadata_fails(self, valid_finding_data): + """Test that missing metadata fails validation.""" + del valid_finding_data["metadata"] + + result = validate_ocsf_finding(valid_finding_data) + + assert result.is_valid is False + assert any("metadata" in e.field for e in result.errors) + + def test_missing_finding_info_fails(self, valid_finding_data): + """Test that missing finding_info fails validation.""" + del valid_finding_data["finding_info"] + + result = validate_ocsf_finding(valid_finding_data) + + assert result.is_valid is False + assert any("finding_info" in e.field for e in result.errors) + + def test_missing_cloud_fails(self, valid_finding_data): + """Test that missing cloud fails validation.""" + del valid_finding_data["cloud"] + + result = validate_ocsf_finding(valid_finding_data) + + assert result.is_valid is False + assert any("cloud" in e.field for e in result.errors) + + def test_missing_event_code_fails(self, valid_finding_data): + """Test that missing event_code fails validation.""" + del valid_finding_data["metadata"]["event_code"] + + result = validate_ocsf_finding(valid_finding_data) + + assert result.is_valid is False + assert any("metadata.event_code" in e.field for e in result.errors) + + def test_missing_finding_uid_fails(self, valid_finding_data): + """Test that missing finding_info.uid fails validation.""" + del valid_finding_data["finding_info"]["uid"] + + result = validate_ocsf_finding(valid_finding_data) + + assert result.is_valid is False + assert any("finding_info.uid" in e.field for e in result.errors) + + def test_missing_provider_fails(self, valid_finding_data): + """Test that missing cloud.provider fails validation.""" + del valid_finding_data["cloud"]["provider"] + + result = validate_ocsf_finding(valid_finding_data) + + assert result.is_valid is False + assert any("cloud.provider" in e.field for e in result.errors) + + def test_missing_account_uid_fails(self, valid_finding_data): + """Test that missing cloud.account.uid fails validation.""" + del valid_finding_data["cloud"]["account"]["uid"] + + result = validate_ocsf_finding(valid_finding_data) + + assert result.is_valid is False + assert any("cloud.account.uid" in e.field for e in result.errors) + + def test_unknown_provider_warns(self, valid_finding_data): + """Test that unknown provider type generates warning.""" + valid_finding_data["cloud"]["provider"] = "unknown_provider" + + result = validate_ocsf_finding(valid_finding_data) + + assert result.is_valid is True # Warning, not error + assert len(result.warnings) > 0 + assert any("provider" in w.field for w in result.warnings) + + def test_unknown_provider_strict_fails(self, valid_finding_data): + """Test that unknown provider type fails in strict mode.""" + valid_finding_data["cloud"]["provider"] = "unknown_provider" + + result = validate_ocsf_finding(valid_finding_data, strict=True) + + assert result.is_valid is False + assert any("cloud.provider" in e.field for e in result.errors) + + def test_unknown_severity_warns(self, valid_finding_data): + """Test that unknown severity generates warning.""" + valid_finding_data["severity"] = "UNKNOWN_SEVERITY" + + result = validate_ocsf_finding(valid_finding_data) + + assert result.is_valid is True + assert any("severity" in w.field for w in result.warnings) + + def test_unknown_status_warns(self, valid_finding_data): + """Test that unknown status_code generates warning.""" + valid_finding_data["status_code"] = "UNKNOWN_STATUS" + + result = validate_ocsf_finding(valid_finding_data) + + assert result.is_valid is True + assert any("status_code" in w.field for w in result.warnings) + + def test_invalid_resources_type_fails(self, valid_finding_data): + """Test that non-array resources fails validation.""" + valid_finding_data["resources"] = "not_an_array" + + result = validate_ocsf_finding(valid_finding_data) + + assert result.is_valid is False + assert any("resources" in e.field for e in result.errors) + + def test_resource_missing_uid_fails(self, valid_finding_data): + """Test that resource without uid fails validation.""" + valid_finding_data["resources"] = [{"name": "test"}] + + result = validate_ocsf_finding(valid_finding_data) + + assert result.is_valid is False + assert any("resources[0].uid" in e.field for e in result.errors) + + +class TestValidateOCSFContent: + """Tests for validate_ocsf_content function.""" + + def test_valid_content_passes(self): + """Test that valid OCSF content passes validation.""" + data = [ + { + "metadata": {"event_code": "check_1"}, + "finding_info": {"uid": "finding-1"}, + "cloud": {"provider": "aws", "account": {"uid": "123456789012"}}, + } + ] + content = json.dumps(data).encode("utf-8") + + result = validate_ocsf_content(content) + + assert result.is_valid is True + assert len(result.errors) == 0 + + def test_invalid_utf8_fails(self): + """Test that invalid UTF-8 fails validation.""" + content = b"\xff\xfe" + + result = validate_ocsf_content(content) + + assert result.is_valid is False + assert any("UTF-8" in e.message for e in result.errors) + + def test_invalid_json_fails(self): + """Test that invalid JSON fails validation.""" + content = b"not valid json" + + result = validate_ocsf_content(content) + + assert result.is_valid is False + assert any("JSON" in e.message for e in result.errors) + + def test_non_array_fails(self): + """Test that non-array JSON fails validation.""" + content = b'{"key": "value"}' + + result = validate_ocsf_content(content) + + assert result.is_valid is False + assert any("array" in e.message for e in result.errors) + + def test_empty_array_warns(self): + """Test that empty array generates warning.""" + content = b"[]" + + result = validate_ocsf_content(content) + + assert result.is_valid is True + assert len(result.warnings) > 0 + + def test_multiple_findings_validated(self): + """Test that all findings are validated.""" + data = [ + { + "metadata": {"event_code": "check_1"}, + "finding_info": {"uid": "finding-1"}, + "cloud": {"provider": "aws", "account": {"uid": "123456789012"}}, + }, + { + "metadata": {}, # Missing event_code + "finding_info": {"uid": "finding-2"}, + "cloud": {"provider": "aws", "account": {"uid": "123456789012"}}, + }, + ] + content = json.dumps(data).encode("utf-8") + + result = validate_ocsf_content(content) + + assert result.is_valid is False + assert any("metadata.event_code" in e.field for e in result.errors) + + def test_max_errors_limit(self): + """Test that validation stops after max_errors.""" + # Create many invalid findings + data = [{"invalid": i} for i in range(200)] + content = json.dumps(data).encode("utf-8") + + result = validate_ocsf_content(content, max_errors=10) + + # Should have stopped early + assert len(result.errors) <= 15 # Some buffer for the limit + assert any("stopped" in w.message for w in result.warnings) + + +class TestHelperFunctions: + """Tests for helper functions.""" + + def test_get_supported_provider_types(self): + """Test get_supported_provider_types returns sorted list.""" + providers = get_supported_provider_types() + + assert isinstance(providers, list) + assert "aws" in providers + assert "azure" in providers + assert "gcp" in providers + assert providers == sorted(providers) + + def test_get_valid_severity_levels(self): + """Test get_valid_severity_levels returns sorted list.""" + severities = get_valid_severity_levels() + + assert isinstance(severities, list) + assert "critical" in severities + assert "high" in severities + assert "low" in severities + assert severities == sorted(severities) + + def test_get_valid_status_codes(self): + """Test get_valid_status_codes returns sorted list.""" + statuses = get_valid_status_codes() + + assert isinstance(statuses, list) + assert "PASS" in statuses + assert "FAIL" in statuses + assert "MANUAL" in statuses + assert statuses == sorted(statuses) + + def test_constants_are_frozen_sets(self): + """Test that constants are immutable frozen sets.""" + assert isinstance(SUPPORTED_PROVIDER_TYPES, frozenset) + assert isinstance(VALID_SEVERITY_LEVELS, frozenset) + assert isinstance(VALID_STATUS_CODES, frozenset) + + +class TestProviderTypeValidation: + """Tests for provider type validation in parsing.""" + + @pytest.fixture + def base_finding_data(self): + """Return base finding data for provider tests.""" + return { + "message": "Test finding", + "metadata": {"event_code": "test_check"}, + "severity": "Low", + "status_code": "FAIL", + "finding_info": {"uid": "finding-123", "title": "Test", "desc": "Desc"}, + "cloud": { + "provider": "aws", + "account": {"uid": "123456789012", "name": "Test"}, + }, + "resources": [], + } + + def test_aws_provider_accepted(self, base_finding_data): + """Test that AWS provider is accepted.""" + base_finding_data["cloud"]["provider"] = "aws" + + finding = OCSFFinding.from_dict(base_finding_data) + + assert finding.provider_type == "aws" + + def test_azure_provider_accepted(self, base_finding_data): + """Test that Azure provider is accepted.""" + base_finding_data["cloud"]["provider"] = "azure" + + finding = OCSFFinding.from_dict(base_finding_data) + + assert finding.provider_type == "azure" + + def test_gcp_provider_accepted(self, base_finding_data): + """Test that GCP provider is accepted.""" + base_finding_data["cloud"]["provider"] = "gcp" + + finding = OCSFFinding.from_dict(base_finding_data) + + assert finding.provider_type == "gcp" + + def test_kubernetes_provider_accepted(self, base_finding_data): + """Test that Kubernetes provider is accepted.""" + base_finding_data["cloud"]["provider"] = "kubernetes" + + finding = OCSFFinding.from_dict(base_finding_data) + + assert finding.provider_type == "kubernetes" + + def test_provider_normalized_to_lowercase(self, base_finding_data): + """Test that provider type is normalized to lowercase.""" + base_finding_data["cloud"]["provider"] = "AWS" + + finding = OCSFFinding.from_dict(base_finding_data) + + assert finding.provider_type == "aws" + + def test_unknown_provider_still_parses(self, base_finding_data): + """Test that unknown provider still parses (with warning).""" + base_finding_data["cloud"]["provider"] = "unknown_cloud" + + # Should not raise, just log warning + finding = OCSFFinding.from_dict(base_finding_data) + + assert finding.provider_type == "unknown_cloud" + + +class TestSeverityValidation: + """Tests for severity validation in parsing.""" + + @pytest.fixture + def base_finding_data(self): + """Return base finding data for severity tests.""" + return { + "message": "Test finding", + "metadata": {"event_code": "test_check"}, + "severity": "Low", + "status_code": "FAIL", + "finding_info": {"uid": "finding-123", "title": "Test", "desc": "Desc"}, + "cloud": { + "provider": "aws", + "account": {"uid": "123456789012", "name": "Test"}, + }, + "resources": [], + } + + def test_critical_severity_accepted(self, base_finding_data): + """Test that critical severity is accepted.""" + base_finding_data["severity"] = "critical" + + finding = OCSFFinding.from_dict(base_finding_data) + + assert finding.severity == "critical" + + def test_high_severity_accepted(self, base_finding_data): + """Test that high severity is accepted.""" + base_finding_data["severity"] = "high" + + finding = OCSFFinding.from_dict(base_finding_data) + + assert finding.severity == "high" + + def test_unknown_severity_defaults_to_informational(self, base_finding_data): + """Test that unknown severity defaults to informational.""" + base_finding_data["severity"] = "UNKNOWN" + + finding = OCSFFinding.from_dict(base_finding_data) + + assert finding.severity == "informational" + + def test_severity_normalized_to_lowercase(self, base_finding_data): + """Test that severity is normalized to lowercase.""" + base_finding_data["severity"] = "HIGH" + + finding = OCSFFinding.from_dict(base_finding_data) + + assert finding.severity == "high" diff --git a/api/src/backend/api/tests/test_scan_import_real_csv.py b/api/src/backend/api/tests/test_scan_import_real_csv.py new file mode 100644 index 0000000000..8dc489efd6 --- /dev/null +++ b/api/src/backend/api/tests/test_scan_import_real_csv.py @@ -0,0 +1,573 @@ +""" +Tests for scan import with real Prowler CSV output format. + +This module tests the scan import functionality using realistic Prowler CLI +CSV output format, matching the structure found in actual Prowler scans. + +These tests validate: +- Import of real Prowler CSV format (semicolon-delimited) +- Correct parsing of all CSV fields +- Provider creation from scan data +- Finding and resource creation +- Compliance mapping preservation +""" + +import io +from datetime import datetime +from pathlib import Path +from uuid import uuid4 + +import pytest +from django.urls import reverse +from rest_framework import status + +from api.models import Finding, Provider, Resource, Scan, StateChoices +from api.parsers.csv_parser import parse_csv, validate_csv_structure + + +# Path to the example output files +EXAMPLES_DIR = ( + Path(__file__).parent.parent.parent.parent.parent.parent / "examples" / "output" +) + + +def create_real_prowler_csv_data( + account_uid: str = "123456789012", + account_name: str = "Test AWS Account", +) -> str: + """ + Create realistic Prowler CSV data matching actual CLI output format. + + This generates test data that matches the exact structure of real Prowler CLI + output, including all 42 columns in the correct order. + + Args: + account_uid: AWS account ID to use in the test data. + account_name: AWS account name to use in the test data. + + Returns: + CSV content as string (semicolon-delimited). + """ + timestamp = datetime.now().strftime("%Y-%m-%d %H:%M:%S.%f") + + # Generate unique finding UIDs for this test run + finding_uid_1 = ( + f"prowler-aws-accessanalyzer_enabled-{account_uid}-us-east-1-{uuid4().hex[:8]}" + ) + finding_uid_2 = ( + f"prowler-aws-s3_bucket_public_access-{account_uid}-us-west-2-{uuid4().hex[:8]}" + ) + finding_uid_3 = f"prowler-aws-ec2_imdsv2-{account_uid}-us-east-1-{uuid4().hex[:8]}" + + resource_uid_1 = f"arn:aws:iam::{account_uid}:root" + resource_uid_2 = f"arn:aws:s3:::test-bucket-{uuid4().hex[:8]}" + resource_uid_3 = ( + f"arn:aws:ec2:us-east-1:{account_uid}:instance/i-{uuid4().hex[:12]}" + ) + + # CSV header (42 columns) + header = "AUTH_METHOD;TIMESTAMP;ACCOUNT_UID;ACCOUNT_NAME;ACCOUNT_EMAIL;ACCOUNT_ORGANIZATION_UID;ACCOUNT_ORGANIZATION_NAME;ACCOUNT_TAGS;FINDING_UID;PROVIDER;CHECK_ID;CHECK_TITLE;CHECK_TYPE;STATUS;STATUS_EXTENDED;MUTED;SERVICE_NAME;SUBSERVICE_NAME;SEVERITY;RESOURCE_TYPE;RESOURCE_UID;RESOURCE_NAME;RESOURCE_DETAILS;RESOURCE_TAGS;PARTITION;REGION;DESCRIPTION;RISK;RELATED_URL;REMEDIATION_RECOMMENDATION_TEXT;REMEDIATION_RECOMMENDATION_URL;REMEDIATION_CODE_NATIVEIAC;REMEDIATION_CODE_TERRAFORM;REMEDIATION_CODE_CLI;REMEDIATION_CODE_OTHER;COMPLIANCE;CATEGORIES;DEPENDS_ON;RELATED_TO;NOTES;PROWLER_VERSION;ADDITIONAL_URLS" + + # Row 1: IAM Access Analyzer (FAIL) + row1_fields = [ + "profile", + timestamp, + account_uid, + account_name, + "", + "", + "", + "", + finding_uid_1, + "aws", + "accessanalyzer_enabled", + "Check if IAM Access Analyzer is enabled", + "IAM", + "FAIL", + f"IAM Access Analyzer in account {account_uid} is not enabled.", + "False", + "accessanalyzer", + "", + "low", + "Other", + resource_uid_1, + account_uid, + "", + "", + "aws", + "us-east-1", + "Check if IAM Access Analyzer is enabled", + "AWS IAM Access Analyzer helps identify resources shared with external entities.", + "https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html", + "Enable IAM Access Analyzer for all accounts.", + "https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html", + "", + "", + "aws accessanalyzer create-analyzer --analyzer-name --type ", + "", + "CIS-1.4: 1.20 | CIS-1.5: 1.20 | CIS-2.0: 1.20 | CIS-3.0: 1.20 | AWS-Account-Security-Onboarding: Enabled security services, Create analyzers in each active regions", + "", + "", + "", + "", + "5.0.0", + "https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html", + ] + row1 = ";".join(row1_fields) + + # Row 2: S3 Bucket Public Access (PASS) + row2_fields = [ + "profile", + timestamp, + account_uid, + account_name, + "", + "", + "", + "", + finding_uid_2, + "aws", + "s3_bucket_public_access_block_enabled", + "S3 Bucket Public Access Block Check", + "S3", + "PASS", + "S3 bucket test-bucket has public access block enabled.", + "False", + "s3", + "", + "informational", + "bucket", + resource_uid_2, + "test-bucket", + "", + "", + "aws", + "us-west-2", + "Check if S3 buckets have public access block enabled", + "Public S3 buckets can expose sensitive data.", + "https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-control-block-public-access.html", + "S3 Block Public Access is already enabled.", + "https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-control-block-public-access.html", + "", + "", + "", + "", + "CIS-1.4: 2.1.5 | CIS-2.0: 2.1.4 | PCI-DSS-3.2.1: 1.2.1, 1.3.1 | SOC2: CC6.1", + "", + "", + "", + "", + "5.0.0", + "", + ] + row2 = ";".join(row2_fields) + + # Row 3: EC2 IMDSv2 (PASS) + row3_fields = [ + "profile", + timestamp, + account_uid, + account_name, + "", + "", + "", + "", + finding_uid_3, + "aws", + "ec2_instance_imdsv2_enabled", + "EC2 Instance IMDSv2 Check", + "EC2", + "PASS", + "EC2 instance has IMDSv2 enabled.", + "False", + "ec2", + "", + "informational", + "instance", + resource_uid_3, + "test-instance", + "", + "", + "aws", + "us-east-1", + "Check if EC2 instances have IMDSv2 enabled", + "IMDSv2 provides enhanced security for instance metadata access.", + "https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-instance-metadata-service.html", + "IMDSv2 is already enabled.", + "https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-instance-metadata-service.html", + "", + "", + "", + "", + "CIS-1.4: 5.6 | CIS-2.0: 5.6 | AWS-Foundational-Security-Best-Practices: EC2.8", + "", + "", + "", + "", + "5.0.0", + "", + ] + row3 = ";".join(row3_fields) + + return "\n".join([header, row1, row2, row3]) + + +class TestCSVParserWithRealData: + """Tests for CSV parser with real Prowler output format.""" + + def test_parse_real_prowler_csv_format(self): + """Test parsing real Prowler CSV format.""" + csv_data = create_real_prowler_csv_data() + content = csv_data.encode("utf-8") + + # Validate structure + is_valid, error = validate_csv_structure(content) + assert is_valid, f"CSV structure validation failed: {error}" + + # Parse content + findings = parse_csv(content) + + # Verify parsing results + assert len(findings) == 3 + + # Verify first finding (FAIL - IAM Access Analyzer) + finding_1 = findings[0] + assert finding_1.check_id == "accessanalyzer_enabled" + assert finding_1.severity == "low" + assert finding_1.status == "FAIL" + assert finding_1.provider_type == "aws" + assert finding_1.account_uid == "123456789012" + assert finding_1.resource.service == "accessanalyzer" + assert "CIS-1.4" in finding_1.compliance + assert finding_1.compliance["CIS-1.4"] == ["1.20"] + + # Verify second finding (PASS - S3) + finding_2 = findings[1] + assert finding_2.check_id == "s3_bucket_public_access_block_enabled" + assert finding_2.severity == "informational" + assert finding_2.status == "PASS" + assert finding_2.resource.service == "s3" + assert finding_2.resource.type == "bucket" + assert "PCI-DSS-3.2.1" in finding_2.compliance + + # Verify third finding (PASS - EC2) + finding_3 = findings[2] + assert finding_3.check_id == "ec2_instance_imdsv2_enabled" + assert finding_3.status == "PASS" + assert finding_3.resource.service == "ec2" + assert finding_3.resource.type == "instance" + + def test_parse_csv_with_all_compliance_frameworks(self): + """Test parsing CSV data with multiple compliance frameworks.""" + csv_data = create_real_prowler_csv_data() + content = csv_data.encode("utf-8") + + findings = parse_csv(content) + + # Check that compliance data is preserved + finding_1 = findings[0] + assert "CIS-1.4" in finding_1.compliance + assert "CIS-1.5" in finding_1.compliance + assert "CIS-2.0" in finding_1.compliance + assert "CIS-3.0" in finding_1.compliance + assert "AWS-Account-Security-Onboarding" in finding_1.compliance + + def test_parse_csv_resource_details(self): + """Test that resource details are correctly parsed.""" + csv_data = create_real_prowler_csv_data() + content = csv_data.encode("utf-8") + + findings = parse_csv(content) + + # Check S3 resource + s3_finding = findings[1] + s3_resource = s3_finding.resource + assert s3_resource.service == "s3" + assert s3_resource.type == "bucket" + assert s3_resource.region == "us-west-2" + assert "arn:aws:s3:::" in s3_resource.uid + + def test_parse_example_aws_csv_file(self): + """Test parsing the actual example AWS CSV file.""" + example_file = EXAMPLES_DIR / "example_output_aws.csv" + + if not example_file.exists(): + pytest.skip(f"Example file not found: {example_file}") + + with open(example_file, "rb") as f: + content = f.read() + + is_valid, error = validate_csv_structure(content) + assert is_valid, f"Example file validation failed: {error}" + + findings = parse_csv(content) + assert len(findings) > 0 + + # Verify provider type + assert all(f.provider_type == "aws" for f in findings) + + def test_parse_example_azure_csv_file(self): + """Test parsing the actual example Azure CSV file.""" + example_file = EXAMPLES_DIR / "example_output_azure.csv" + + if not example_file.exists(): + pytest.skip(f"Example file not found: {example_file}") + + with open(example_file, "rb") as f: + content = f.read() + + is_valid, error = validate_csv_structure(content) + assert is_valid, f"Example file validation failed: {error}" + + findings = parse_csv(content) + assert len(findings) > 0 + + # Verify provider type + assert all(f.provider_type == "azure" for f in findings) + + def test_parse_example_gcp_csv_file(self): + """Test parsing the actual example GCP CSV file.""" + example_file = EXAMPLES_DIR / "example_output_gcp.csv" + + if not example_file.exists(): + pytest.skip(f"Example file not found: {example_file}") + + with open(example_file, "rb") as f: + content = f.read() + + is_valid, error = validate_csv_structure(content) + assert is_valid, f"Example file validation failed: {error}" + + findings = parse_csv(content) + assert len(findings) > 0 + + # Verify provider type + assert all(f.provider_type == "gcp" for f in findings) + + +@pytest.mark.django_db +class TestScanImportWithRealProwlerCSV: + """Tests for scan import API with real Prowler CSV output format.""" + + def test_import_real_prowler_csv_creates_scan_and_findings( + self, authenticated_client, tenants_fixture + ): + """Test importing real Prowler CSV creates scan, findings, and resources.""" + url = reverse("scan-import") + tenant = tenants_fixture[0] + + # Use unique account UID to avoid conflicts with other tests + account_uid = f"real-csv-{uuid4().hex[:8]}" + csv_data = create_real_prowler_csv_data( + account_uid=account_uid, account_name="Real CSV Test Account" + ) + + file_content = csv_data.encode("utf-8") + file_obj = io.BytesIO(file_content) + file_obj.name = "prowler-output.csv" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + # Verify successful response + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + # Verify response structure + assert "data" in response_data + assert response_data["data"]["type"] == "scan-imports" + assert "attributes" in response_data["data"] + + attributes = response_data["data"]["attributes"] + assert "scan_id" in attributes + assert "provider_id" in attributes + assert attributes["findings_count"] == 3 + assert attributes["resources_count"] == 3 + assert attributes["status"] == "completed" + + # Verify scan was created + scan_id = attributes["scan_id"] + scan = Scan.objects.get(id=scan_id) + assert str(scan.tenant_id) == str(tenant.id) + assert scan.trigger == Scan.TriggerChoices.IMPORTED + assert scan.state == StateChoices.COMPLETED + + # Verify provider was created + provider_id = attributes["provider_id"] + provider = Provider.objects.get(id=provider_id) + assert provider.provider == "aws" + assert provider.uid == account_uid + + def test_import_csv_preserves_compliance_mappings( + self, authenticated_client, tenants_fixture + ): + """Test that compliance mappings are preserved during CSV import.""" + url = reverse("scan-import") + + account_uid = f"compliance-csv-{uuid4().hex[:8]}" + csv_data = create_real_prowler_csv_data(account_uid=account_uid) + + file_content = csv_data.encode("utf-8") + file_obj = io.BytesIO(file_content) + file_obj.name = "prowler-output.csv" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + + # Get the finding UIDs from the test data + finding_uid_prefix = f"prowler-aws-accessanalyzer_enabled-{account_uid}" + + # Find the imported finding + findings = Finding.objects.filter(uid__startswith=finding_uid_prefix) + assert findings.exists() + + finding = findings.first() + assert "CIS-1.4" in finding.compliance + assert finding.compliance["CIS-1.4"] == ["1.20"] + + def test_import_csv_creates_resources_with_correct_attributes( + self, authenticated_client, tenants_fixture + ): + """Test that resources are created with correct attributes from CSV.""" + url = reverse("scan-import") + + account_uid = f"resources-csv-{uuid4().hex[:8]}" + csv_data = create_real_prowler_csv_data(account_uid=account_uid) + + file_content = csv_data.encode("utf-8") + file_obj = io.BytesIO(file_content) + file_obj.name = "prowler-output.csv" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + provider_id = response_data["data"]["attributes"]["provider_id"] + + # Check that resources were created + resources = Resource.objects.filter(provider_id=provider_id) + assert resources.count() == 3 + + # Check S3 resource + s3_resources = resources.filter(service="s3") + assert s3_resources.exists() + s3_resource = s3_resources.first() + assert s3_resource.type == "bucket" + assert s3_resource.region == "us-west-2" + + # Check EC2 resource + ec2_resources = resources.filter(service="ec2") + assert ec2_resources.exists() + ec2_resource = ec2_resources.first() + assert ec2_resource.type == "instance" + assert ec2_resource.region == "us-east-1" + + def test_import_csv_with_mixed_pass_fail_findings( + self, authenticated_client, tenants_fixture + ): + """Test importing CSV data with both PASS and FAIL findings.""" + url = reverse("scan-import") + + account_uid = f"mixed-csv-{uuid4().hex[:8]}" + csv_data = create_real_prowler_csv_data(account_uid=account_uid) + + file_content = csv_data.encode("utf-8") + file_obj = io.BytesIO(file_content) + file_obj.name = "prowler-output.csv" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + scan_id = response_data["data"]["attributes"]["scan_id"] + + # Check findings by status + findings = Finding.objects.filter(scan_id=scan_id) + fail_findings = findings.filter(status="FAIL") + pass_findings = findings.filter(status="PASS") + + assert fail_findings.count() == 1 # accessanalyzer_enabled + assert pass_findings.count() == 2 # s3 and ec2 checks + + def test_import_csv_with_multiple_severity_levels( + self, authenticated_client, tenants_fixture + ): + """Test importing CSV data with different severity levels.""" + url = reverse("scan-import") + + account_uid = f"severity-csv-{uuid4().hex[:8]}" + csv_data = create_real_prowler_csv_data(account_uid=account_uid) + + file_content = csv_data.encode("utf-8") + file_obj = io.BytesIO(file_content) + file_obj.name = "prowler-output.csv" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + scan_id = response_data["data"]["attributes"]["scan_id"] + + # Check findings by severity + findings = Finding.objects.filter(scan_id=scan_id) + low_findings = findings.filter(severity="low") + informational_findings = findings.filter(severity="informational") + + assert low_findings.count() == 1 # accessanalyzer_enabled + assert informational_findings.count() == 2 # s3 and ec2 checks + + def test_import_example_aws_csv_file(self, authenticated_client, tenants_fixture): + """Test importing the actual example AWS CSV file.""" + example_file = EXAMPLES_DIR / "example_output_aws.csv" + + if not example_file.exists(): + pytest.skip(f"Example file not found: {example_file}") + + url = reverse("scan-import") + + with open(example_file, "rb") as f: + file_content = f.read() + + file_obj = io.BytesIO(file_content) + file_obj.name = "example_output_aws.csv" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + attributes = response_data["data"]["attributes"] + assert attributes["findings_count"] > 0 + assert attributes["status"] == "completed" + + # Verify provider type + provider_id = attributes["provider_id"] + provider = Provider.objects.get(id=provider_id) + assert provider.provider == "aws" diff --git a/api/src/backend/api/tests/test_scan_import_real_json.py b/api/src/backend/api/tests/test_scan_import_real_json.py new file mode 100644 index 0000000000..11895cc7b7 --- /dev/null +++ b/api/src/backend/api/tests/test_scan_import_real_json.py @@ -0,0 +1,625 @@ +""" +Tests for scan import with real Prowler JSON output format. + +This module tests the scan import functionality using realistic Prowler CLI +OCSF JSON output format, matching the structure found in actual Prowler scans. + +These tests validate: +- Import of real Prowler OCSF JSON format +- Correct parsing of all OCSF fields +- Provider creation from scan data +- Finding and resource creation +- Compliance mapping preservation +""" + +import io +import json +from pathlib import Path +from uuid import uuid4 + +import pytest +from django.urls import reverse +from rest_framework import status + +from api.models import Finding, Provider, Resource, Scan, StateChoices +from api.parsers.ocsf_parser import parse_ocsf_json, validate_ocsf_structure + + +# Path to the test data file +TEST_DATA_DIR = Path(__file__).parent.parent.parent.parent.parent / "tests" / "manual" + + +def create_real_prowler_ocsf_data( + account_uid: str = "123456789012", + account_name: str = "Test AWS Account", +) -> list[dict]: + """ + Create realistic Prowler OCSF JSON data matching actual CLI output format. + + This generates test data that matches the exact structure of real Prowler CLI + output, including all required and optional OCSF fields. + + Args: + account_uid: AWS account ID to use in the test data. + account_name: AWS account name to use in the test data. + + Returns: + List of OCSF finding dictionaries. + """ + # Generate unique finding UIDs for this test run + finding_uid_1 = ( + f"prowler-aws-accessanalyzer_enabled-{account_uid}-us-east-1-{uuid4().hex[:8]}" + ) + finding_uid_2 = ( + f"prowler-aws-s3_bucket_public_access-{account_uid}-us-west-2-{uuid4().hex[:8]}" + ) + finding_uid_3 = f"prowler-aws-ec2_imdsv2-{account_uid}-us-east-1-{uuid4().hex[:8]}" + + resource_uid_1 = f"arn:aws:iam::{account_uid}:root" + resource_uid_2 = f"arn:aws:s3:::test-bucket-{uuid4().hex[:8]}" + resource_uid_3 = ( + f"arn:aws:ec2:us-east-1:{account_uid}:instance/i-{uuid4().hex[:12]}" + ) + + return [ + { + "message": f"IAM Access Analyzer in account {account_uid} is not enabled.", + "metadata": { + "event_code": "accessanalyzer_enabled", + "product": { + "name": "Prowler", + "uid": "prowler", + "vendor_name": "Prowler", + "version": "5.0.0", + }, + "profiles": ["cloud", "datetime"], + "tenant_uid": "", + "version": "1.4.0", + }, + "severity_id": 2, + "severity": "Low", + "status": "New", + "status_code": "FAIL", + "status_detail": f"IAM Access Analyzer in account {account_uid} is not enabled.", + "status_id": 1, + "unmapped": { + "related_url": "https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html", + "categories": [], + "depends_on": [], + "related_to": [], + "additional_urls": [], + "notes": "", + "compliance": { + "CIS-1.4": ["1.20"], + "CIS-1.5": ["1.20"], + "CIS-2.0": ["1.20"], + "CIS-3.0": ["1.20"], + "AWS-Account-Security-Onboarding": [ + "Enabled security services", + "Create analyzers in each active regions", + ], + }, + }, + "activity_name": "Create", + "activity_id": 1, + "finding_info": { + "created_time": 1735570800, + "created_time_dt": "2024-12-30T15:00:00.000000", + "desc": "Check if IAM Access Analyzer is enabled", + "product_uid": "prowler", + "title": "Check if IAM Access Analyzer is enabled", + "types": ["IAM"], + "uid": finding_uid_1, + }, + "resources": [ + { + "cloud_partition": "aws", + "region": "us-east-1", + "data": { + "details": "", + "metadata": { + "arn": resource_uid_1, + "name": account_uid, + "status": "NOT_AVAILABLE", + "findings": [], + "tags": [], + "type": "", + "region": "us-east-1", + }, + }, + "group": {"name": "accessanalyzer"}, + "labels": [], + "name": account_uid, + "type": "Other", + "uid": resource_uid_1, + } + ], + "category_name": "Findings", + "category_uid": 2, + "class_name": "Detection Finding", + "class_uid": 2004, + "cloud": { + "account": { + "name": account_name, + "type": "AWS Account", + "type_id": 10, + "uid": account_uid, + "labels": [], + }, + "org": {"name": "", "uid": ""}, + "provider": "aws", + "region": "us-east-1", + }, + "remediation": { + "desc": "Enable IAM Access Analyzer for all accounts.", + "references": [ + "aws accessanalyzer create-analyzer --analyzer-name --type ", + "https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html", + ], + }, + "risk_details": "AWS IAM Access Analyzer helps identify resources shared with external entities.", + "time": 1735570800, + "time_dt": "2024-12-30T15:00:00.000000", + "type_uid": 200401, + "type_name": "Detection Finding: Create", + }, + { + "message": "S3 bucket test-bucket has public access block enabled.", + "metadata": { + "event_code": "s3_bucket_public_access_block_enabled", + "product": { + "name": "Prowler", + "uid": "prowler", + "vendor_name": "Prowler", + "version": "5.0.0", + }, + "profiles": ["cloud", "datetime"], + "tenant_uid": "", + "version": "1.4.0", + }, + "severity_id": 1, + "severity": "Informational", + "status": "New", + "status_code": "PASS", + "status_detail": "S3 bucket test-bucket has public access block enabled.", + "status_id": 1, + "unmapped": { + "related_url": "https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-control-block-public-access.html", + "categories": ["storage", "security"], + "depends_on": [], + "related_to": [], + "additional_urls": [], + "notes": "", + "compliance": { + "CIS-1.4": ["2.1.5"], + "CIS-2.0": ["2.1.4"], + "PCI-DSS-3.2.1": ["1.2.1", "1.3.1"], + "SOC2": ["CC6.1"], + }, + }, + "activity_name": "Create", + "activity_id": 1, + "finding_info": { + "created_time": 1735570800, + "created_time_dt": "2024-12-30T15:00:00.000000", + "desc": "Check if S3 buckets have public access block enabled", + "product_uid": "prowler", + "title": "S3 Bucket Public Access Block Check", + "types": ["S3"], + "uid": finding_uid_2, + }, + "resources": [ + { + "cloud_partition": "aws", + "region": "us-west-2", + "data": { + "details": "", + "metadata": { + "arn": resource_uid_2, + "name": "test-bucket", + "status": "ENABLED", + "findings": [], + "tags": [{"Key": "Environment", "Value": "Test"}], + "type": "bucket", + "region": "us-west-2", + }, + }, + "group": {"name": "s3"}, + "labels": [], + "name": "test-bucket", + "type": "bucket", + "uid": resource_uid_2, + } + ], + "category_name": "Findings", + "category_uid": 2, + "class_name": "Detection Finding", + "class_uid": 2004, + "cloud": { + "account": { + "name": account_name, + "type": "AWS Account", + "type_id": 10, + "uid": account_uid, + "labels": [], + }, + "org": {"name": "", "uid": ""}, + "provider": "aws", + "region": "us-west-2", + }, + "remediation": { + "desc": "S3 Block Public Access is already enabled. No action required.", + "references": [], + }, + "risk_details": "Public S3 buckets can expose sensitive data to unauthorized users.", + "time": 1735570800, + "time_dt": "2024-12-30T15:00:00.000000", + "type_uid": 200401, + "type_name": "Detection Finding: Create", + }, + { + "message": "EC2 instance has IMDSv2 enabled.", + "metadata": { + "event_code": "ec2_instance_imdsv2_enabled", + "product": { + "name": "Prowler", + "uid": "prowler", + "vendor_name": "Prowler", + "version": "5.0.0", + }, + "profiles": ["cloud", "datetime"], + "tenant_uid": "", + "version": "1.4.0", + }, + "severity_id": 1, + "severity": "Informational", + "status": "New", + "status_code": "PASS", + "status_detail": "EC2 instance has IMDSv2 enabled.", + "status_id": 1, + "unmapped": { + "related_url": "https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-instance-metadata-service.html", + "categories": ["compute", "security"], + "depends_on": [], + "related_to": [], + "additional_urls": [], + "notes": "", + "compliance": { + "CIS-1.4": ["5.6"], + "CIS-2.0": ["5.6"], + "AWS-Foundational-Security-Best-Practices": ["EC2.8"], + }, + }, + "activity_name": "Create", + "activity_id": 1, + "finding_info": { + "created_time": 1735570800, + "created_time_dt": "2024-12-30T15:00:00.000000", + "desc": "Check if EC2 instances have IMDSv2 enabled", + "product_uid": "prowler", + "title": "EC2 Instance IMDSv2 Check", + "types": ["EC2"], + "uid": finding_uid_3, + }, + "resources": [ + { + "cloud_partition": "aws", + "region": "us-east-1", + "data": { + "details": "", + "metadata": { + "arn": resource_uid_3, + "name": "test-instance", + "status": "running", + "findings": [], + "tags": [{"Key": "Name", "Value": "test-instance"}], + "type": "instance", + "region": "us-east-1", + }, + }, + "group": {"name": "ec2"}, + "labels": [], + "name": "test-instance", + "type": "instance", + "uid": resource_uid_3, + } + ], + "category_name": "Findings", + "category_uid": 2, + "class_name": "Detection Finding", + "class_uid": 2004, + "cloud": { + "account": { + "name": account_name, + "type": "AWS Account", + "type_id": 10, + "uid": account_uid, + "labels": [], + }, + "org": {"name": "", "uid": ""}, + "provider": "aws", + "region": "us-east-1", + }, + "remediation": { + "desc": "IMDSv2 is already enabled. No action required.", + "references": [], + }, + "risk_details": "IMDSv2 provides enhanced security for instance metadata access.", + "time": 1735570800, + "time_dt": "2024-12-30T15:00:00.000000", + "type_uid": 200401, + "type_name": "Detection Finding: Create", + }, + ] + + +class TestOCSFParserWithRealData: + """Tests for OCSF parser with real Prowler output format.""" + + def test_parse_real_prowler_ocsf_format(self): + """Test parsing real Prowler OCSF JSON format.""" + ocsf_data = create_real_prowler_ocsf_data() + content = json.dumps(ocsf_data).encode("utf-8") + + # Validate structure + is_valid, error = validate_ocsf_structure(content) + assert is_valid, f"OCSF structure validation failed: {error}" + + # Parse content + findings = parse_ocsf_json(content) + + # Verify parsing results + assert len(findings) == 3 + + # Verify first finding (FAIL - IAM Access Analyzer) + finding_1 = findings[0] + assert finding_1.check_id == "accessanalyzer_enabled" + assert finding_1.severity == "low" + assert finding_1.status == "FAIL" + assert finding_1.provider_type == "aws" + assert finding_1.account_uid == "123456789012" + assert len(finding_1.resources) == 1 + assert "CIS-1.4" in finding_1.compliance + assert finding_1.compliance["CIS-1.4"] == ["1.20"] + + # Verify second finding (PASS - S3) + finding_2 = findings[1] + assert finding_2.check_id == "s3_bucket_public_access_block_enabled" + assert finding_2.severity == "informational" + assert finding_2.status == "PASS" + assert finding_2.resources[0].service == "s3" + assert "PCI-DSS-3.2.1" in finding_2.compliance + + # Verify third finding (PASS - EC2) + finding_3 = findings[2] + assert finding_3.check_id == "ec2_instance_imdsv2_enabled" + assert finding_3.status == "PASS" + assert finding_3.resources[0].service == "ec2" + + def test_parse_ocsf_with_all_compliance_frameworks(self): + """Test parsing OCSF data with multiple compliance frameworks.""" + ocsf_data = create_real_prowler_ocsf_data() + content = json.dumps(ocsf_data).encode("utf-8") + + findings = parse_ocsf_json(content) + + # Check that compliance data is preserved + finding_1 = findings[0] + assert "CIS-1.4" in finding_1.compliance + assert "CIS-1.5" in finding_1.compliance + assert "CIS-2.0" in finding_1.compliance + assert "CIS-3.0" in finding_1.compliance + assert "AWS-Account-Security-Onboarding" in finding_1.compliance + + def test_parse_ocsf_resource_details(self): + """Test that resource details are correctly parsed.""" + ocsf_data = create_real_prowler_ocsf_data() + content = json.dumps(ocsf_data).encode("utf-8") + + findings = parse_ocsf_json(content) + + # Check S3 resource + s3_finding = findings[1] + s3_resource = s3_finding.resources[0] + assert s3_resource.service == "s3" + assert s3_resource.type == "bucket" + assert s3_resource.region == "us-west-2" + assert "arn:aws:s3:::" in s3_resource.uid + + +@pytest.mark.django_db +class TestScanImportWithRealProwlerJSON: + """Tests for scan import API with real Prowler JSON output format.""" + + def test_import_real_prowler_json_creates_scan_and_findings( + self, authenticated_client, tenants_fixture + ): + """Test importing real Prowler OCSF JSON creates scan, findings, and resources.""" + url = reverse("scan-import") + tenant = tenants_fixture[0] + + # Use unique account UID to avoid conflicts with other tests + account_uid = f"real-json-{uuid4().hex[:8]}" + ocsf_data = create_real_prowler_ocsf_data( + account_uid=account_uid, account_name="Real JSON Test Account" + ) + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + # Verify successful response + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + # Verify response structure + assert "data" in response_data + assert response_data["data"]["type"] == "scan-imports" + assert "attributes" in response_data["data"] + + attributes = response_data["data"]["attributes"] + assert "scan_id" in attributes + assert "provider_id" in attributes + assert attributes["findings_count"] == 3 + assert attributes["resources_count"] == 3 + assert attributes["status"] == "completed" + + # Verify scan was created + scan_id = attributes["scan_id"] + scan = Scan.objects.get(id=scan_id) + assert str(scan.tenant_id) == str(tenant.id) + assert scan.trigger == Scan.TriggerChoices.IMPORTED + assert scan.state == StateChoices.COMPLETED + + # Verify provider was created + provider_id = attributes["provider_id"] + provider = Provider.objects.get(id=provider_id) + assert provider.provider == "aws" + assert provider.uid == account_uid + + def test_import_real_prowler_json_via_file_upload( + self, authenticated_client, tenants_fixture + ): + """Test importing real Prowler OCSF JSON via file upload.""" + url = reverse("scan-import") + + account_uid = f"file-upload-{uuid4().hex[:8]}" + ocsf_data = create_real_prowler_ocsf_data(account_uid=account_uid) + + file_content = json.dumps(ocsf_data).encode("utf-8") + file_obj = io.BytesIO(file_content) + file_obj.name = "prowler-output.ocsf.json" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + assert response_data["data"]["attributes"]["findings_count"] == 3 + + def test_import_preserves_compliance_mappings( + self, authenticated_client, tenants_fixture + ): + """Test that compliance mappings are preserved during import.""" + url = reverse("scan-import") + + account_uid = f"compliance-{uuid4().hex[:8]}" + ocsf_data = create_real_prowler_ocsf_data(account_uid=account_uid) + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + + # Get the finding UIDs from the test data + finding_uid_prefix = f"prowler-aws-accessanalyzer_enabled-{account_uid}" + + # Find the imported finding + findings = Finding.objects.filter(uid__startswith=finding_uid_prefix) + assert findings.exists() + + finding = findings.first() + assert "CIS-1.4" in finding.compliance + assert finding.compliance["CIS-1.4"] == ["1.20"] + + def test_import_creates_resources_with_correct_attributes( + self, authenticated_client, tenants_fixture + ): + """Test that resources are created with correct attributes.""" + url = reverse("scan-import") + + account_uid = f"resources-{uuid4().hex[:8]}" + ocsf_data = create_real_prowler_ocsf_data(account_uid=account_uid) + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + provider_id = response_data["data"]["attributes"]["provider_id"] + + # Check that resources were created + resources = Resource.objects.filter(provider_id=provider_id) + assert resources.count() == 3 + + # Check S3 resource + s3_resources = resources.filter(service="s3") + assert s3_resources.exists() + s3_resource = s3_resources.first() + assert s3_resource.type == "bucket" + assert s3_resource.region == "us-west-2" + + # Check EC2 resource + ec2_resources = resources.filter(service="ec2") + assert ec2_resources.exists() + ec2_resource = ec2_resources.first() + assert ec2_resource.type == "instance" + assert ec2_resource.region == "us-east-1" + + def test_import_with_mixed_pass_fail_findings( + self, authenticated_client, tenants_fixture + ): + """Test importing data with both PASS and FAIL findings.""" + url = reverse("scan-import") + + account_uid = f"mixed-{uuid4().hex[:8]}" + ocsf_data = create_real_prowler_ocsf_data(account_uid=account_uid) + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + scan_id = response_data["data"]["attributes"]["scan_id"] + + # Check findings by status + findings = Finding.objects.filter(scan_id=scan_id) + fail_findings = findings.filter(status="FAIL") + pass_findings = findings.filter(status="PASS") + + assert fail_findings.count() == 1 # accessanalyzer_enabled + assert pass_findings.count() == 2 # s3 and ec2 checks + + def test_import_with_multiple_severity_levels( + self, authenticated_client, tenants_fixture + ): + """Test importing data with different severity levels.""" + url = reverse("scan-import") + + account_uid = f"severity-{uuid4().hex[:8]}" + ocsf_data = create_real_prowler_ocsf_data(account_uid=account_uid) + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + scan_id = response_data["data"]["attributes"]["scan_id"] + + # Check findings by severity + findings = Finding.objects.filter(scan_id=scan_id) + low_findings = findings.filter(severity="low") + informational_findings = findings.filter(severity="informational") + + assert low_findings.count() == 1 # accessanalyzer_enabled + assert informational_findings.count() == 2 # s3 and ec2 checks diff --git a/api/src/backend/api/tests/test_scan_import_service.py b/api/src/backend/api/tests/test_scan_import_service.py new file mode 100644 index 0000000000..cad20c2021 --- /dev/null +++ b/api/src/backend/api/tests/test_scan_import_service.py @@ -0,0 +1,1075 @@ +""" +Unit tests for the Scan Import Service module. + +Tests the ScanImportService class which handles importing Prowler CLI +scan results (JSON/OCSF and CSV formats) into the Prowler platform. + +This module provides test coverage for: +- Format detection (JSON vs CSV) +- Content parsing and validation +- Provider resolution and creation +- Bulk resource creation +- Bulk finding creation +- Resource-finding mapping creation +- Error handling + +Test Classes +------------ +TestScanImportServiceInit + Tests for ScanImportService initialization. + +TestDetectFormat + Tests for the _detect_format method. + +TestParseContent + Tests for the _parse_content method. + +TestResolveProvider + Tests for the _resolve_provider method. + +TestCreateScan + Tests for the _create_scan method. + +TestBulkCreateResources + Tests for the _bulk_create_resources method. + +TestBulkCreateFindings + Tests for the _bulk_create_findings method. + +TestImportScan + Integration tests for the main import_scan method. + +TestScanImportError + Tests for the ScanImportError exception class. + +TestScanImportResult + Tests for the ScanImportResult dataclass. + +Usage +----- +Run tests from the api/src/backend directory:: + + poetry run pytest api/tests/test_scan_import_service.py -v + +Run specific test class:: + + poetry run pytest api/tests/test_scan_import_service.py::TestDetectFormat -v + +Run with coverage:: + + poetry run pytest api/tests/test_scan_import_service.py --cov=api.services.scan_import +""" + +import json +from unittest.mock import MagicMock +from uuid import uuid4 + +import pytest + +from api.parsers.csv_parser import CSVFinding, CSVResource, CSVCheckMetadata +from api.parsers.ocsf_parser import OCSFFinding, OCSFResource, OCSFCheckMetadata +from api.services.scan_import import ( + MAX_FILE_SIZE, + ScanImportError, + ScanImportResult, + ScanImportService, +) + + +class TestScanImportServiceInit: + """Tests for ScanImportService initialization.""" + + def test_init_with_tenant_id(self): + """Test service initialization with tenant ID.""" + tenant_id = str(uuid4()) + service = ScanImportService(tenant_id=tenant_id) + + assert service.tenant_id == tenant_id + + def test_init_stores_tenant_id(self): + """Test that tenant_id is stored correctly.""" + tenant_id = "550e8400-e29b-41d4-a716-446655440000" + service = ScanImportService(tenant_id=tenant_id) + + assert service.tenant_id == tenant_id + + +class TestDetectFormat: + """Tests for the _detect_format method.""" + + @pytest.fixture + def service(self): + """Return a ScanImportService instance.""" + return ScanImportService(tenant_id=str(uuid4())) + + @pytest.fixture + def valid_ocsf_content(self): + """Return valid OCSF JSON content.""" + data = [ + { + "metadata": {"event_code": "check_1"}, + "finding_info": {"uid": "finding-1"}, + "cloud": {"provider": "aws", "account": {"uid": "123456789012"}}, + } + ] + return json.dumps(data).encode("utf-8") + + @pytest.fixture + def valid_csv_content(self): + """Return valid CSV content.""" + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +finding-001;aws;check_1;PASS;123456789012;resource-1""" + return csv_data.encode("utf-8") + + def test_detect_json_format(self, service, valid_ocsf_content): + """Test detection of JSON/OCSF format.""" + result = service._detect_format(valid_ocsf_content) + + assert result == "json" + + def test_detect_csv_format(self, service, valid_csv_content): + """Test detection of CSV format.""" + result = service._detect_format(valid_csv_content) + + assert result == "csv" + + def test_detect_invalid_format_raises_error(self, service): + """Test that invalid format raises ScanImportError.""" + invalid_content = b"not valid json or csv" + + with pytest.raises(ScanImportError) as exc_info: + service._detect_format(invalid_content) + + assert exc_info.value.code == "invalid_format" + assert "not recognized" in exc_info.value.message + + +class TestParseContent: + """Tests for the _parse_content method.""" + + @pytest.fixture + def service(self): + """Return a ScanImportService instance.""" + return ScanImportService(tenant_id=str(uuid4())) + + def test_parse_json_content(self, service): + """Test parsing JSON/OCSF content.""" + data = [ + { + "message": "Test finding", + "metadata": {"event_code": "check_1"}, + "severity": "Low", + "status_code": "FAIL", + "finding_info": {"uid": "finding-1", "title": "Test", "desc": "Desc"}, + "cloud": { + "provider": "aws", + "account": {"uid": "123456789012"}, + }, + "resources": [], + } + ] + content = json.dumps(data).encode("utf-8") + + findings = service._parse_content(content, "json") + + assert len(findings) == 1 + assert isinstance(findings[0], OCSFFinding) + assert findings[0].check_id == "check_1" + + def test_parse_csv_content(self, service): + """Test parsing CSV content.""" + csv_data = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;SEVERITY;RESOURCE_UID +finding-001;aws;check_1;PASS;123456789012;low;resource-1""" + content = csv_data.encode("utf-8") + + findings = service._parse_content(content, "csv") + + assert len(findings) == 1 + assert isinstance(findings[0], CSVFinding) + assert findings[0].check_id == "check_1" + + def test_parse_unsupported_format_raises_error(self, service): + """Test that unsupported format raises ScanImportError.""" + with pytest.raises(ScanImportError) as exc_info: + service._parse_content(b"content", "xml") + + assert exc_info.value.code == "unsupported_format" + + +class TestScanImportError: + """Tests for the ScanImportError exception class.""" + + def test_error_with_message_only(self): + """Test error with message only.""" + error = ScanImportError(message="Test error") + + assert str(error) == "Test error" + assert error.code == "import_error" + assert error.details == {} + + def test_error_with_code(self): + """Test error with custom code.""" + error = ScanImportError(message="Test error", code="custom_code") + + assert error.code == "custom_code" + + def test_error_with_details(self): + """Test error with details.""" + details = {"field": "value", "index": 5} + error = ScanImportError(message="Test error", details=details) + + assert error.details == details + + def test_to_dict(self): + """Test to_dict method.""" + error = ScanImportError( + message="Test error", + code="test_code", + details={"key": "value"}, + ) + + result = error.to_dict() + + assert result["message"] == "Test error" + assert result["code"] == "test_code" + assert result["details"] == {"key": "value"} + + +class TestScanImportResult: + """Tests for the ScanImportResult dataclass.""" + + def test_result_creation(self): + """Test creating a ScanImportResult.""" + scan_id = uuid4() + provider_id = uuid4() + + result = ScanImportResult( + scan_id=scan_id, + provider_id=provider_id, + findings_count=100, + resources_count=50, + ) + + assert result.scan_id == scan_id + assert result.provider_id == provider_id + assert result.findings_count == 100 + assert result.resources_count == 50 + assert result.provider_created is False + assert result.warnings == [] + + def test_result_with_provider_created(self): + """Test result with provider_created flag.""" + result = ScanImportResult( + scan_id=uuid4(), + provider_id=uuid4(), + findings_count=10, + resources_count=5, + provider_created=True, + ) + + assert result.provider_created is True + + def test_result_with_warnings(self): + """Test result with warnings.""" + warnings = ["Warning 1", "Warning 2"] + result = ScanImportResult( + scan_id=uuid4(), + provider_id=uuid4(), + findings_count=10, + resources_count=5, + warnings=warnings, + ) + + assert result.warnings == warnings + + def test_to_dict(self): + """Test to_dict method.""" + scan_id = uuid4() + provider_id = uuid4() + + result = ScanImportResult( + scan_id=scan_id, + provider_id=provider_id, + findings_count=100, + resources_count=50, + provider_created=True, + warnings=["Warning 1"], + ) + + result_dict = result.to_dict() + + assert result_dict["scan_id"] == str(scan_id) + assert result_dict["provider_id"] == str(provider_id) + assert result_dict["findings_count"] == 100 + assert result_dict["resources_count"] == 50 + assert result_dict["provider_created"] is True + assert result_dict["warnings"] == ["Warning 1"] + + +class TestBuildCheckMetadata: + """Tests for the _build_check_metadata method.""" + + @pytest.fixture + def service(self): + """Return a ScanImportService instance.""" + return ScanImportService(tenant_id=str(uuid4())) + + def test_build_from_ocsf_finding(self, service): + """Test building check metadata from OCSF finding.""" + ocsf_metadata = OCSFCheckMetadata( + title="Test Check", + description="Test description", + risk="Test risk", + remediation_description="Fix it", + remediation_references=["https://example.com"], + categories=["security"], + related_url="https://docs.example.com", + ) + finding = OCSFFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="Detail", + message="Message", + impact_extended="Impact", + check_metadata=ocsf_metadata, + compliance={}, + resources=[], + provider_type="aws", + account_uid="123456789012", + account_name="Test", + ) + + result = service._build_check_metadata(finding) + + assert result["title"] == "Test Check" + assert result["description"] == "Test description" + assert result["risk"] == "Test risk" + assert result["remediation"]["description"] == "Fix it" + assert result["categories"] == ["security"] + + def test_build_from_csv_finding(self, service): + """Test building check metadata from CSV finding.""" + csv_metadata = CSVCheckMetadata( + title="CSV Check", + description="CSV description", + risk="CSV risk", + remediation_description="CSV fix", + remediation_url="https://fix.example.com", + categories=["compliance"], + ) + resource = CSVResource( + uid="resource-1", + name="test-resource", + region="us-east-1", + service="s3", + type="bucket", + ) + finding = CSVFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="Detail", + muted=False, + check_metadata=csv_metadata, + compliance={}, + resource=resource, + provider_type="aws", + account_uid="123456789012", + account_name="Test", + account_email="", + account_organization_uid="", + account_organization_name="", + account_tags="", + auth_method="", + ) + + result = service._build_check_metadata(finding) + + assert result["title"] == "CSV Check" + assert result["description"] == "CSV description" + assert result["risk"] == "CSV risk" + assert result["remediation"]["description"] == "CSV fix" + assert result["categories"] == ["compliance"] + + +class TestGetResourceUids: + """Tests for the _get_resource_uids method.""" + + @pytest.fixture + def service(self): + """Return a ScanImportService instance.""" + return ScanImportService(tenant_id=str(uuid4())) + + def test_get_uids_from_ocsf_finding(self, service): + """Test extracting resource UIDs from OCSF finding.""" + resources = [ + OCSFResource(uid="resource-1", name="r1", region="", service="", type=""), + OCSFResource(uid="resource-2", name="r2", region="", service="", type=""), + ] + finding = OCSFFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="", + message="", + impact_extended="", + check_metadata=OCSFCheckMetadata(), + compliance={}, + resources=resources, + provider_type="aws", + account_uid="123456789012", + account_name="", + ) + + result = service._get_resource_uids(finding) + + assert result == ["resource-1", "resource-2"] + + def test_get_uids_from_csv_finding(self, service): + """Test extracting resource UIDs from CSV finding.""" + resource = CSVResource( + uid="csv-resource-1", + name="test", + region="", + service="", + type="", + ) + finding = CSVFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="", + muted=False, + check_metadata=CSVCheckMetadata(), + compliance={}, + resource=resource, + provider_type="aws", + account_uid="123456789012", + account_name="", + account_email="", + account_organization_uid="", + account_organization_name="", + account_tags="", + auth_method="", + ) + + result = service._get_resource_uids(finding) + + assert result == ["csv-resource-1"] + + +class TestGetImpactExtended: + """Tests for the _get_impact_extended method.""" + + @pytest.fixture + def service(self): + """Return a ScanImportService instance.""" + return ScanImportService(tenant_id=str(uuid4())) + + def test_get_impact_from_ocsf_finding(self, service): + """Test getting impact extended from OCSF finding.""" + finding = OCSFFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="", + message="Test message", + impact_extended="Test impact", + check_metadata=OCSFCheckMetadata(), + compliance={}, + resources=[], + provider_type="aws", + account_uid="123456789012", + account_name="", + ) + + result = service._get_impact_extended(finding) + + assert result == "Test impact" + + def test_get_impact_from_ocsf_finding_fallback_to_message(self, service): + """Test getting impact from message when impact_extended is empty.""" + finding = OCSFFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="", + message="Fallback message", + impact_extended="", + check_metadata=OCSFCheckMetadata(), + compliance={}, + resources=[], + provider_type="aws", + account_uid="123456789012", + account_name="", + ) + + result = service._get_impact_extended(finding) + + assert result == "Fallback message" + + def test_get_impact_from_csv_finding(self, service): + """Test getting impact extended from CSV finding.""" + resource = CSVResource(uid="r1", name="", region="", service="", type="") + finding = CSVFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="CSV status extended", + muted=False, + check_metadata=CSVCheckMetadata(), + compliance={}, + resource=resource, + provider_type="aws", + account_uid="123456789012", + account_name="", + account_email="", + account_organization_uid="", + account_organization_name="", + account_tags="", + auth_method="", + ) + + result = service._get_impact_extended(finding) + + assert result == "CSV status extended" + + +class TestGetMutedStatus: + """Tests for the _get_muted_status method.""" + + @pytest.fixture + def service(self): + """Return a ScanImportService instance.""" + return ScanImportService(tenant_id=str(uuid4())) + + def test_get_muted_from_csv_finding_true(self, service): + """Test getting muted status from CSV finding when True.""" + resource = CSVResource(uid="r1", name="", region="", service="", type="") + finding = CSVFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="", + muted=True, + check_metadata=CSVCheckMetadata(), + compliance={}, + resource=resource, + provider_type="aws", + account_uid="123456789012", + account_name="", + account_email="", + account_organization_uid="", + account_organization_name="", + account_tags="", + auth_method="", + ) + + result = service._get_muted_status(finding) + + assert result is True + + def test_get_muted_from_csv_finding_false(self, service): + """Test getting muted status from CSV finding when False.""" + resource = CSVResource(uid="r1", name="", region="", service="", type="") + finding = CSVFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="", + muted=False, + check_metadata=CSVCheckMetadata(), + compliance={}, + resource=resource, + provider_type="aws", + account_uid="123456789012", + account_name="", + account_email="", + account_organization_uid="", + account_organization_name="", + account_tags="", + auth_method="", + ) + + result = service._get_muted_status(finding) + + assert result is False + + def test_get_muted_from_ocsf_finding_returns_false(self, service): + """Test getting muted status from OCSF finding returns False.""" + finding = OCSFFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="", + message="", + impact_extended="", + check_metadata=OCSFCheckMetadata(), + compliance={}, + resources=[], + provider_type="aws", + account_uid="123456789012", + account_name="", + ) + + result = service._get_muted_status(finding) + + assert result is False + + +class TestFileSizeValidation: + """Tests for file size validation in import_scan.""" + + @pytest.fixture + def service(self): + """Return a ScanImportService instance.""" + return ScanImportService(tenant_id=str(uuid4())) + + def test_file_too_large_raises_error(self, service): + """Test that file exceeding max size raises error.""" + # Create content larger than MAX_FILE_SIZE + large_content = b"x" * (MAX_FILE_SIZE + 1) + + with pytest.raises(ScanImportError) as exc_info: + service.import_scan(large_content) + + assert exc_info.value.code == "file_too_large" + assert "exceeds maximum" in exc_info.value.message + + def test_max_file_size_constant(self): + """Test that MAX_FILE_SIZE is 1GB.""" + assert MAX_FILE_SIZE == 1024 * 1024 * 1024 + + +class TestProviderIdValidation: + """Tests for provider_id validation in import_scan.""" + + @pytest.fixture + def service(self): + """Return a ScanImportService instance.""" + return ScanImportService(tenant_id=str(uuid4())) + + def test_invalid_provider_id_format_raises_error(self, service): + """Test that invalid provider_id format raises error.""" + valid_content = json.dumps( + [ + { + "metadata": {"event_code": "check_1"}, + "finding_info": {"uid": "finding-1"}, + "cloud": {"provider": "aws", "account": {"uid": "123456789012"}}, + } + ] + ).encode("utf-8") + + with pytest.raises(ScanImportError) as exc_info: + service.import_scan(valid_content, provider_id="not-a-uuid") + + assert exc_info.value.code == "invalid_provider_id" + + +class TestNoFindingsValidation: + """Tests for empty findings validation.""" + + @pytest.fixture + def service(self): + """Return a ScanImportService instance.""" + return ScanImportService(tenant_id=str(uuid4())) + + def test_empty_findings_raises_error(self, service): + """Test that empty findings list raises error.""" + empty_content = b"[]" + + with pytest.raises(ScanImportError) as exc_info: + service.import_scan(empty_content) + + assert exc_info.value.code == "no_findings" + assert "No findings found" in exc_info.value.message + + +class TestGetRawResult: + """Tests for the _get_raw_result method.""" + + @pytest.fixture + def service(self): + """Return a ScanImportService instance.""" + return ScanImportService(tenant_id=str(uuid4())) + + def test_get_raw_result_from_ocsf_finding(self, service): + """Test getting raw result from OCSF finding.""" + raw_data = {"key": "value", "nested": {"data": 123}} + finding = OCSFFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="", + message="", + impact_extended="", + check_metadata=OCSFCheckMetadata(), + compliance={}, + resources=[], + provider_type="aws", + account_uid="123456789012", + account_name="", + raw_result=raw_data, + ) + + result = service._get_raw_result(finding) + + assert result == raw_data + + def test_get_raw_result_from_csv_finding(self, service): + """Test getting raw result from CSV finding.""" + raw_row = {"FINDING_UID": "f1", "CHECK_ID": "c1", "STATUS": "FAIL"} + resource = CSVResource(uid="r1", name="", region="", service="", type="") + finding = CSVFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="", + muted=False, + check_metadata=CSVCheckMetadata(), + compliance={}, + resource=resource, + provider_type="aws", + account_uid="123456789012", + account_name="", + account_email="", + account_organization_uid="", + account_organization_name="", + account_tags="", + auth_method="", + raw_row=raw_row, + ) + + result = service._get_raw_result(finding) + + assert result == raw_row + + def test_get_raw_result_empty_for_unknown_type(self, service): + """Test that unknown finding type returns empty dict.""" + # Create a mock object that's neither OCSF nor CSV + mock_finding = MagicMock() + mock_finding.__class__ = type("UnknownFinding", (), {}) + + result = service._get_raw_result(mock_finding) + + assert result == {} + + +class TestBuildCheckMetadataEdgeCases: + """Additional tests for _build_check_metadata edge cases.""" + + @pytest.fixture + def service(self): + """Return a ScanImportService instance.""" + return ScanImportService(tenant_id=str(uuid4())) + + def test_build_from_ocsf_with_empty_metadata(self, service): + """Test building check metadata from OCSF finding with empty metadata.""" + ocsf_metadata = OCSFCheckMetadata() # All defaults + finding = OCSFFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="", + message="", + impact_extended="", + check_metadata=ocsf_metadata, + compliance={}, + resources=[], + provider_type="aws", + account_uid="123456789012", + account_name="", + ) + + result = service._build_check_metadata(finding) + + assert result["title"] == "" + assert result["description"] == "" + assert result["risk"] == "" + assert result["remediation"]["description"] == "" + assert result["remediation"]["references"] == [] + assert result["categories"] == [] + + def test_build_from_csv_with_all_remediation_fields(self, service): + """Test building check metadata from CSV with all remediation fields.""" + csv_metadata = CSVCheckMetadata( + title="CSV Check", + description="Description", + risk="Risk", + remediation_description="Fix description", + remediation_url="https://fix.example.com", + remediation_cli="aws cli command", + remediation_terraform="terraform code", + remediation_nativeiac="native iac code", + remediation_other="other remediation", + categories=["cat1", "cat2"], + related_url="https://related.example.com", + additional_urls=["https://url1.com", "https://url2.com"], + notes="Some notes", + ) + resource = CSVResource(uid="r1", name="", region="", service="", type="") + finding = CSVFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="", + muted=False, + check_metadata=csv_metadata, + compliance={}, + resource=resource, + provider_type="aws", + account_uid="123456789012", + account_name="", + account_email="", + account_organization_uid="", + account_organization_name="", + account_tags="", + auth_method="", + ) + + result = service._build_check_metadata(finding) + + assert result["title"] == "CSV Check" + assert result["remediation"]["description"] == "Fix description" + assert result["remediation"]["url"] == "https://fix.example.com" + assert result["remediation"]["cli"] == "aws cli command" + assert result["remediation"]["terraform"] == "terraform code" + assert result["remediation"]["nativeiac"] == "native iac code" + assert result["remediation"]["other"] == "other remediation" + assert result["additional_urls"] == ["https://url1.com", "https://url2.com"] + assert result["notes"] == "Some notes" + + def test_build_returns_empty_for_unknown_type(self, service): + """Test that unknown finding type returns empty dict.""" + mock_finding = MagicMock() + mock_finding.__class__ = type("UnknownFinding", (), {}) + + result = service._build_check_metadata(mock_finding) + + assert result == {} + + +class TestGetResourceUidsEdgeCases: + """Additional tests for _get_resource_uids edge cases.""" + + @pytest.fixture + def service(self): + """Return a ScanImportService instance.""" + return ScanImportService(tenant_id=str(uuid4())) + + def test_get_uids_from_ocsf_with_empty_resources(self, service): + """Test extracting resource UIDs from OCSF finding with no resources.""" + finding = OCSFFinding( + uid="finding-1", + check_id="check_1", + severity="low", + status="FAIL", + status_extended="", + message="", + impact_extended="", + check_metadata=OCSFCheckMetadata(), + compliance={}, + resources=[], + provider_type="aws", + account_uid="123456789012", + account_name="", + ) + + result = service._get_resource_uids(finding) + + assert result == [] + + def test_get_uids_returns_empty_for_unknown_type(self, service): + """Test that unknown finding type returns empty list.""" + mock_finding = MagicMock() + mock_finding.__class__ = type("UnknownFinding", (), {}) + + result = service._get_resource_uids(mock_finding) + + assert result == [] + + +class TestParseContentErrorHandling: + """Tests for error handling in _parse_content method.""" + + @pytest.fixture + def service(self): + """Return a ScanImportService instance.""" + return ScanImportService(tenant_id=str(uuid4())) + + def test_parse_json_with_invalid_ocsf_raises_error(self, service): + """Test that invalid OCSF JSON raises ScanImportError.""" + # JSON that parses but doesn't match OCSF schema + invalid_ocsf = json.dumps([{"invalid": "data"}]).encode("utf-8") + + with pytest.raises(ScanImportError) as exc_info: + service._parse_content(invalid_ocsf, "json") + + assert exc_info.value.code == "json_parse_error" + + def test_parse_csv_with_missing_columns_raises_error(self, service): + """Test that CSV with missing required columns raises ScanImportError.""" + invalid_csv = b"COLUMN1;COLUMN2\nvalue1;value2" + + with pytest.raises(ScanImportError) as exc_info: + service._parse_content(invalid_csv, "csv") + + assert exc_info.value.code == "csv_parse_error" + + +class TestDetectFormatEdgeCases: + """Additional tests for _detect_format edge cases.""" + + @pytest.fixture + def service(self): + """Return a ScanImportService instance.""" + return ScanImportService(tenant_id=str(uuid4())) + + def test_detect_format_with_empty_json_array(self, service): + """Test format detection with empty JSON array.""" + content = b"[]" + + result = service._detect_format(content) + + assert result == "json" + + def test_detect_format_with_csv_headers_only(self, service): + """Test format detection with CSV that has only headers.""" + csv_content = b"FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID" + + result = service._detect_format(csv_content) + + assert result == "csv" + + def test_detect_format_with_binary_content_raises_error(self, service): + """Test that binary content raises ScanImportError.""" + binary_content = b"\x00\x01\x02\x03\x04\x05" + + with pytest.raises(ScanImportError) as exc_info: + service._detect_format(binary_content) + + assert exc_info.value.code == "invalid_format" + + +@pytest.mark.django_db +class TestImportScanValidation: + """Tests for validation in import_scan method.""" + + @pytest.fixture + def service(self): + """Return a ScanImportService instance.""" + return ScanImportService(tenant_id=str(uuid4())) + + def test_import_scan_with_valid_uuid_string_provider_id(self, service): + """Test that valid UUID string provider_id is accepted.""" + valid_content = json.dumps( + [ + { + "metadata": {"event_code": "check_1"}, + "finding_info": {"uid": "finding-1"}, + "cloud": {"provider": "aws", "account": {"uid": "123456789012"}}, + } + ] + ).encode("utf-8") + + # This should fail at provider resolution, not at UUID parsing + with pytest.raises(ScanImportError) as exc_info: + service.import_scan( + valid_content, provider_id="550e8400-e29b-41d4-a716-446655440000" + ) + + # Should fail at provider resolution, not UUID parsing + assert exc_info.value.code != "invalid_provider_id" + + def test_import_scan_with_uuid_object_provider_id(self, service): + """Test that UUID object provider_id is accepted.""" + valid_content = json.dumps( + [ + { + "metadata": {"event_code": "check_1"}, + "finding_info": {"uid": "finding-1"}, + "cloud": {"provider": "aws", "account": {"uid": "123456789012"}}, + } + ] + ).encode("utf-8") + + provider_uuid = uuid4() + + # This should fail at provider resolution, not at UUID handling + with pytest.raises(ScanImportError) as exc_info: + service.import_scan(valid_content, provider_id=provider_uuid) + + # Should fail at provider resolution, not UUID handling + assert exc_info.value.code != "invalid_provider_id" + + +class TestScanImportResultDefaults: + """Tests for ScanImportResult default values.""" + + def test_result_default_provider_created(self): + """Test that provider_created defaults to False.""" + result = ScanImportResult( + scan_id=uuid4(), + provider_id=uuid4(), + findings_count=10, + resources_count=5, + ) + + assert result.provider_created is False + + def test_result_default_warnings(self): + """Test that warnings defaults to empty list.""" + result = ScanImportResult( + scan_id=uuid4(), + provider_id=uuid4(), + findings_count=10, + resources_count=5, + ) + + assert result.warnings == [] + assert isinstance(result.warnings, list) + + +class TestScanImportErrorDefaults: + """Tests for ScanImportError default values.""" + + def test_error_default_code(self): + """Test that code defaults to 'import_error'.""" + error = ScanImportError(message="Test") + + assert error.code == "import_error" + + def test_error_default_details(self): + """Test that details defaults to empty dict.""" + error = ScanImportError(message="Test") + + assert error.details == {} + assert isinstance(error.details, dict) + + def test_error_to_dict_with_defaults(self): + """Test to_dict with default values.""" + error = ScanImportError(message="Test message") + + result = error.to_dict() + + assert result == { + "message": "Test message", + "code": "import_error", + "details": {}, + } diff --git a/api/src/backend/api/tests/test_scan_import_view.py b/api/src/backend/api/tests/test_scan_import_view.py new file mode 100644 index 0000000000..03bf6ab38b --- /dev/null +++ b/api/src/backend/api/tests/test_scan_import_view.py @@ -0,0 +1,3081 @@ +""" +Unit tests for the Scan Import View. + +Tests the ScanImportView API endpoint which handles importing Prowler CLI +scan results (JSON/OCSF and CSV formats) into the Prowler platform. + +This module provides test coverage for: +- JSON/OCSF import with valid data +- CSV import with valid data +- File upload via multipart +- Inline JSON via request body +- Provider resolution (existing provider) +- Provider creation (new provider) +- Validation errors (invalid format) +- Authentication required +- Permission required (MANAGE_SCANS) +- Tenant isolation + +Test Classes +------------ +TestScanImportViewAuthentication + Tests for authentication requirements. + +TestScanImportViewPermissions + Tests for permission requirements. + +TestScanImportViewValidation + Tests for request validation. + +TestScanImportViewJSONImport + Tests for JSON/OCSF import functionality. + +TestScanImportViewCSVImport + Tests for CSV import functionality. + +TestScanImportViewProviderHandling + Tests for provider resolution and creation. + +TestScanImportViewTenantIsolation + Tests for tenant isolation. + +Usage +----- +Run tests from the api/src/backend directory:: + + poetry run pytest api/tests/test_scan_import_view.py -v + +Run specific test class:: + + poetry run pytest api/tests/test_scan_import_view.py::TestScanImportViewJSONImport -v + +Run with coverage:: + + poetry run pytest api/tests/test_scan_import_view.py --cov=api.v1.views +""" + +import io +import json +from uuid import uuid4 + +import pytest +from django.urls import reverse +from rest_framework import status + +from api.models import Finding, Provider, Resource, Scan, StateChoices + + +@pytest.mark.django_db +class TestScanImportViewAuthentication: + """Tests for authentication requirements.""" + + def test_unauthenticated_request_returns_401(self, client): + """Test that unauthenticated requests return 401.""" + url = reverse("scan-import") + response = client.post(url, data={}, content_type="application/json") + + assert response.status_code == status.HTTP_401_UNAUTHORIZED + + def test_invalid_token_returns_401(self, client): + """Test that invalid token returns 401.""" + url = reverse("scan-import") + client.defaults["HTTP_AUTHORIZATION"] = "Bearer invalid_token" + response = client.post(url, data={}, content_type="application/json") + + assert response.status_code == status.HTTP_401_UNAUTHORIZED + + +@pytest.mark.django_db +class TestScanImportViewPermissions: + """Tests for permission requirements (MANAGE_SCANS).""" + + def test_user_without_manage_scans_permission_returns_403( + self, authenticated_client_no_permissions_rbac + ): + """Test that user without MANAGE_SCANS permission gets 403.""" + url = reverse("scan-import") + data = {"data": [{"test": "data"}]} + + response = authenticated_client_no_permissions_rbac.post( + url, data=json.dumps(data), content_type="application/json" + ) + + assert response.status_code == status.HTTP_403_FORBIDDEN + + def test_user_with_manage_scans_permission_can_access( + self, authenticated_client, tenants_fixture + ): + """Test that user with MANAGE_SCANS permission can access endpoint.""" + url = reverse("scan-import") + # Send minimal data to trigger validation error (not permission error) + data = {} + + response = authenticated_client.post( + url, data=json.dumps(data), content_type="application/json" + ) + + # Should get validation error, not permission error + assert response.status_code != status.HTTP_403_FORBIDDEN + + +@pytest.mark.django_db +class TestScanImportViewValidation: + """Tests for request validation.""" + + def test_missing_file_and_data_returns_400(self, authenticated_client): + """Test that missing both file and data returns validation error.""" + url = reverse("scan-import") + data = {} + + response = authenticated_client.post( + url, data=json.dumps(data), content_type="application/json" + ) + + assert response.status_code == status.HTTP_400_BAD_REQUEST + response_data = response.json() + assert "errors" in response_data + + def test_both_file_and_data_returns_400(self, authenticated_client): + """Test that providing both file and data returns validation error.""" + url = reverse("scan-import") + + # Create a file-like object + file_content = b'[{"test": "data"}]' + file_obj = io.BytesIO(file_content) + file_obj.name = "test.json" + + response = authenticated_client.post( + url, + data={ + "file": file_obj, + "data": json.dumps([{"test": "data"}]), + }, + format="multipart", + ) + + assert response.status_code == status.HTTP_400_BAD_REQUEST + + def test_file_too_large_returns_400(self, authenticated_client): + """Test that file exceeding 1GB returns validation error.""" + url = reverse("scan-import") + + # Create a file larger than 1GB (we use a smaller size for test efficiency) + # The actual validation happens at 1GB, but we test with a slightly larger file + large_content = b"x" * (1024 * 1024 * 1024 + 1) + file_obj = io.BytesIO(large_content) + file_obj.name = "large_file.json" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_400_BAD_REQUEST + + def test_binary_file_returns_422(self, authenticated_client): + """Test that binary/unrecognized file format returns 422.""" + url = reverse("scan-import") + + # Create binary content that is neither JSON nor CSV + binary_content = bytes( + [0x89, 0x50, 0x4E, 0x47, 0x0D, 0x0A, 0x1A, 0x0A] + ) # PNG header + file_obj = io.BytesIO(binary_content) + file_obj.name = "image.png" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + response_data = response.json() + assert "errors" in response_data + # Check that errors is a list and has at least one error + assert isinstance(response_data["errors"], list) + assert len(response_data["errors"]) > 0 + assert response_data["errors"][0]["code"] == "invalid_format" + + def test_xml_file_returns_422(self, authenticated_client): + """Test that XML file (not JSON or CSV) returns 422.""" + url = reverse("scan-import") + + # Create XML content + xml_content = b""" + + + test_check + PASS + +""" + file_obj = io.BytesIO(xml_content) + file_obj.name = "findings.xml" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + response_data = response.json() + assert "errors" in response_data + # Check that errors is a list and has at least one error + assert isinstance(response_data["errors"], list) + assert len(response_data["errors"]) > 0 + assert response_data["errors"][0]["code"] == "invalid_format" + + def test_invalid_ocsf_missing_required_fields_returns_422( + self, authenticated_client + ): + """Test that OCSF JSON missing required fields returns 422.""" + url = reverse("scan-import") + + # OCSF data missing required fields (metadata.event_code, finding_info.uid, etc.) + invalid_ocsf = [ + { + "message": "Test finding", + # Missing: metadata.event_code + "severity": "Low", + "status_code": "PASS", + # Missing: finding_info.uid + "cloud": { + "provider": "aws", + "account": {"uid": "123456789012"}, + }, + "resources": [{"uid": "resource-1", "name": "test"}], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": invalid_ocsf}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + response_data = response.json() + assert "errors" in response_data + + def test_csv_missing_required_columns_returns_422(self, authenticated_client): + """Test that CSV missing required columns returns 422.""" + url = reverse("scan-import") + + # CSV missing required columns (FINDING_UID, CHECK_ID, etc.) + invalid_csv = """SOME_COLUMN;ANOTHER_COLUMN +value1;value2 +value3;value4""" + file_obj = io.BytesIO(invalid_csv.encode("utf-8")) + file_obj.name = "invalid.csv" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + response_data = response.json() + assert "errors" in response_data + + def test_plain_text_file_returns_422(self, authenticated_client): + """Test that plain text file (not JSON or CSV) returns 422.""" + url = reverse("scan-import") + + # Plain text content + text_content = b"This is just plain text, not JSON or CSV format." + file_obj = io.BytesIO(text_content) + file_obj.name = "readme.txt" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + response_data = response.json() + assert "errors" in response_data + # Check that errors is a list and has at least one error + assert isinstance(response_data["errors"], list) + assert len(response_data["errors"]) > 0 + assert response_data["errors"][0]["code"] == "invalid_format" + + def test_json_array_with_non_object_elements_returns_422( + self, authenticated_client + ): + """Test that JSON array with non-object elements returns 422.""" + url = reverse("scan-import") + + # JSON array with strings instead of objects + invalid_json = ["string1", "string2", "string3"] + + response = authenticated_client.post( + url, + data=json.dumps({"data": invalid_json}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + response_data = response.json() + assert "errors" in response_data + + def test_json_object_instead_of_array_returns_422(self, authenticated_client): + """Test that JSON object (not array) returns 422.""" + url = reverse("scan-import") + + # Single object instead of array of findings + invalid_json = { + "message": "Test finding", + "metadata": {"event_code": "check_1"}, + "severity": "Low", + "status_code": "PASS", + } + + response = authenticated_client.post( + url, + data=json.dumps({"data": invalid_json}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + response_data = response.json() + assert "errors" in response_data + + def test_unsupported_provider_type_returns_422(self, authenticated_client): + """Test that unsupported provider type returns 422.""" + url = reverse("scan-import") + + # OCSF data with unsupported provider type + ocsf_data = [ + { + "message": "Test finding", + "metadata": {"event_code": "check_1"}, + "severity": "Low", + "status_code": "PASS", + "finding_info": {"uid": f"finding-{uuid4()}", "title": "Test"}, + "cloud": { + "provider": "unsupported_cloud_provider", # Invalid provider type + "account": {"uid": "123456789012"}, + }, + "resources": [{"uid": f"resource-{uuid4()}", "name": "test"}], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + response_data = response.json() + assert "errors" in response_data + # Check that errors is a list and has at least one error + assert isinstance(response_data["errors"], list) + assert len(response_data["errors"]) > 0 + assert response_data["errors"][0]["code"] == "invalid_provider_type" + + +@pytest.mark.django_db +class TestScanImportViewJSONImport: + """Tests for JSON/OCSF import functionality.""" + + @pytest.fixture + def valid_ocsf_data(self): + """Return valid OCSF JSON data.""" + return [ + { + "message": "Test finding message", + "metadata": {"event_code": "check_test_1"}, + "severity": "Low", + "status_code": "FAIL", + "status_detail": "Test status detail", + "finding_info": { + "uid": f"finding-{uuid4()}", + "title": "Test Finding", + "desc": "Test description", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "123456789012", "name": "Test Account"}, + }, + "resources": [ + { + "uid": f"resource-{uuid4()}", + "name": "test-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + @pytest.fixture + def complete_ocsf_data(self): + """Return complete OCSF JSON data with all fields for comprehensive testing.""" + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + return { + "finding_uid": finding_uid, + "resource_uid": resource_uid, + "data": [ + { + "message": "S3 bucket has public access enabled", + "metadata": {"event_code": "s3_bucket_public_access"}, + "severity": "High", + "status_code": "FAIL", + "status_detail": "Bucket my-test-bucket has public access enabled", + "finding_info": { + "uid": finding_uid, + "title": "S3 Bucket Public Access Check", + "desc": "Checks if S3 buckets have public access enabled", + }, + "cloud": { + "provider": "aws", + "account": { + "uid": "111122223333", + "name": "Production Account", + }, + }, + "resources": [ + { + "uid": resource_uid, + "name": "my-test-bucket", + "region": "us-west-2", + "group": {"name": "s3"}, + "type": "bucket", + } + ], + "risk_details": "Public S3 buckets can expose sensitive data", + "remediation": { + "desc": "Disable public access on the S3 bucket", + "references": ["https://docs.aws.amazon.com/s3/security"], + }, + "unmapped": { + "compliance": { + "CIS-AWS": ["2.1.1", "2.1.2"], + "PCI-DSS": ["3.4"], + }, + "categories": ["security", "storage"], + "related_url": "https://prowler.com/checks/s3", + }, + } + ], + } + + def test_json_import_with_valid_ocsf_data_creates_scan_and_findings( + self, authenticated_client, tenants_fixture, complete_ocsf_data + ): + """Test JSON import with valid OCSF data creates scan, findings, and resources.""" + url = reverse("scan-import") + tenant = tenants_fixture[0] + ocsf_data = complete_ocsf_data["data"] + finding_uid = complete_ocsf_data["finding_uid"] + resource_uid = complete_ocsf_data["resource_uid"] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + # Verify successful response + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + # Verify response structure + assert "data" in response_data + assert response_data["data"]["type"] == "scan-imports" + assert "attributes" in response_data["data"] + + attributes = response_data["data"]["attributes"] + assert "scan_id" in attributes + assert "provider_id" in attributes + assert attributes["findings_count"] == 1 + assert attributes["resources_count"] == 1 + assert attributes["status"] == "completed" + + # Verify scan was created in database + scan_id = attributes["scan_id"] + scan = Scan.objects.get(id=scan_id) + assert str(scan.tenant_id) == str(tenant.id) + assert scan.trigger == Scan.TriggerChoices.IMPORTED + assert scan.state == StateChoices.COMPLETED + assert scan.unique_resource_count == 1 + + # Verify provider was created + provider_id = attributes["provider_id"] + provider = Provider.objects.get(id=provider_id) + assert provider.provider == "aws" + assert provider.uid == "111122223333" + assert str(provider.tenant_id) == str(tenant.id) + + # Verify finding was created + finding = Finding.objects.get(uid=finding_uid) + assert finding.check_id == "s3_bucket_public_access" + assert finding.severity == "high" + assert finding.status == "FAIL" + assert ( + finding.status_extended == "Bucket my-test-bucket has public access enabled" + ) + assert str(finding.scan_id) == scan_id + assert str(finding.tenant_id) == str(tenant.id) + + # Verify check metadata + assert finding.check_metadata["title"] == "S3 Bucket Public Access Check" + assert ( + finding.check_metadata["description"] + == "Checks if S3 buckets have public access enabled" + ) + assert ( + finding.check_metadata["risk"] + == "Public S3 buckets can expose sensitive data" + ) + + # Verify resource was created + resource = Resource.objects.get(uid=resource_uid) + assert resource.name == "my-test-bucket" + assert resource.region == "us-west-2" + assert resource.service == "s3" + assert resource.type == "bucket" + assert str(resource.tenant_id) == str(tenant.id) + + def test_json_import_with_valid_ocsf_data( + self, authenticated_client, tenants_fixture, valid_ocsf_data + ): + """Test JSON import with valid OCSF data creates scan.""" + url = reverse("scan-import") + + response = authenticated_client.post( + url, + data=json.dumps({"data": valid_ocsf_data}), + content_type="application/json", + ) + + # Should succeed or fail with import error (not validation error) + assert response.status_code in [ + status.HTTP_201_CREATED, + status.HTTP_422_UNPROCESSABLE_ENTITY, + ] + + def test_json_import_via_file_upload( + self, authenticated_client, tenants_fixture, valid_ocsf_data + ): + """Test JSON import via file upload.""" + url = reverse("scan-import") + + file_content = json.dumps(valid_ocsf_data).encode("utf-8") + file_obj = io.BytesIO(file_content) + file_obj.name = "prowler-output.json" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + # Should succeed or fail with import error (not validation error) + assert response.status_code in [ + status.HTTP_201_CREATED, + status.HTTP_422_UNPROCESSABLE_ENTITY, + ] + + def test_json_import_invalid_format_returns_422(self, authenticated_client): + """Test that invalid JSON format returns 422.""" + url = reverse("scan-import") + + # Invalid OCSF structure + invalid_data = [{"invalid": "structure"}] + + response = authenticated_client.post( + url, + data=json.dumps({"data": invalid_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + response_data = response.json() + assert "errors" in response_data + + def test_json_import_with_multiple_findings( + self, authenticated_client, tenants_fixture + ): + """Test JSON import with multiple findings creates all records.""" + url = reverse("scan-import") + _tenant = tenants_fixture[0] # noqa: F841 - used for fixture setup + + # Create OCSF data with multiple findings + finding_uid_1 = str(uuid4()) + finding_uid_2 = str(uuid4()) + resource_uid_1 = str(uuid4()) + resource_uid_2 = str(uuid4()) + + ocsf_data = [ + { + "message": "First finding", + "metadata": {"event_code": "check_1"}, + "severity": "High", + "status_code": "FAIL", + "status_detail": "First finding detail", + "finding_info": { + "uid": finding_uid_1, + "title": "Check 1", + "desc": "Description 1", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "444455556666", "name": "Test Account"}, + }, + "resources": [ + { + "uid": resource_uid_1, + "name": "resource-1", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + }, + { + "message": "Second finding", + "metadata": {"event_code": "check_2"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Second finding detail", + "finding_info": { + "uid": finding_uid_2, + "title": "Check 2", + "desc": "Description 2", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "444455556666", "name": "Test Account"}, + }, + "resources": [ + { + "uid": resource_uid_2, + "name": "resource-2", + "region": "eu-west-1", + "group": {"name": "s3"}, + "type": "bucket", + } + ], + }, + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + attributes = response_data["data"]["attributes"] + assert attributes["findings_count"] == 2 + assert attributes["resources_count"] == 2 + + # Verify both findings were created + assert Finding.objects.filter(uid=finding_uid_1).exists() + assert Finding.objects.filter(uid=finding_uid_2).exists() + + # Verify both resources were created + assert Resource.objects.filter(uid=resource_uid_1).exists() + assert Resource.objects.filter(uid=resource_uid_2).exists() + + def test_json_import_with_compliance_data( + self, authenticated_client, tenants_fixture + ): + """Test JSON import preserves compliance mapping data.""" + url = reverse("scan-import") + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Compliance test finding", + "metadata": {"event_code": "compliance_check"}, + "severity": "Medium", + "status_code": "FAIL", + "status_detail": "Compliance check failed", + "finding_info": { + "uid": finding_uid, + "title": "Compliance Check", + "desc": "Tests compliance mapping", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "777788889999", "name": "Compliance Account"}, + }, + "resources": [ + { + "uid": resource_uid, + "name": "compliance-resource", + "region": "us-east-1", + "group": {"name": "iam"}, + "type": "user", + } + ], + "unmapped": { + "compliance": { + "CIS-AWS-1.4": ["1.1", "1.2", "1.3"], + "SOC2": ["CC6.1"], + "HIPAA": ["164.312(a)(1)"], + }, + }, + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + + # Verify compliance data was preserved + finding = Finding.objects.get(uid=finding_uid) + assert "CIS-AWS-1.4" in finding.compliance + assert finding.compliance["CIS-AWS-1.4"] == ["1.1", "1.2", "1.3"] + assert "SOC2" in finding.compliance + assert "HIPAA" in finding.compliance + + +@pytest.mark.django_db +class TestScanImportViewCSVImport: + """Tests for CSV import functionality.""" + + @pytest.fixture + def valid_csv_content(self): + """Return valid CSV content.""" + return """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;SEVERITY;RESOURCE_UID;RESOURCE_NAME;REGION;SERVICE_NAME;RESOURCE_TYPE;STATUS_EXTENDED +finding-001;aws;check_test_1;PASS;123456789012;low;resource-001;test-resource;us-east-1;ec2;instance;Test status""" + + @pytest.fixture + def complete_csv_content(self): + """Return complete CSV content with all fields for comprehensive testing.""" + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + return { + "finding_uid": finding_uid, + "resource_uid": resource_uid, + "content": f"""FINDING_UID;PROVIDER;CHECK_ID;CHECK_TITLE;STATUS;STATUS_EXTENDED;ACCOUNT_UID;SEVERITY;RESOURCE_UID;RESOURCE_NAME;REGION;SERVICE_NAME;RESOURCE_TYPE;DESCRIPTION;RISK;COMPLIANCE +{finding_uid};aws;s3_bucket_public_access;S3 Bucket Public Access Check;FAIL;Bucket my-test-bucket has public access enabled;222233334444;high;{resource_uid};my-test-bucket;us-west-2;s3;bucket;Checks if S3 buckets have public access enabled;Public S3 buckets can expose sensitive data;CIS-AWS: 2.1.1, 2.1.2 | PCI-DSS: 3.4""", + } + + def test_csv_import_with_valid_data_creates_scan_and_findings( + self, authenticated_client, tenants_fixture, complete_csv_content + ): + """Test CSV import with valid data creates scan, findings, and resources.""" + url = reverse("scan-import") + tenant = tenants_fixture[0] + csv_content = complete_csv_content["content"] + finding_uid = complete_csv_content["finding_uid"] + resource_uid = complete_csv_content["resource_uid"] + + file_obj = io.BytesIO(csv_content.encode("utf-8")) + file_obj.name = "prowler-output.csv" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + # Verify successful response + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + # Verify response structure + assert "data" in response_data + assert response_data["data"]["type"] == "scan-imports" + assert "attributes" in response_data["data"] + + attributes = response_data["data"]["attributes"] + assert "scan_id" in attributes + assert "provider_id" in attributes + assert attributes["findings_count"] == 1 + assert attributes["resources_count"] == 1 + assert attributes["status"] == "completed" + + # Verify scan was created in database + scan_id = attributes["scan_id"] + scan = Scan.objects.get(id=scan_id) + assert str(scan.tenant_id) == str(tenant.id) + assert scan.trigger == Scan.TriggerChoices.IMPORTED + assert scan.state == StateChoices.COMPLETED + assert scan.unique_resource_count == 1 + + # Verify provider was created + provider_id = attributes["provider_id"] + provider = Provider.objects.get(id=provider_id) + assert provider.provider == "aws" + assert provider.uid == "222233334444" + assert str(provider.tenant_id) == str(tenant.id) + + # Verify finding was created + finding = Finding.objects.get(uid=finding_uid) + assert finding.check_id == "s3_bucket_public_access" + assert finding.severity == "high" + assert finding.status == "FAIL" + assert ( + finding.status_extended == "Bucket my-test-bucket has public access enabled" + ) + assert str(finding.scan_id) == scan_id + assert str(finding.tenant_id) == str(tenant.id) + + # Verify check metadata + assert finding.check_metadata["title"] == "S3 Bucket Public Access Check" + assert ( + finding.check_metadata["description"] + == "Checks if S3 buckets have public access enabled" + ) + assert ( + finding.check_metadata["risk"] + == "Public S3 buckets can expose sensitive data" + ) + + # Verify resource was created + resource = Resource.objects.get(uid=resource_uid) + assert resource.name == "my-test-bucket" + assert resource.region == "us-west-2" + assert resource.service == "s3" + assert resource.type == "bucket" + assert str(resource.tenant_id) == str(tenant.id) + + # Verify compliance data was preserved + assert "CIS-AWS" in finding.compliance + assert finding.compliance["CIS-AWS"] == ["2.1.1", "2.1.2"] + assert "PCI-DSS" in finding.compliance + assert finding.compliance["PCI-DSS"] == ["3.4"] + + def test_csv_import_via_file_upload( + self, authenticated_client, tenants_fixture, valid_csv_content + ): + """Test CSV import via file upload.""" + url = reverse("scan-import") + + file_obj = io.BytesIO(valid_csv_content.encode("utf-8")) + file_obj.name = "prowler-output.csv" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + # Should succeed or fail with import error (not validation error) + assert response.status_code in [ + status.HTTP_201_CREATED, + status.HTTP_422_UNPROCESSABLE_ENTITY, + ] + + def test_csv_import_with_multiple_findings( + self, authenticated_client, tenants_fixture + ): + """Test CSV import with multiple findings creates all records.""" + url = reverse("scan-import") + _tenant = tenants_fixture[0] # noqa: F841 - used for fixture setup + + # Create CSV data with multiple findings + finding_uid_1 = str(uuid4()) + finding_uid_2 = str(uuid4()) + resource_uid_1 = str(uuid4()) + resource_uid_2 = str(uuid4()) + + csv_content = f"""FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;SEVERITY;RESOURCE_UID;RESOURCE_NAME;REGION;SERVICE_NAME;RESOURCE_TYPE;STATUS_EXTENDED +{finding_uid_1};aws;check_1;FAIL;555566667777;high;{resource_uid_1};resource-1;us-east-1;ec2;instance;First finding detail +{finding_uid_2};aws;check_2;PASS;555566667777;low;{resource_uid_2};resource-2;eu-west-1;s3;bucket;Second finding detail""" + + file_obj = io.BytesIO(csv_content.encode("utf-8")) + file_obj.name = "prowler-output.csv" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + attributes = response_data["data"]["attributes"] + assert attributes["findings_count"] == 2 + assert attributes["resources_count"] == 2 + + # Verify both findings were created + assert Finding.objects.filter(uid=finding_uid_1).exists() + assert Finding.objects.filter(uid=finding_uid_2).exists() + + # Verify both resources were created + assert Resource.objects.filter(uid=resource_uid_1).exists() + assert Resource.objects.filter(uid=resource_uid_2).exists() + + # Verify findings have correct status + finding_1 = Finding.objects.get(uid=finding_uid_1) + finding_2 = Finding.objects.get(uid=finding_uid_2) + assert finding_1.status == "FAIL" + assert finding_1.severity == "high" + assert finding_2.status == "PASS" + assert finding_2.severity == "low" + + def test_csv_import_with_compliance_data( + self, authenticated_client, tenants_fixture + ): + """Test CSV import preserves compliance mapping data.""" + url = reverse("scan-import") + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + csv_content = f"""FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;SEVERITY;RESOURCE_UID;RESOURCE_NAME;REGION;SERVICE_NAME;RESOURCE_TYPE;COMPLIANCE +{finding_uid};aws;compliance_check;FAIL;888899990000;medium;{resource_uid};compliance-resource;us-east-1;iam;user;CIS-AWS-1.4: 1.1, 1.2, 1.3 | SOC2: CC6.1 | HIPAA: 164.312""" + + file_obj = io.BytesIO(csv_content.encode("utf-8")) + file_obj.name = "prowler-output.csv" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + + # Verify compliance data was preserved + finding = Finding.objects.get(uid=finding_uid) + assert "CIS-AWS-1.4" in finding.compliance + assert finding.compliance["CIS-AWS-1.4"] == ["1.1", "1.2", "1.3"] + assert "SOC2" in finding.compliance + assert finding.compliance["SOC2"] == ["CC6.1"] + assert "HIPAA" in finding.compliance + assert finding.compliance["HIPAA"] == ["164.312"] + + def test_csv_import_with_comma_delimiter( + self, authenticated_client, tenants_fixture + ): + """Test CSV import with comma delimiter (non-default).""" + url = reverse("scan-import") + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + # Use comma delimiter instead of semicolon + csv_content = f"""FINDING_UID,PROVIDER,CHECK_ID,STATUS,ACCOUNT_UID,SEVERITY,RESOURCE_UID,RESOURCE_NAME,REGION,SERVICE_NAME,RESOURCE_TYPE +{finding_uid},aws,comma_check,PASS,111122223333,low,{resource_uid},comma-resource,us-east-1,ec2,instance""" + + file_obj = io.BytesIO(csv_content.encode("utf-8")) + file_obj.name = "prowler-output.csv" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + + # Verify finding was created correctly + finding = Finding.objects.get(uid=finding_uid) + assert finding.check_id == "comma_check" + assert finding.status == "PASS" + + def test_csv_import_invalid_format_returns_422(self, authenticated_client): + """Test that invalid CSV format returns 422.""" + url = reverse("scan-import") + + # Invalid CSV - missing required columns + invalid_csv = "col1;col2\nval1;val2" + file_obj = io.BytesIO(invalid_csv.encode("utf-8")) + file_obj.name = "invalid.csv" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + + +@pytest.mark.django_db +class TestScanImportViewProviderHandling: + """Tests for provider resolution and creation.""" + + def test_import_resolves_existing_provider_by_type_and_uid( + self, authenticated_client, providers_fixture, tenants_fixture + ): + """Test import automatically resolves existing provider by type and account UID. + + This test verifies that when importing scan data without explicitly passing + provider_id, the system correctly finds and uses an existing provider that + matches the provider type and account UID from the scan data. + """ + url = reverse("scan-import") + provider = providers_fixture[0] # aws provider with uid="123456789012" + tenant = tenants_fixture[0] + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + # Count providers before import + initial_provider_count = Provider.objects.filter(tenant_id=tenant.id).count() + + # Create OCSF data that matches the existing provider's type and UID + ocsf_data = [ + { + "message": "Test finding for provider resolution", + "metadata": {"event_code": "provider_resolution_check"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Test status for provider resolution", + "finding_info": { + "uid": finding_uid, + "title": "Provider Resolution Test", + "desc": "Testing automatic provider resolution", + }, + "cloud": { + "provider": provider.provider, # "aws" + "account": { + "uid": provider.uid, # "123456789012" + "name": "Test Account", + }, + }, + "resources": [ + { + "uid": resource_uid, + "name": "provider-resolution-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + # Import WITHOUT passing provider_id - should auto-resolve + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + # Verify successful response + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + # Verify the existing provider was used + attributes = response_data["data"]["attributes"] + assert attributes["provider_id"] == str(provider.id) + assert attributes["provider_created"] is False + + # Verify no new provider was created + final_provider_count = Provider.objects.filter(tenant_id=tenant.id).count() + assert final_provider_count == initial_provider_count + + # Verify the scan was associated with the existing provider + scan_id = attributes["scan_id"] + scan = Scan.objects.get(id=scan_id) + assert scan.provider_id == provider.id + + # Verify finding was created and linked to the scan + finding = Finding.objects.get(uid=finding_uid) + assert str(finding.scan_id) == scan_id + assert str(finding.tenant_id) == str(tenant.id) + + def test_import_resolves_existing_gcp_provider_by_type_and_uid( + self, authenticated_client, providers_fixture, tenants_fixture + ): + """Test import resolves existing GCP provider by type and account UID. + + This test verifies provider resolution works for non-AWS providers. + """ + url = reverse("scan-import") + gcp_provider = providers_fixture[2] # gcp provider with uid="a12322-test321" + tenant = tenants_fixture[0] + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + # Count providers before import + initial_provider_count = Provider.objects.filter(tenant_id=tenant.id).count() + + # Create OCSF data that matches the existing GCP provider + ocsf_data = [ + { + "message": "GCP test finding for provider resolution", + "metadata": {"event_code": "gcp_provider_resolution_check"}, + "severity": "Medium", + "status_code": "FAIL", + "status_detail": "GCP test status for provider resolution", + "finding_info": { + "uid": finding_uid, + "title": "GCP Provider Resolution Test", + "desc": "Testing automatic GCP provider resolution", + }, + "cloud": { + "provider": gcp_provider.provider, # "gcp" + "account": { + "uid": gcp_provider.uid, # "a12322-test321" + "name": "GCP Test Project", + }, + }, + "resources": [ + { + "uid": resource_uid, + "name": "gcp-provider-resolution-resource", + "region": "us-central1", + "group": {"name": "compute"}, + "type": "instance", + } + ], + } + ] + + # Import WITHOUT passing provider_id - should auto-resolve to GCP provider + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + # Verify successful response + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + # Verify the existing GCP provider was used + attributes = response_data["data"]["attributes"] + assert attributes["provider_id"] == str(gcp_provider.id) + assert attributes["provider_created"] is False + + # Verify no new provider was created + final_provider_count = Provider.objects.filter(tenant_id=tenant.id).count() + assert final_provider_count == initial_provider_count + + def test_import_resolves_existing_provider_via_csv( + self, authenticated_client, providers_fixture, tenants_fixture + ): + """Test CSV import automatically resolves existing provider by type and account UID.""" + url = reverse("scan-import") + provider = providers_fixture[0] # aws provider with uid="123456789012" + tenant = tenants_fixture[0] + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + # Count providers before import + initial_provider_count = Provider.objects.filter(tenant_id=tenant.id).count() + + # Create CSV data that matches the existing provider's type and UID + csv_content = f"""FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;SEVERITY;RESOURCE_UID;RESOURCE_NAME;REGION;SERVICE_NAME;RESOURCE_TYPE;STATUS_EXTENDED +{finding_uid};{provider.provider};csv_provider_resolution_check;PASS;{provider.uid};low;{resource_uid};csv-provider-resolution-resource;us-east-1;ec2;instance;CSV test for provider resolution""" + + file_obj = io.BytesIO(csv_content.encode("utf-8")) + file_obj.name = "prowler-output.csv" + + # Import WITHOUT passing provider_id - should auto-resolve + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + # Verify successful response + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + # Verify the existing provider was used + attributes = response_data["data"]["attributes"] + assert attributes["provider_id"] == str(provider.id) + assert attributes["provider_created"] is False + + # Verify no new provider was created + final_provider_count = Provider.objects.filter(tenant_id=tenant.id).count() + assert final_provider_count == initial_provider_count + + # Verify the scan was associated with the existing provider + scan_id = attributes["scan_id"] + scan = Scan.objects.get(id=scan_id) + assert scan.provider_id == provider.id + + def test_import_with_existing_provider_id( + self, authenticated_client, providers_fixture + ): + """Test import with existing provider_id uses that provider.""" + url = reverse("scan-import") + provider = providers_fixture[0] + + # Valid OCSF data matching the provider + ocsf_data = [ + { + "message": "Test finding", + "metadata": {"event_code": "check_1"}, + "severity": "Low", + "status_code": "PASS", + "finding_info": {"uid": f"finding-{uuid4()}", "title": "Test"}, + "cloud": { + "provider": provider.provider, + "account": {"uid": provider.uid}, + }, + "resources": [{"uid": f"resource-{uuid4()}", "name": "test"}], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data, "provider_id": str(provider.id)}), + content_type="application/json", + ) + + # Should succeed or fail with import error + assert response.status_code in [ + status.HTTP_201_CREATED, + status.HTTP_422_UNPROCESSABLE_ENTITY, + ] + + def test_import_with_nonexistent_provider_id_returns_422( + self, authenticated_client + ): + """Test import with non-existent provider_id returns 422.""" + url = reverse("scan-import") + fake_provider_id = str(uuid4()) + + ocsf_data = [ + { + "message": "Test", + "metadata": {"event_code": "check_1"}, + "severity": "Low", + "status_code": "PASS", + "finding_info": {"uid": f"finding-{uuid4()}", "title": "Test"}, + "cloud": {"provider": "aws", "account": {"uid": "123456789012"}}, + "resources": [{"uid": f"resource-{uuid4()}", "name": "test"}], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data, "provider_id": fake_provider_id}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + + def test_import_with_create_provider_false_and_no_match_returns_422( + self, authenticated_client + ): + """Test import with create_provider=False and no matching provider returns 422.""" + url = reverse("scan-import") + + # Use a unique account UID that won't match any existing provider + unique_account_uid = f"999999999{uuid4().hex[:3]}" + + ocsf_data = [ + { + "message": "Test", + "metadata": {"event_code": "check_1"}, + "severity": "Low", + "status_code": "PASS", + "finding_info": {"uid": f"finding-{uuid4()}", "title": "Test"}, + "cloud": {"provider": "aws", "account": {"uid": unique_account_uid}}, + "resources": [{"uid": f"resource-{uuid4()}", "name": "test"}], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data, "create_provider": False}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + + def test_import_creates_new_provider_when_no_match_exists( + self, authenticated_client, tenants_fixture + ): + """Test import creates new provider when no matching provider exists. + + This test verifies that when importing scan data with a provider type + and account UID that doesn't match any existing provider, the system + creates a new provider and associates the scan with it. + """ + url = reverse("scan-import") + tenant = tenants_fixture[0] + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + # Use a unique account UID that won't match any existing provider + unique_account_uid = f"new-provider-{uuid4().hex[:8]}" + account_name = "New Test Account" + + # Count providers before import + initial_provider_count = Provider.objects.filter(tenant_id=tenant.id).count() + + # Create OCSF data with a new provider type and UID + ocsf_data = [ + { + "message": "Test finding for new provider creation", + "metadata": {"event_code": "new_provider_check"}, + "severity": "High", + "status_code": "FAIL", + "status_detail": "Test status for new provider creation", + "finding_info": { + "uid": finding_uid, + "title": "New Provider Creation Test", + "desc": "Testing automatic provider creation", + }, + "cloud": { + "provider": "aws", + "account": { + "uid": unique_account_uid, + "name": account_name, + }, + }, + "resources": [ + { + "uid": resource_uid, + "name": "new-provider-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + # Import WITHOUT passing provider_id - should create new provider + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + # Verify successful response + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + # Verify response structure + assert "data" in response_data + assert response_data["data"]["type"] == "scan-imports" + assert "attributes" in response_data["data"] + + attributes = response_data["data"]["attributes"] + assert "scan_id" in attributes + assert "provider_id" in attributes + assert attributes["provider_created"] is True + assert attributes["findings_count"] == 1 + assert attributes["resources_count"] == 1 + assert attributes["status"] == "completed" + + # Verify a new provider was created + final_provider_count = Provider.objects.filter(tenant_id=tenant.id).count() + assert final_provider_count == initial_provider_count + 1 + + # Verify the new provider has correct attributes + provider_id = attributes["provider_id"] + provider = Provider.objects.get(id=provider_id) + assert provider.provider == "aws" + assert provider.uid == unique_account_uid + assert provider.alias == account_name + assert str(provider.tenant_id) == str(tenant.id) + + # Verify the scan was associated with the new provider + scan_id = attributes["scan_id"] + scan = Scan.objects.get(id=scan_id) + assert scan.provider_id == provider.id + assert scan.trigger == Scan.TriggerChoices.IMPORTED + assert scan.state == StateChoices.COMPLETED + + # Verify finding was created and linked to the scan + finding = Finding.objects.get(uid=finding_uid) + assert str(finding.scan_id) == scan_id + assert str(finding.tenant_id) == str(tenant.id) + assert finding.check_id == "new_provider_check" + assert finding.severity == "high" + assert finding.status == "FAIL" + + # Verify resource was created + resource = Resource.objects.get(uid=resource_uid) + assert resource.name == "new-provider-resource" + assert str(resource.tenant_id) == str(tenant.id) + + def test_import_creates_new_provider_via_csv( + self, authenticated_client, tenants_fixture + ): + """Test CSV import creates new provider when no matching provider exists.""" + url = reverse("scan-import") + tenant = tenants_fixture[0] + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + # Use a unique account UID that won't match any existing provider + unique_account_uid = f"csv-new-provider-{uuid4().hex[:8]}" + + # Count providers before import + initial_provider_count = Provider.objects.filter(tenant_id=tenant.id).count() + + # Create CSV data with a new provider type and UID + csv_content = f"""FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;SEVERITY;RESOURCE_UID;RESOURCE_NAME;REGION;SERVICE_NAME;RESOURCE_TYPE;STATUS_EXTENDED +{finding_uid};aws;csv_new_provider_check;FAIL;{unique_account_uid};high;{resource_uid};csv-new-provider-resource;us-west-2;s3;bucket;CSV test for new provider creation""" + + file_obj = io.BytesIO(csv_content.encode("utf-8")) + file_obj.name = "prowler-output.csv" + + # Import WITHOUT passing provider_id - should create new provider + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + # Verify successful response + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + # Verify the provider was created + attributes = response_data["data"]["attributes"] + assert attributes["provider_created"] is True + assert attributes["findings_count"] == 1 + assert attributes["resources_count"] == 1 + + # Verify a new provider was created + final_provider_count = Provider.objects.filter(tenant_id=tenant.id).count() + assert final_provider_count == initial_provider_count + 1 + + # Verify the new provider has correct attributes + provider_id = attributes["provider_id"] + provider = Provider.objects.get(id=provider_id) + assert provider.provider == "aws" + assert provider.uid == unique_account_uid + assert str(provider.tenant_id) == str(tenant.id) + + # Verify the scan was associated with the new provider + scan_id = attributes["scan_id"] + scan = Scan.objects.get(id=scan_id) + assert scan.provider_id == provider.id + + # Verify finding was created + finding = Finding.objects.get(uid=finding_uid) + assert finding.check_id == "csv_new_provider_check" + assert finding.severity == "high" + assert finding.status == "FAIL" + + +@pytest.mark.django_db +class TestScanImportViewTenantIsolation: + """Tests for tenant isolation. + + These tests verify that the scan import functionality properly enforces + tenant isolation (Row-Level Security) to ensure: + - Scans are created in the authenticated user's tenant + - Users cannot access or use providers from other tenants + - Findings and resources are isolated by tenant + - Cross-tenant data access is prevented + """ + + def test_import_creates_scan_in_correct_tenant( + self, authenticated_client, tenants_fixture + ): + """Test that import creates scan in the authenticated user's tenant.""" + url = reverse("scan-import") + tenant = tenants_fixture[0] + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Test finding for tenant isolation", + "metadata": {"event_code": "check_tenant_test"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Tenant isolation test", + "finding_info": { + "uid": finding_uid, + "title": "Tenant Test", + "desc": "Testing tenant isolation", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "111122223333"}, # Valid 12-digit AWS account ID + }, + "resources": [ + { + "uid": resource_uid, + "name": "tenant-test-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + # Verify successful response + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + # Verify scan was created in the correct tenant + scan_id = response_data["data"]["attributes"]["scan_id"] + scan = Scan.objects.get(id=scan_id) + assert str(scan.tenant_id) == str(tenant.id) + + # Verify finding was created in the correct tenant + finding = Finding.objects.get(uid=finding_uid) + assert str(finding.tenant_id) == str(tenant.id) + + # Verify resource was created in the correct tenant + resource = Resource.objects.get(uid=resource_uid) + assert str(resource.tenant_id) == str(tenant.id) + + # Verify provider was created in the correct tenant + provider_id = response_data["data"]["attributes"]["provider_id"] + provider = Provider.objects.get(id=provider_id) + assert str(provider.tenant_id) == str(tenant.id) + + def test_import_cannot_use_provider_from_another_tenant( + self, authenticated_client, tenants_fixture + ): + """Test that import cannot use a provider belonging to another tenant. + + This test verifies that when a user tries to import scan data with + a provider_id that belongs to a different tenant, the request is + rejected with a 422 error. + """ + from api.db_utils import rls_transaction + + url = reverse("scan-import") + + # Create a provider in a different tenant (tenant3 which the user is not a member of) + other_tenant = tenants_fixture[2] # tenant3 - user is not a member + + with rls_transaction(str(other_tenant.id)): + other_tenant_provider = Provider.objects.create( + provider="aws", + uid="999988887777", # Valid 12-digit AWS account ID + alias="Other Tenant Provider", + tenant_id=other_tenant.id, + ) + + # Try to import using the other tenant's provider + ocsf_data = [ + { + "message": "Test finding", + "metadata": {"event_code": "cross_tenant_check"}, + "severity": "Low", + "status_code": "PASS", + "finding_info": {"uid": f"finding-{uuid4()}", "title": "Test"}, + "cloud": { + "provider": "aws", + "account": {"uid": other_tenant_provider.uid}, + }, + "resources": [{"uid": f"resource-{uuid4()}", "name": "test"}], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps( + { + "data": ocsf_data, + "provider_id": str(other_tenant_provider.id), + } + ), + content_type="application/json", + ) + + # Should return 422 because the provider doesn't exist in user's tenant + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + + def test_import_does_not_resolve_provider_from_another_tenant( + self, authenticated_client, tenants_fixture + ): + """Test that auto-resolution does not find providers from other tenants. + + This test verifies that when importing scan data, the provider + auto-resolution only looks for providers within the user's tenant, + not across all tenants. + """ + from api.db_utils import rls_transaction + + url = reverse("scan-import") + tenant = tenants_fixture[0] + other_tenant = tenants_fixture[2] # tenant3 - user is not a member + + # Create a provider in another tenant with a specific UID + unique_uid = "888877776666" # Valid 12-digit AWS account ID + + with rls_transaction(str(other_tenant.id)): + Provider.objects.create( + provider="aws", + uid=unique_uid, + alias="Other Tenant Provider", + tenant_id=other_tenant.id, + ) + + # Count providers in user's tenant before import + initial_provider_count = Provider.objects.filter(tenant_id=tenant.id).count() + + # Import with the same UID - should create a NEW provider in user's tenant + # because the existing one is in a different tenant + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Test finding for cross-tenant resolution", + "metadata": {"event_code": "cross_tenant_resolution_check"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Testing cross-tenant provider resolution", + "finding_info": { + "uid": finding_uid, + "title": "Cross Tenant Resolution Test", + "desc": "Testing that providers from other tenants are not resolved", + }, + "cloud": { + "provider": "aws", + "account": {"uid": unique_uid, "name": "Test Account"}, + }, + "resources": [ + { + "uid": resource_uid, + "name": "cross-tenant-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + # Should succeed and create a new provider + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + # Verify a new provider was created (not the one from other tenant) + attributes = response_data["data"]["attributes"] + assert attributes["provider_created"] is True + + # Verify provider count increased in user's tenant + final_provider_count = Provider.objects.filter(tenant_id=tenant.id).count() + assert final_provider_count == initial_provider_count + 1 + + # Verify the new provider is in the user's tenant + provider_id = attributes["provider_id"] + provider = Provider.objects.get(id=provider_id) + assert str(provider.tenant_id) == str(tenant.id) + assert provider.uid == unique_uid + + def test_import_findings_isolated_by_tenant( + self, authenticated_client, tenants_fixture + ): + """Test that imported findings are only visible within the same tenant. + + This test verifies that findings created during import are properly + isolated and cannot be accessed from other tenants. We verify this + by checking that the finding is created with the correct tenant_id. + """ + url = reverse("scan-import") + tenant = tenants_fixture[0] + + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Isolated finding test", + "metadata": {"event_code": "isolation_check"}, + "severity": "High", + "status_code": "FAIL", + "status_detail": "Testing finding isolation", + "finding_info": { + "uid": finding_uid, + "title": "Isolation Test", + "desc": "Testing tenant isolation for findings", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "222233334444"}, # Valid 12-digit AWS account ID + }, + "resources": [ + { + "uid": resource_uid, + "name": "isolated-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + + # Verify finding exists and is associated with the correct tenant + finding = Finding.objects.get(uid=finding_uid) + assert str(finding.tenant_id) == str(tenant.id) + + # Verify the finding is NOT associated with any other tenant + other_tenant = tenants_fixture[2] + assert str(finding.tenant_id) != str(other_tenant.id) + + def test_import_resources_isolated_by_tenant( + self, authenticated_client, tenants_fixture + ): + """Test that imported resources are only visible within the same tenant. + + This test verifies that resources created during import are properly + isolated by checking that they are associated with the correct tenant_id. + """ + url = reverse("scan-import") + tenant = tenants_fixture[0] + + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Resource isolation test", + "metadata": {"event_code": "resource_isolation_check"}, + "severity": "Medium", + "status_code": "PASS", + "status_detail": "Testing resource isolation", + "finding_info": { + "uid": finding_uid, + "title": "Resource Isolation Test", + "desc": "Testing tenant isolation for resources", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "333344445555"}, # Valid 12-digit AWS account ID + }, + "resources": [ + { + "uid": resource_uid, + "name": "isolated-resource", + "region": "eu-west-1", + "group": {"name": "s3"}, + "type": "bucket", + } + ], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + + # Verify resource exists and is associated with the correct tenant + resource = Resource.objects.get(uid=resource_uid) + assert str(resource.tenant_id) == str(tenant.id) + + # Verify the resource is NOT associated with any other tenant + other_tenant = tenants_fixture[2] + assert str(resource.tenant_id) != str(other_tenant.id) + + def test_import_scans_isolated_by_tenant( + self, authenticated_client, tenants_fixture + ): + """Test that imported scans are only visible within the same tenant. + + This test verifies that scans created during import are properly + isolated by checking that they are associated with the correct tenant_id. + """ + url = reverse("scan-import") + tenant = tenants_fixture[0] + + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Scan isolation test", + "metadata": {"event_code": "scan_isolation_check"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Testing scan isolation", + "finding_info": { + "uid": finding_uid, + "title": "Scan Isolation Test", + "desc": "Testing tenant isolation for scans", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "444455556666"}, # Valid 12-digit AWS account ID + }, + "resources": [ + { + "uid": resource_uid, + "name": "scan-isolated-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + scan_id = response_data["data"]["attributes"]["scan_id"] + + # Verify scan exists and is associated with the correct tenant + scan = Scan.objects.get(id=scan_id) + assert str(scan.tenant_id) == str(tenant.id) + + # Verify the scan is NOT associated with any other tenant + other_tenant = tenants_fixture[2] + assert str(scan.tenant_id) != str(other_tenant.id) + + def test_import_providers_isolated_by_tenant( + self, authenticated_client, tenants_fixture + ): + """Test that providers created during import are isolated by tenant. + + This test verifies that providers created during import are properly + isolated by checking that they are associated with the correct tenant_id. + """ + url = reverse("scan-import") + tenant = tenants_fixture[0] + + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + unique_provider_uid = "555566667777" # Valid 12-digit AWS account ID + + ocsf_data = [ + { + "message": "Provider isolation test", + "metadata": {"event_code": "provider_isolation_check"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Testing provider isolation", + "finding_info": { + "uid": finding_uid, + "title": "Provider Isolation Test", + "desc": "Testing tenant isolation for providers", + }, + "cloud": { + "provider": "aws", + "account": { + "uid": unique_provider_uid, + "name": "Isolated Provider", + }, + }, + "resources": [ + { + "uid": resource_uid, + "name": "provider-isolated-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + provider_id = response_data["data"]["attributes"]["provider_id"] + + # Verify provider exists and is associated with the correct tenant + provider = Provider.objects.get(id=provider_id) + assert str(provider.tenant_id) == str(tenant.id) + assert provider.uid == unique_provider_uid + + # Verify the provider is NOT associated with any other tenant + other_tenant = tenants_fixture[2] + assert str(provider.tenant_id) != str(other_tenant.id) + + +@pytest.mark.django_db +class TestScanImportViewResponseFormat: + """Tests for response format.""" + + def test_successful_import_response_format(self, authenticated_client): + """Test that successful import returns correct response format.""" + url = reverse("scan-import") + + ocsf_data = [ + { + "message": "Test finding", + "metadata": {"event_code": "check_response_test"}, + "severity": "Low", + "status_code": "PASS", + "finding_info": {"uid": f"finding-{uuid4()}", "title": "Test"}, + "cloud": { + "provider": "aws", + "account": {"uid": f"response-test-{uuid4().hex[:8]}"}, + }, + "resources": [{"uid": f"resource-{uuid4()}", "name": "test"}], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + if response.status_code == status.HTTP_201_CREATED: + response_data = response.json() + assert "data" in response_data + assert "type" in response_data["data"] + assert response_data["data"]["type"] == "scan-imports" + assert "attributes" in response_data["data"] + + attributes = response_data["data"]["attributes"] + assert "scan_id" in attributes + assert "provider_id" in attributes + assert "findings_count" in attributes + assert "resources_count" in attributes + assert "status" in attributes + + def test_error_response_format(self, authenticated_client): + """Test that error responses have correct format.""" + url = reverse("scan-import") + + # Invalid data to trigger error + invalid_data = [{"invalid": "structure"}] + + response = authenticated_client.post( + url, + data=json.dumps({"data": invalid_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + response_data = response.json() + assert "errors" in response_data + assert isinstance(response_data["errors"], list) + assert len(response_data["errors"]) > 0 + + error = response_data["errors"][0] + assert "status" in error + assert "code" in error + assert "title" in error + assert "detail" in error + + +@pytest.mark.django_db +class TestScanImportViewEmptyFindings: + """Tests for empty findings handling.""" + + def test_empty_findings_array_returns_422(self, authenticated_client): + """Test that empty findings array returns 422.""" + url = reverse("scan-import") + + response = authenticated_client.post( + url, + data=json.dumps({"data": []}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + response_data = response.json() + assert "errors" in response_data + + +@pytest.mark.django_db +class TestScanImportViewMultipartFileUpload: + """Tests for file upload via multipart/form-data.""" + + def test_multipart_json_file_upload_creates_scan( + self, authenticated_client, tenants_fixture + ): + """Test that JSON file upload via multipart creates scan successfully.""" + url = reverse("scan-import") + tenant = tenants_fixture[0] + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Multipart JSON test finding", + "metadata": {"event_code": "multipart_json_check"}, + "severity": "Medium", + "status_code": "FAIL", + "status_detail": "Test status for multipart upload", + "finding_info": { + "uid": finding_uid, + "title": "Multipart JSON Test", + "desc": "Testing multipart JSON file upload", + }, + "cloud": { + "provider": "aws", + "account": { + "uid": f"multipart-json-{uuid4().hex[:8]}", + "name": "Test Account", + }, + }, + "resources": [ + { + "uid": resource_uid, + "name": "multipart-test-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + file_content = json.dumps(ocsf_data).encode("utf-8") + file_obj = io.BytesIO(file_content) + file_obj.name = "prowler-output.json" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + assert "data" in response_data + assert response_data["data"]["type"] == "scan-imports" + attributes = response_data["data"]["attributes"] + assert attributes["findings_count"] == 1 + assert attributes["resources_count"] == 1 + assert attributes["status"] == "completed" + + # Verify finding was created + finding = Finding.objects.get(uid=finding_uid) + assert finding.check_id == "multipart_json_check" + assert str(finding.tenant_id) == str(tenant.id) + + def test_multipart_csv_file_upload_creates_scan( + self, authenticated_client, tenants_fixture + ): + """Test that CSV file upload via multipart creates scan successfully.""" + url = reverse("scan-import") + tenant = tenants_fixture[0] + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + csv_content = f"""FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;SEVERITY;RESOURCE_UID;RESOURCE_NAME;REGION;SERVICE_NAME;RESOURCE_TYPE;STATUS_EXTENDED +{finding_uid};aws;multipart_csv_check;PASS;multipart-csv-123;low;{resource_uid};multipart-csv-resource;us-west-2;s3;bucket;Test status for multipart CSV upload""" + + file_obj = io.BytesIO(csv_content.encode("utf-8")) + file_obj.name = "prowler-output.csv" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + assert "data" in response_data + assert response_data["data"]["type"] == "scan-imports" + attributes = response_data["data"]["attributes"] + assert attributes["findings_count"] == 1 + assert attributes["resources_count"] == 1 + assert attributes["status"] == "completed" + + # Verify finding was created + finding = Finding.objects.get(uid=finding_uid) + assert finding.check_id == "multipart_csv_check" + assert str(finding.tenant_id) == str(tenant.id) + + def test_multipart_file_upload_with_provider_id( + self, authenticated_client, providers_fixture + ): + """Test multipart file upload with explicit provider_id parameter.""" + url = reverse("scan-import") + provider = providers_fixture[0] + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Test with provider_id", + "metadata": {"event_code": "provider_id_check"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Test with explicit provider", + "finding_info": { + "uid": finding_uid, + "title": "Provider ID Test", + "desc": "Testing multipart with provider_id", + }, + "cloud": { + "provider": provider.provider, + "account": {"uid": provider.uid, "name": "Test Account"}, + }, + "resources": [ + { + "uid": resource_uid, + "name": "provider-test-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + file_content = json.dumps(ocsf_data).encode("utf-8") + file_obj = io.BytesIO(file_content) + file_obj.name = "prowler-output.json" + + response = authenticated_client.post( + url, + data={ + "file": file_obj, + "provider_id": str(provider.id), + }, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + attributes = response_data["data"]["attributes"] + assert attributes["provider_id"] == str(provider.id) + + def test_multipart_file_upload_with_create_provider_false( + self, authenticated_client, providers_fixture + ): + """Test multipart file upload with create_provider=False uses existing provider.""" + url = reverse("scan-import") + provider = providers_fixture[0] + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Test with create_provider=false", + "metadata": {"event_code": "no_create_provider_check"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Test without creating provider", + "finding_info": { + "uid": finding_uid, + "title": "No Create Provider Test", + "desc": "Testing multipart with create_provider=false", + }, + "cloud": { + "provider": provider.provider, + "account": {"uid": provider.uid, "name": "Test Account"}, + }, + "resources": [ + { + "uid": resource_uid, + "name": "no-create-provider-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + file_content = json.dumps(ocsf_data).encode("utf-8") + file_obj = io.BytesIO(file_content) + file_obj.name = "prowler-output.json" + + response = authenticated_client.post( + url, + data={ + "file": file_obj, + "create_provider": "false", + }, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + attributes = response_data["data"]["attributes"] + assert attributes["provider_id"] == str(provider.id) + assert attributes["provider_created"] is False + + def test_multipart_file_upload_empty_file_returns_422(self, authenticated_client): + """Test that empty file upload returns 422.""" + url = reverse("scan-import") + + file_obj = io.BytesIO(b"") + file_obj.name = "empty.json" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + + def test_multipart_file_upload_invalid_json_returns_422(self, authenticated_client): + """Test that invalid JSON file returns 422.""" + url = reverse("scan-import") + + file_content = b"{ invalid json content" + file_obj = io.BytesIO(file_content) + file_obj.name = "invalid.json" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + + def test_multipart_file_upload_with_different_extensions( + self, authenticated_client, tenants_fixture + ): + """Test multipart file upload handles different file extensions correctly.""" + url = reverse("scan-import") + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Extension test finding", + "metadata": {"event_code": "extension_check"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Test with .ocsf extension", + "finding_info": { + "uid": finding_uid, + "title": "Extension Test", + "desc": "Testing file extension handling", + }, + "cloud": { + "provider": "aws", + "account": { + "uid": f"ext-test-{uuid4().hex[:8]}", + "name": "Test Account", + }, + }, + "resources": [ + { + "uid": resource_uid, + "name": "extension-test-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + # Test with .ocsf extension (should be treated as JSON) + file_content = json.dumps(ocsf_data).encode("utf-8") + file_obj = io.BytesIO(file_content) + file_obj.name = "prowler-output.ocsf.json" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + + def test_multipart_file_upload_large_file_within_limit( + self, authenticated_client, tenants_fixture + ): + """Test that file within size limit is accepted.""" + url = reverse("scan-import") + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + # Create a valid OCSF data structure + ocsf_data = [ + { + "message": "Large file test finding", + "metadata": {"event_code": "large_file_check"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Test with larger file", + "finding_info": { + "uid": finding_uid, + "title": "Large File Test", + "desc": "Testing file size handling", + }, + "cloud": { + "provider": "aws", + "account": { + "uid": f"large-file-{uuid4().hex[:8]}", + "name": "Test Account", + }, + }, + "resources": [ + { + "uid": resource_uid, + "name": "large-file-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + file_content = json.dumps(ocsf_data).encode("utf-8") + file_obj = io.BytesIO(file_content) + file_obj.name = "prowler-output.json" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + + def test_multipart_file_upload_preserves_unicode_content( + self, authenticated_client, tenants_fixture + ): + """Test that multipart file upload preserves unicode characters.""" + url = reverse("scan-import") + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Unicode test: 日本語 中文 한국어 émojis 🔒🛡️", + "metadata": {"event_code": "unicode_check"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Test with unicode: äöü ñ", + "finding_info": { + "uid": finding_uid, + "title": "Unicode Test: Ümlauts", + "desc": "Testing unicode: café résumé naïve", + }, + "cloud": { + "provider": "aws", + "account": { + "uid": f"unicode-{uuid4().hex[:8]}", + "name": "Test Account", + }, + }, + "resources": [ + { + "uid": resource_uid, + "name": "unicode-resource-日本語", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + file_content = json.dumps(ocsf_data, ensure_ascii=False).encode("utf-8") + file_obj = io.BytesIO(file_content) + file_obj.name = "prowler-output.json" + + response = authenticated_client.post( + url, + data={"file": file_obj}, + format="multipart", + ) + + assert response.status_code == status.HTTP_201_CREATED + + # Verify unicode was preserved + finding = Finding.objects.get(uid=finding_uid) + assert ( + "日本語" in finding.impact_extended or "unicode" in finding.check_id.lower() + ) + + +@pytest.mark.django_db +class TestScanImportViewInlineJSON: + """Tests for inline JSON via request body. + + These tests verify that the scan import endpoint correctly handles + inline JSON data sent directly in the request body (as opposed to + file uploads). This is the alternative input method where OCSF JSON + data is provided via the 'data' field in the request body. + """ + + def test_inline_json_creates_scan_and_findings( + self, authenticated_client, tenants_fixture + ): + """Test that inline JSON data creates scan, findings, and resources.""" + url = reverse("scan-import") + tenant = tenants_fixture[0] + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Inline JSON test finding", + "metadata": {"event_code": "inline_json_check"}, + "severity": "High", + "status_code": "FAIL", + "status_detail": "Test status for inline JSON import", + "finding_info": { + "uid": finding_uid, + "title": "Inline JSON Test", + "desc": "Testing inline JSON import functionality", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "111122223334", "name": "Test Account"}, + }, + "resources": [ + { + "uid": resource_uid, + "name": "inline-json-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + # Send inline JSON via request body + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + # Verify successful response + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + # Verify response structure + assert "data" in response_data + assert response_data["data"]["type"] == "scan-imports" + assert "attributes" in response_data["data"] + + attributes = response_data["data"]["attributes"] + assert "scan_id" in attributes + assert "provider_id" in attributes + assert attributes["findings_count"] == 1 + assert attributes["resources_count"] == 1 + assert attributes["status"] == "completed" + + # Verify scan was created in database + scan_id = attributes["scan_id"] + scan = Scan.objects.get(id=scan_id) + assert str(scan.tenant_id) == str(tenant.id) + assert scan.trigger == Scan.TriggerChoices.IMPORTED + assert scan.state == StateChoices.COMPLETED + + # Verify finding was created + finding = Finding.objects.get(uid=finding_uid) + assert finding.check_id == "inline_json_check" + assert finding.severity == "high" + assert finding.status == "FAIL" + assert str(finding.tenant_id) == str(tenant.id) + + # Verify resource was created + resource = Resource.objects.get(uid=resource_uid) + assert resource.name == "inline-json-resource" + assert str(resource.tenant_id) == str(tenant.id) + + def test_inline_json_with_multiple_findings( + self, authenticated_client, tenants_fixture + ): + """Test inline JSON import with multiple findings creates all records.""" + url = reverse("scan-import") + _tenant = tenants_fixture[0] # noqa: F841 - used for fixture setup + + finding_uid_1 = str(uuid4()) + finding_uid_2 = str(uuid4()) + finding_uid_3 = str(uuid4()) + resource_uid_1 = str(uuid4()) + resource_uid_2 = str(uuid4()) + resource_uid_3 = str(uuid4()) + + ocsf_data = [ + { + "message": "First inline finding", + "metadata": {"event_code": "inline_check_1"}, + "severity": "High", + "status_code": "FAIL", + "status_detail": "First finding detail", + "finding_info": { + "uid": finding_uid_1, + "title": "Inline Check 1", + "desc": "First inline check", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "222233334445", "name": "Test Account"}, + }, + "resources": [ + { + "uid": resource_uid_1, + "name": "inline-resource-1", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + }, + { + "message": "Second inline finding", + "metadata": {"event_code": "inline_check_2"}, + "severity": "Medium", + "status_code": "PASS", + "status_detail": "Second finding detail", + "finding_info": { + "uid": finding_uid_2, + "title": "Inline Check 2", + "desc": "Second inline check", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "222233334445", "name": "Test Account"}, + }, + "resources": [ + { + "uid": resource_uid_2, + "name": "inline-resource-2", + "region": "eu-west-1", + "group": {"name": "s3"}, + "type": "bucket", + } + ], + }, + { + "message": "Third inline finding", + "metadata": {"event_code": "inline_check_3"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Third finding detail", + "finding_info": { + "uid": finding_uid_3, + "title": "Inline Check 3", + "desc": "Third inline check", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "222233334445", "name": "Test Account"}, + }, + "resources": [ + { + "uid": resource_uid_3, + "name": "inline-resource-3", + "region": "ap-southeast-1", + "group": {"name": "iam"}, + "type": "user", + } + ], + }, + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + attributes = response_data["data"]["attributes"] + assert attributes["findings_count"] == 3 + assert attributes["resources_count"] == 3 + + # Verify all findings were created + assert Finding.objects.filter(uid=finding_uid_1).exists() + assert Finding.objects.filter(uid=finding_uid_2).exists() + assert Finding.objects.filter(uid=finding_uid_3).exists() + + # Verify all resources were created + assert Resource.objects.filter(uid=resource_uid_1).exists() + assert Resource.objects.filter(uid=resource_uid_2).exists() + assert Resource.objects.filter(uid=resource_uid_3).exists() + + def test_inline_json_with_provider_id( + self, authenticated_client, providers_fixture + ): + """Test inline JSON import with explicit provider_id parameter.""" + url = reverse("scan-import") + provider = providers_fixture[0] + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Test with provider_id via inline JSON", + "metadata": {"event_code": "inline_provider_id_check"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Test with explicit provider via inline JSON", + "finding_info": { + "uid": finding_uid, + "title": "Inline Provider ID Test", + "desc": "Testing inline JSON with provider_id", + }, + "cloud": { + "provider": provider.provider, + "account": {"uid": provider.uid, "name": "Test Account"}, + }, + "resources": [ + { + "uid": resource_uid, + "name": "inline-provider-test-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps( + { + "data": ocsf_data, + "provider_id": str(provider.id), + } + ), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + attributes = response_data["data"]["attributes"] + assert attributes["provider_id"] == str(provider.id) + assert attributes["provider_created"] is False + + def test_inline_json_with_create_provider_false( + self, authenticated_client, providers_fixture + ): + """Test inline JSON import with create_provider=False uses existing provider.""" + url = reverse("scan-import") + provider = providers_fixture[0] + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Test with create_provider=false via inline JSON", + "metadata": {"event_code": "inline_no_create_provider_check"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Test without creating provider via inline JSON", + "finding_info": { + "uid": finding_uid, + "title": "Inline No Create Provider Test", + "desc": "Testing inline JSON with create_provider=false", + }, + "cloud": { + "provider": provider.provider, + "account": {"uid": provider.uid, "name": "Test Account"}, + }, + "resources": [ + { + "uid": resource_uid, + "name": "inline-no-create-provider-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps( + { + "data": ocsf_data, + "create_provider": False, + } + ), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + attributes = response_data["data"]["attributes"] + assert attributes["provider_id"] == str(provider.id) + assert attributes["provider_created"] is False + + def test_inline_json_creates_new_provider( + self, authenticated_client, tenants_fixture + ): + """Test inline JSON import creates new provider when no match exists.""" + url = reverse("scan-import") + tenant = tenants_fixture[0] + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + unique_account_uid = "333344445556" + + initial_provider_count = Provider.objects.filter(tenant_id=tenant.id).count() + + ocsf_data = [ + { + "message": "Test new provider creation via inline JSON", + "metadata": {"event_code": "inline_new_provider_check"}, + "severity": "Medium", + "status_code": "FAIL", + "status_detail": "Test creating new provider via inline JSON", + "finding_info": { + "uid": finding_uid, + "title": "Inline New Provider Test", + "desc": "Testing inline JSON creates new provider", + }, + "cloud": { + "provider": "aws", + "account": { + "uid": unique_account_uid, + "name": "New Inline Provider", + }, + }, + "resources": [ + { + "uid": resource_uid, + "name": "inline-new-provider-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + attributes = response_data["data"]["attributes"] + assert attributes["provider_created"] is True + + # Verify new provider was created + final_provider_count = Provider.objects.filter(tenant_id=tenant.id).count() + assert final_provider_count == initial_provider_count + 1 + + # Verify provider has correct attributes + provider_id = attributes["provider_id"] + provider = Provider.objects.get(id=provider_id) + assert provider.provider == "aws" + assert provider.uid == unique_account_uid + assert provider.alias == "New Inline Provider" + + def test_inline_json_with_compliance_data( + self, authenticated_client, tenants_fixture + ): + """Test inline JSON import preserves compliance mapping data.""" + url = reverse("scan-import") + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Inline JSON compliance test finding", + "metadata": {"event_code": "inline_compliance_check"}, + "severity": "High", + "status_code": "FAIL", + "status_detail": "Inline compliance check failed", + "finding_info": { + "uid": finding_uid, + "title": "Inline Compliance Check", + "desc": "Tests compliance mapping via inline JSON", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "444455556667", "name": "Compliance Account"}, + }, + "resources": [ + { + "uid": resource_uid, + "name": "inline-compliance-resource", + "region": "us-east-1", + "group": {"name": "iam"}, + "type": "user", + } + ], + "unmapped": { + "compliance": { + "CIS-AWS-2.0": ["1.1", "1.2", "1.3"], + "PCI-DSS-4.0": ["3.4", "3.5"], + "HIPAA": ["164.312(a)(1)"], + }, + }, + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + + # Verify compliance data was preserved + finding = Finding.objects.get(uid=finding_uid) + assert "CIS-AWS-2.0" in finding.compliance + assert finding.compliance["CIS-AWS-2.0"] == ["1.1", "1.2", "1.3"] + assert "PCI-DSS-4.0" in finding.compliance + assert "HIPAA" in finding.compliance + + def test_inline_json_preserves_unicode_content( + self, authenticated_client, tenants_fixture + ): + """Test that inline JSON import preserves unicode characters.""" + url = reverse("scan-import") + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Inline Unicode test: 日本語 中文 한국어 émojis 🔒🛡️", + "metadata": {"event_code": "inline_unicode_check"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Inline test with unicode: äöü ñ", + "finding_info": { + "uid": finding_uid, + "title": "Inline Unicode Test: Ümlauts", + "desc": "Testing inline unicode: café résumé naïve", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "555566667778", "name": "Test Account"}, + }, + "resources": [ + { + "uid": resource_uid, + "name": "inline-unicode-resource-日本語", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}, ensure_ascii=False), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + + # Verify unicode was preserved + finding = Finding.objects.get(uid=finding_uid) + assert ( + "日本語" in finding.impact_extended or "unicode" in finding.check_id.lower() + ) + + def test_inline_json_empty_array_returns_error(self, authenticated_client): + """Test that empty inline JSON array returns an error.""" + url = reverse("scan-import") + + response = authenticated_client.post( + url, + data=json.dumps({"data": []}), + content_type="application/json", + ) + + # Empty array should return either 400 (validation error) or 422 (processing error) + assert response.status_code in [ + status.HTTP_400_BAD_REQUEST, + status.HTTP_422_UNPROCESSABLE_ENTITY, + ] + response_data = response.json() + assert "errors" in response_data + + def test_inline_json_invalid_structure_returns_422(self, authenticated_client): + """Test that invalid inline JSON structure returns 422.""" + url = reverse("scan-import") + + # Invalid structure - missing required fields + invalid_data = [{"invalid": "structure", "no_required_fields": True}] + + response = authenticated_client.post( + url, + data=json.dumps({"data": invalid_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + response_data = response.json() + assert "errors" in response_data + + def test_inline_json_non_array_returns_422(self, authenticated_client): + """Test that non-array inline JSON returns 422.""" + url = reverse("scan-import") + + # Single object instead of array + non_array_data = { + "message": "Single object", + "metadata": {"event_code": "check_1"}, + } + + response = authenticated_client.post( + url, + data=json.dumps({"data": non_array_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_422_UNPROCESSABLE_ENTITY + response_data = response.json() + assert "errors" in response_data + + def test_inline_json_with_remediation_data( + self, authenticated_client, tenants_fixture + ): + """Test inline JSON import preserves remediation data.""" + url = reverse("scan-import") + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Inline JSON remediation test finding", + "metadata": {"event_code": "inline_remediation_check"}, + "severity": "High", + "status_code": "FAIL", + "status_detail": "Inline remediation check failed", + "finding_info": { + "uid": finding_uid, + "title": "Inline Remediation Check", + "desc": "Tests remediation data via inline JSON", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "666677778889", "name": "Test Account"}, + }, + "resources": [ + { + "uid": resource_uid, + "name": "inline-remediation-resource", + "region": "us-east-1", + "group": {"name": "s3"}, + "type": "bucket", + } + ], + "risk_details": "This is a high-risk finding that needs immediate attention", + "remediation": { + "desc": "Apply the following remediation steps to fix this issue", + "references": [ + "https://docs.aws.amazon.com/security/best-practices", + "https://prowler.com/remediation/s3", + ], + }, + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + + # Verify remediation data was preserved + finding = Finding.objects.get(uid=finding_uid) + assert ( + finding.check_metadata.get("risk") + == "This is a high-risk finding that needs immediate attention" + ) + assert ( + "remediation" in finding.check_metadata + or finding.check_metadata.get("remediation") is not None + ) + + def test_inline_json_tenant_isolation(self, authenticated_client, tenants_fixture): + """Test that inline JSON import respects tenant isolation.""" + url = reverse("scan-import") + tenant = tenants_fixture[0] + finding_uid = str(uuid4()) + resource_uid = str(uuid4()) + + ocsf_data = [ + { + "message": "Inline JSON tenant isolation test", + "metadata": {"event_code": "inline_tenant_isolation_check"}, + "severity": "Low", + "status_code": "PASS", + "status_detail": "Testing tenant isolation via inline JSON", + "finding_info": { + "uid": finding_uid, + "title": "Inline Tenant Isolation Test", + "desc": "Testing tenant isolation for inline JSON import", + }, + "cloud": { + "provider": "aws", + "account": {"uid": "777788889990", "name": "Test Account"}, + }, + "resources": [ + { + "uid": resource_uid, + "name": "inline-tenant-resource", + "region": "us-east-1", + "group": {"name": "ec2"}, + "type": "instance", + } + ], + } + ] + + response = authenticated_client.post( + url, + data=json.dumps({"data": ocsf_data}), + content_type="application/json", + ) + + assert response.status_code == status.HTTP_201_CREATED + response_data = response.json() + + # Verify all created objects belong to the correct tenant + scan_id = response_data["data"]["attributes"]["scan_id"] + scan = Scan.objects.get(id=scan_id) + assert str(scan.tenant_id) == str(tenant.id) + + finding = Finding.objects.get(uid=finding_uid) + assert str(finding.tenant_id) == str(tenant.id) + + resource = Resource.objects.get(uid=resource_uid) + assert str(resource.tenant_id) == str(tenant.id) + + provider_id = response_data["data"]["attributes"]["provider_id"] + provider = Provider.objects.get(id=provider_id) + assert str(provider.tenant_id) == str(tenant.id) diff --git a/api/src/backend/api/v1/serializers.py b/api/src/backend/api/v1/serializers.py index 25ca73d5ff..ea00dbf5c1 100644 --- a/api/src/backend/api/v1/serializers.py +++ b/api/src/backend/api/v1/serializers.py @@ -3834,3 +3834,126 @@ def get_id(self, obj): if getattr(obj, "_aggregated", False): return "n/a" return str(obj.id) + + +# Scan Import + + +class ScanImportSerializer(BaseSerializerV1): + """ + Serializer for scan import requests. + + Accepts either a file upload or inline JSON data containing Prowler + scan results in JSON/OCSF or CSV format. + """ + + # Maximum file size: 1GB (1,073,741,824 bytes) + # This limit accommodates large enterprise scan imports that may contain + # thousands of findings. Must match the Django settings: + # - DATA_UPLOAD_MAX_MEMORY_SIZE + # - FILE_UPLOAD_MAX_MEMORY_SIZE + # See: api/docs/configuration.md for related configuration details. + MAX_FILE_SIZE = 1024 * 1024 * 1024 + + file = serializers.FileField( + required=False, + help_text="Prowler scan output file (JSON/OCSF or CSV format).", + ) + data = serializers.JSONField( + required=False, + help_text="Inline JSON/OCSF scan data (alternative to file upload).", + ) + provider_id = serializers.UUIDField( + required=False, + help_text="UUID of existing provider to associate with the import. " + "If not provided, provider will be resolved from scan data.", + ) + create_provider = serializers.BooleanField( + default=True, + help_text="If True, create a new provider if one is not found. Default is True.", + ) + + class JSONAPIMeta: + resource_name = "scan-imports" + + def validate(self, attrs): + """ + Validate that either file or data is provided, but not both. + """ + file = attrs.get("file") + data = attrs.get("data") + + if not file and not data: + raise ValidationError( + {"detail": "Either 'file' or 'data' must be provided."} + ) + + if file and data: + raise ValidationError( + {"detail": "Provide either 'file' or 'data', not both."} + ) + + # Validate file size if file is provided + if file: + if file.size > self.MAX_FILE_SIZE: + raise ValidationError( + { + "file": f"File size exceeds maximum of " + f"{self.MAX_FILE_SIZE // (1024 * 1024)}MB." + } + ) + + return attrs + + def get_file_content(self) -> bytes: + """ + Get the file content from either file upload or inline data. + + Returns: + bytes: The raw file content. + """ + file = self.validated_data.get("file") + data = self.validated_data.get("data") + + if file: + return file.read() + elif data: + # Convert JSON data back to bytes + return json.dumps(data).encode("utf-8") + return b"" + + +class ScanImportResponseSerializer(BaseSerializerV1): + """ + Response serializer for scan import results. + + Returns details about the imported scan including counts of findings + and resources, the associated provider, and any errors encountered. + """ + + scan_id = serializers.UUIDField( + help_text="UUID of the created scan.", + ) + provider_id = serializers.UUIDField( + help_text="UUID of the associated provider.", + ) + findings_count = serializers.IntegerField( + help_text="Number of findings imported.", + ) + resources_count = serializers.IntegerField( + help_text="Number of unique resources imported.", + ) + status = serializers.CharField( + help_text="Status of the import operation (e.g., 'completed').", + ) + provider_created = serializers.BooleanField( + help_text="Whether a new provider was created during import.", + ) + errors = serializers.ListField( + child=serializers.DictField(), + required=False, + help_text="List of error details if any issues occurred during import.", + ) + + class JSONAPIMeta: + resource_name = "scan-imports" diff --git a/api/src/backend/api/v1/urls.py b/api/src/backend/api/v1/urls.py index d879d1476b..c9bfee6d85 100644 --- a/api/src/backend/api/v1/urls.py +++ b/api/src/backend/api/v1/urls.py @@ -34,6 +34,7 @@ SAMLConfigurationViewSet, SAMLInitiateAPIView, SAMLTokenValidateView, + ScanImportView, ScanViewSet, ScheduleViewSet, SchemaView, @@ -191,6 +192,12 @@ path("tokens/saml", SAMLTokenValidateView.as_view(), name="token-saml"), path("tokens/google", GoogleSocialLoginView.as_view(), name="token-google"), path("tokens/github", GithubSocialLoginView.as_view(), name="token-github"), + # Scan import endpoint - must be before router.urls to take precedence over /scans/ + path( + "scans/import", + ScanImportView.as_view({"post": "create"}), + name="scan-import", + ), path("", include(router.urls)), path("", include(tenants_router.urls)), path("", include(users_router.urls)), diff --git a/api/src/backend/api/v1/views.py b/api/src/backend/api/v1/views.py index 54a33e28fa..700adbdd66 100644 --- a/api/src/backend/api/v1/views.py +++ b/api/src/backend/api/v1/views.py @@ -53,6 +53,7 @@ from drf_spectacular.settings import spectacular_settings from drf_spectacular.types import OpenApiTypes from drf_spectacular.utils import ( + OpenApiExample, OpenApiParameter, OpenApiResponse, extend_schema, @@ -69,6 +70,7 @@ ValidationError, ) from rest_framework.generics import GenericAPIView, get_object_or_404 +from rest_framework.parsers import JSONParser, MultiPartParser from rest_framework.permissions import SAFE_METHODS from rest_framework_json_api.views import RelationshipView, Response from rest_framework_simplejwt.exceptions import InvalidToken, TokenError @@ -170,6 +172,7 @@ from api.pagination import ComplianceOverviewPagination from api.rbac.permissions import Permissions, get_providers, get_role from api.rls import Tenant +from api.services.scan_import import ScanImportError, ScanImportService from api.utils import ( CustomOAuth2Client, get_findings_metadata_no_aggregations, @@ -247,6 +250,8 @@ TenantApiKeyCreateSerializer, TenantApiKeySerializer, TenantApiKeyUpdateSerializer, + ScanImportResponseSerializer, + ScanImportSerializer, TenantSerializer, ThreatScoreSnapshotSerializer, TokenRefreshSerializer, @@ -5764,3 +5769,431 @@ def create(self, request, *args, **kwargs): data=serializer.data, status=status.HTTP_201_CREATED, ) + + +@extend_schema( + tags=["Scan"], + summary="Import scan results", + description=( + "Import Prowler CLI scan results from JSON/OCSF or CSV format. " + "Supports file upload via multipart/form-data or inline JSON data. " + "Creates a new scan record with trigger type 'imported' and bulk creates " + "all findings and resources from the imported data." + ), + request=ScanImportSerializer, + responses={ + 201: OpenApiResponse( + response=ScanImportResponseSerializer, + description="Scan imported successfully", + examples=[ + OpenApiExample( + name="Successful Import", + summary="Scan imported successfully with findings and resources", + value={ + "data": { + "type": "scan-imports", + "id": "550e8400-e29b-41d4-a716-446655440001", + "attributes": { + "scan_id": "550e8400-e29b-41d4-a716-446655440001", + "provider_id": "550e8400-e29b-41d4-a716-446655440000", + "findings_count": 1523, + "resources_count": 245, + "status": "completed", + "provider_created": False, + }, + } + }, + ), + OpenApiExample( + name="Import with New Provider", + summary="Scan imported with a newly created provider", + value={ + "data": { + "type": "scan-imports", + "id": "660e8400-e29b-41d4-a716-446655440002", + "attributes": { + "scan_id": "660e8400-e29b-41d4-a716-446655440002", + "provider_id": "770e8400-e29b-41d4-a716-446655440003", + "findings_count": 856, + "resources_count": 120, + "status": "completed", + "provider_created": True, + }, + } + }, + ), + ], + ), + 400: OpenApiResponse( + description="Invalid request - missing file/data or invalid format", + examples=[ + OpenApiExample( + name="Missing Input", + summary="Neither file nor data provided", + value={ + "errors": [ + { + "status": "400", + "code": "validation_error", + "title": "Invalid request", + "detail": "Either 'file' or 'data' must be provided.", + } + ] + }, + ), + ], + ), + 401: OpenApiResponse(description="Authentication required"), + 403: OpenApiResponse(description="Permission denied - requires MANAGE_SCANS"), + 413: OpenApiResponse( + description="File size exceeds maximum of 1GB", + examples=[ + OpenApiExample( + name="File Too Large", + summary="Uploaded file exceeds size limit", + value={ + "errors": [ + { + "status": "413", + "code": "file_too_large", + "title": "File too large", + "detail": "File size exceeds maximum of 1GB.", + } + ] + }, + ), + ], + ), + 422: OpenApiResponse( + description="Validation error - invalid file format or schema", + examples=[ + OpenApiExample( + name="Invalid OCSF Format", + summary="JSON does not match OCSF schema", + value={ + "errors": [ + { + "status": "422", + "code": "invalid_ocsf_format", + "title": "Import failed", + "detail": "Missing required field 'metadata.event_code' at index 5", + "source": { + "pointer": "/data/findings/5/metadata/event_code" + }, + } + ] + }, + ), + OpenApiExample( + name="Invalid CSV Format", + summary="CSV missing required columns", + value={ + "errors": [ + { + "status": "422", + "code": "invalid_csv_format", + "title": "Import failed", + "detail": "Missing required CSV columns: CHECK_ID, STATUS", + } + ] + }, + ), + OpenApiExample( + name="Provider Not Found", + summary="Specified provider does not exist", + value={ + "errors": [ + { + "status": "422", + "code": "provider_not_found", + "title": "Import failed", + "detail": "Provider with ID 550e8400-e29b-41d4-a716-446655440000 not found", + } + ] + }, + ), + ], + ), + }, + examples=[ + OpenApiExample( + name="JSON/OCSF File Upload", + summary="Import OCSF JSON file via multipart upload", + description=( + "Upload a Prowler JSON/OCSF output file. The file should contain " + "an array of OCSF-formatted findings from a Prowler CLI scan." + ), + value={ + "file": "(binary file content)", + "provider_id": "550e8400-e29b-41d4-a716-446655440000", + "create_provider": True, + }, + request_only=True, + ), + OpenApiExample( + name="Inline OCSF JSON Data", + summary="Import OCSF data directly in request body", + description=( + "Send OCSF JSON data directly in the request body instead of " + "uploading a file. Useful for programmatic imports." + ), + value={ + "data": [ + { + "metadata": { + "event_code": "iam_user_mfa_enabled", + "product": {"name": "Prowler", "version": "4.0.0"}, + }, + "finding_info": { + "uid": "prowler-aws-iam_user_mfa_enabled-123456789012-us-east-1-user123", + "title": "IAM User MFA Enabled", + "desc": "Ensure MFA is enabled for all IAM users.", + }, + "severity": "high", + "status_code": "FAIL", + "status_detail": "MFA is not enabled for IAM user 'user123'", + "message": "IAM user user123 does not have MFA enabled", + "cloud": { + "provider": "aws", + "account": { + "uid": "123456789012", + "name": "production-account", + }, + "region": "us-east-1", + }, + "resources": [ + { + "uid": "arn:aws:iam::123456789012:user/user123", + "name": "user123", + "type": "AwsIamUser", + "region": "us-east-1", + "group": {"name": "iam"}, + } + ], + "remediation": { + "desc": "Enable MFA for the IAM user.", + "references": [ + "https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_mfa.html" + ], + }, + "unmapped": { + "compliance": { + "CIS-AWS-1.4": ["1.10"], + "AWS-Foundational-Security": ["IAM.6"], + } + }, + } + ], + "create_provider": True, + }, + request_only=True, + ), + OpenApiExample( + name="CSV File Upload", + summary="Import Prowler CSV output file", + description=( + "Upload a Prowler CSV output file. The CSV should use semicolon " + "delimiters (Prowler default) and include standard Prowler columns." + ), + value={ + "file": "(binary CSV file content)", + "create_provider": True, + }, + request_only=True, + ), + ], +) +class ScanImportView(BaseRLSViewSet): + """ + ViewSet for importing Prowler CLI scan results. + + Supports JSON/OCSF and CSV formats via file upload or inline JSON data. + Creates a new scan with trigger type 'imported' and bulk creates all + findings and resources from the imported data. + + Permissions: + Requires MANAGE_SCANS permission. + + Request formats: + - multipart/form-data with 'file' field containing JSON or CSV file + - application/json with 'data' field containing inline OCSF JSON + + Optional parameters: + - provider_id: UUID of existing provider to associate with import + - create_provider: If True (default), create provider if not found + """ + + serializer_class = ScanImportSerializer + required_permissions = [Permissions.MANAGE_SCANS] + http_method_names = ["post"] + parser_classes = [MultiPartParser, JSONParser] + + def get_queryset(self): + """Return empty queryset - this view only supports POST.""" + return Scan.objects.none() + + def create(self, request, *args, **kwargs): + """ + Import scan results from file or inline JSON data. + + Handles both file upload (multipart/form-data) and inline JSON + (application/json) requests. Validates input, detects format, + parses content, and creates scan with findings and resources. + + Returns: + Response with scan import results including scan_id, counts, + and provider information. + """ + tenant_id = str(request.tenant_id) + logger.info( + f"Scan import request received for tenant {tenant_id}", + extra={ + "tenant_id": tenant_id, + "content_type": request.content_type, + "user_id": str(request.user.id) if request.user else None, + }, + ) + + # Validate request data + serializer = self.get_serializer(data=request.data) + try: + serializer.is_valid(raise_exception=True) + except ValidationError as e: + logger.warning( + f"Scan import validation failed for tenant {tenant_id}: {e.detail}", + extra={"tenant_id": tenant_id, "validation_errors": str(e.detail)}, + ) + raise + + # Get file content from serializer + file_content = serializer.get_file_content() + file_size = len(file_content) + + # Determine input source for logging + input_source = ( + "file" if serializer.validated_data.get("file") else "inline_json" + ) + logger.debug( + f"Processing scan import: source={input_source}, size={file_size} bytes", + extra={ + "tenant_id": tenant_id, + "input_source": input_source, + "file_size": file_size, + }, + ) + + # Get optional parameters + provider_id = serializer.validated_data.get("provider_id") + create_provider = serializer.validated_data.get("create_provider", True) + + if provider_id: + logger.debug( + f"Import will use specified provider: {provider_id}", + extra={"tenant_id": tenant_id, "provider_id": str(provider_id)}, + ) + + # Initialize import service + service = ScanImportService(tenant_id=tenant_id) + + try: + # Perform import + result = service.import_scan( + file_content=file_content, + provider_id=provider_id, + create_provider=create_provider, + ) + + # Build response data + response_data = { + "type": "scan-imports", + "id": str(result.scan_id), + "attributes": { + "scan_id": str(result.scan_id), + "provider_id": str(result.provider_id), + "findings_count": result.findings_count, + "resources_count": result.resources_count, + "status": "completed", + "provider_created": result.provider_created, + }, + } + + if result.warnings: + response_data["attributes"]["warnings"] = result.warnings + logger.info( + f"Scan import completed with warnings: {result.warnings}", + extra={ + "tenant_id": tenant_id, + "scan_id": str(result.scan_id), + "warnings": result.warnings, + }, + ) + + logger.info( + f"Successfully imported scan {result.scan_id} with " + f"{result.findings_count} findings and {result.resources_count} resources", + extra={ + "tenant_id": tenant_id, + "scan_id": str(result.scan_id), + "provider_id": str(result.provider_id), + "findings_count": result.findings_count, + "resources_count": result.resources_count, + "provider_created": result.provider_created, + }, + ) + + return Response( + data=response_data, + status=status.HTTP_201_CREATED, + ) + + except ScanImportError as e: + logger.warning( + f"Scan import failed for tenant {tenant_id}: {e.message}", + extra={ + "tenant_id": tenant_id, + "error_code": e.code, + "error_message": e.message, + "error_details": e.details, + }, + ) + error_response = { + "errors": [ + { + "status": "422", + "code": e.code, + "title": "Import failed", + "detail": e.message, + } + ] + } + if e.details: + error_response["errors"][0]["source"] = e.details + + return Response( + data=error_response, + status=status.HTTP_422_UNPROCESSABLE_ENTITY, + ) + + except Exception as e: + logger.exception( + f"Unexpected error during scan import for tenant {tenant_id}: {e}", + extra={ + "tenant_id": tenant_id, + "error_type": type(e).__name__, + "error_message": str(e), + }, + ) + sentry_sdk.capture_exception(e) + return Response( + data={ + "errors": [ + { + "status": "500", + "code": "internal_error", + "title": "Import failed", + "detail": "An unexpected error occurred during import. Please try again.", + } + ] + }, + status=status.HTTP_500_INTERNAL_SERVER_ERROR, + ) diff --git a/api/src/backend/config/django/base.py b/api/src/backend/config/django/base.py index 80b96952d7..c46a5000d7 100644 --- a/api/src/backend/config/django/base.py +++ b/api/src/backend/config/django/base.py @@ -286,6 +286,13 @@ DJANGO_OUTPUT_S3_AWS_SESSION_TOKEN = env.str("DJANGO_OUTPUT_S3_AWS_SESSION_TOKEN", "") DJANGO_OUTPUT_S3_AWS_DEFAULT_REGION = env.str("DJANGO_OUTPUT_S3_AWS_DEFAULT_REGION", "") +# File Upload Settings +# These limits support large scan result imports (JSON/CSV files from Prowler CLI). +# DATA_UPLOAD_MAX_MEMORY_SIZE: Max size for request body parsing (forms, JSON payloads) +# FILE_UPLOAD_MAX_MEMORY_SIZE: Max size for in-memory file uploads before streaming to disk +DATA_UPLOAD_MAX_MEMORY_SIZE = 1024 * 1024 * 1024 # 1GB +FILE_UPLOAD_MAX_MEMORY_SIZE = 1024 * 1024 * 1024 # 1GB + # HTTP Security Headers SECURE_CONTENT_TYPE_NOSNIFF = True X_FRAME_OPTIONS = "DENY" diff --git a/api/src/backend/config/guniconf.py b/api/src/backend/config/guniconf.py index a5b625874b..69108745ff 100644 --- a/api/src/backend/config/guniconf.py +++ b/api/src/backend/config/guniconf.py @@ -23,6 +23,9 @@ workers = env.int("DJANGO_WORKERS", default=multiprocessing.cpu_count() * 2 + 1) reload = DEBUG +# Timeout settings for large file uploads (5 minutes) +timeout = env.int("DJANGO_GUNICORN_TIMEOUT", default=300) + # Logging logconfig_dict = DJANGO_LOGGERS gunicorn_logger = logging.getLogger(BackendLogger.GUNICORN) diff --git a/api/src/backend/tasks/tests/test_integrations.py b/api/src/backend/tasks/tests/test_integrations.py index d37b27e320..94350d23da 100644 --- a/api/src/backend/tasks/tests/test_integrations.py +++ b/api/src/backend/tasks/tests/test_integrations.py @@ -1750,7 +1750,9 @@ def test_send_findings_to_jira_partial_failure( } findings.append(finding) - mock_finding_model.all_objects.select_related.return_value.prefetch_related.return_value.get.side_effect = findings + mock_finding_model.all_objects.select_related.return_value.prefetch_related.return_value.get.side_effect = ( + findings + ) # Call the function result = send_findings_to_jira( @@ -1824,7 +1826,9 @@ def test_send_findings_to_jira_no_resources( }, } - mock_finding_model.all_objects.select_related.return_value.prefetch_related.return_value.get.return_value = finding + mock_finding_model.all_objects.select_related.return_value.prefetch_related.return_value.get.return_value = ( + finding + ) # Call the function result = send_findings_to_jira( @@ -1887,7 +1891,9 @@ def test_send_findings_to_jira_with_empty_check_metadata( finding.scan.provider.provider = "kubernetes" finding.check_metadata = {} # Empty metadata - mock_finding_model.all_objects.select_related.return_value.prefetch_related.return_value.get.return_value = finding + mock_finding_model.all_objects.select_related.return_value.prefetch_related.return_value.get.return_value = ( + finding + ) # Call the function result = send_findings_to_jira( diff --git a/api/tests/manual/__init__.py b/api/tests/manual/__init__.py new file mode 100644 index 0000000000..01dd2c6587 --- /dev/null +++ b/api/tests/manual/__init__.py @@ -0,0 +1 @@ +# Manual test scripts for scan import functionality diff --git a/api/tests/manual/test_prowler_output.csv b/api/tests/manual/test_prowler_output.csv new file mode 100644 index 0000000000..4d9b2204b2 --- /dev/null +++ b/api/tests/manual/test_prowler_output.csv @@ -0,0 +1,4 @@ +AUTH_METHOD;TIMESTAMP;ACCOUNT_UID;ACCOUNT_NAME;ACCOUNT_EMAIL;ACCOUNT_ORGANIZATION_UID;ACCOUNT_ORGANIZATION_NAME;ACCOUNT_TAGS;FINDING_UID;PROVIDER;CHECK_ID;CHECK_TITLE;CHECK_TYPE;STATUS;STATUS_EXTENDED;MUTED;SERVICE_NAME;SUBSERVICE_NAME;SEVERITY;RESOURCE_TYPE;RESOURCE_UID;RESOURCE_NAME;RESOURCE_DETAILS;RESOURCE_TAGS;PARTITION;REGION;DESCRIPTION;RISK;RELATED_URL;REMEDIATION_RECOMMENDATION_TEXT;REMEDIATION_RECOMMENDATION_URL;REMEDIATION_CODE_NATIVEIAC;REMEDIATION_CODE_TERRAFORM;REMEDIATION_CODE_CLI;REMEDIATION_CODE_OTHER;COMPLIANCE;CATEGORIES;DEPENDS_ON;RELATED_TO;NOTES;PROWLER_VERSION;ADDITIONAL_URLS +profile;2025-12-30 23:11:26.347357;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-us-east-1-94270697;aws;accessanalyzer_enabled;Check if IAM Access Analyzer is enabled;IAM;FAIL;IAM Access Analyzer in account 123456789012 is not enabled.;False;accessanalyzer;;low;Other;arn:aws:iam::123456789012:root;123456789012;;;aws;us-east-1;Check if IAM Access Analyzer is enabled;AWS IAM Access Analyzer helps identify resources shared with external entities.;https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html;Enable IAM Access Analyzer for all accounts.;https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html;;;aws accessanalyzer create-analyzer --analyzer-name --type ;;CIS-1.4: 1.20 | CIS-1.5: 1.20 | CIS-2.0: 1.20 | CIS-3.0: 1.20 | AWS-Account-Security-Onboarding: Enabled security services, Create analyzers in each active regions;;;;;5.0.0;https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html +profile;2025-12-30 23:11:26.347357;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access-123456789012-us-west-2-2f70ae6b;aws;s3_bucket_public_access_block_enabled;S3 Bucket Public Access Block Check;S3;PASS;S3 bucket test-bucket has public access block enabled.;False;s3;;informational;bucket;arn:aws:s3:::test-bucket-0747aba2;test-bucket;;;aws;us-west-2;Check if S3 buckets have public access block enabled;Public S3 buckets can expose sensitive data.;https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-control-block-public-access.html;S3 Block Public Access is already enabled.;https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-control-block-public-access.html;;;;;CIS-1.4: 2.1.5 | CIS-2.0: 2.1.4 | PCI-DSS-3.2.1: 1.2.1, 1.3.1 | SOC2: CC6.1;;;;;5.0.0; +profile;2025-12-30 23:11:26.347357;123456789012;Test AWS Account;;;;;prowler-aws-ec2_imdsv2-123456789012-us-east-1-581945ab;aws;ec2_instance_imdsv2_enabled;EC2 Instance IMDSv2 Check;EC2;PASS;EC2 instance has IMDSv2 enabled.;False;ec2;;informational;instance;arn:aws:ec2:us-east-1:123456789012:instance/i-69959ef48fdd;test-instance;;;aws;us-east-1;Check if EC2 instances have IMDSv2 enabled;IMDSv2 provides enhanced security for instance metadata access.;https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-instance-metadata-service.html;IMDSv2 is already enabled.;https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-instance-metadata-service.html;;;;;CIS-1.4: 5.6 | CIS-2.0: 5.6 | AWS-Foundational-Security-Best-Practices: EC2.8;;;;;5.0.0; \ No newline at end of file diff --git a/api/tests/manual/test_prowler_output.ocsf.json b/api/tests/manual/test_prowler_output.ocsf.json new file mode 100644 index 0000000000..f5f2b926ff --- /dev/null +++ b/api/tests/manual/test_prowler_output.ocsf.json @@ -0,0 +1,285 @@ +[ + { + "message": "IAM Access Analyzer in account 123456789012 is not enabled.", + "metadata": { + "event_code": "accessanalyzer_enabled", + "product": { + "name": "Prowler", + "uid": "prowler", + "vendor_name": "Prowler", + "version": "5.0.0" + }, + "profiles": ["cloud", "datetime"], + "tenant_uid": "", + "version": "1.4.0" + }, + "severity_id": 2, + "severity": "Low", + "status": "New", + "status_code": "FAIL", + "status_detail": "IAM Access Analyzer in account 123456789012 is not enabled.", + "status_id": 1, + "unmapped": { + "related_url": "https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html", + "categories": [], + "depends_on": [], + "related_to": [], + "additional_urls": [], + "notes": "", + "compliance": { + "CIS-1.4": ["1.20"], + "CIS-1.5": ["1.20"], + "CIS-2.0": ["1.20"], + "CIS-3.0": ["1.20"] + } + }, + "activity_name": "Create", + "activity_id": 1, + "finding_info": { + "created_time": 1735570800, + "created_time_dt": "2024-12-30T15:00:00.000000", + "desc": "Check if IAM Access Analyzer is enabled", + "product_uid": "prowler", + "title": "Check if IAM Access Analyzer is enabled", + "types": ["IAM"], + "uid": "prowler-aws-accessanalyzer_enabled-123456789012-us-east-1-123456789012" + }, + "resources": [ + { + "cloud_partition": "aws", + "region": "us-east-1", + "data": { + "details": "", + "metadata": { + "arn": "arn:aws:iam::123456789012:root", + "name": "123456789012", + "status": "NOT_AVAILABLE", + "findings": [], + "tags": [], + "type": "", + "region": "us-east-1" + } + }, + "group": {"name": "accessanalyzer"}, + "labels": [], + "name": "123456789012", + "type": "Other", + "uid": "arn:aws:iam::123456789012:root" + } + ], + "category_name": "Findings", + "category_uid": 2, + "class_name": "Detection Finding", + "class_uid": 2004, + "cloud": { + "account": { + "name": "Test AWS Account", + "type": "AWS Account", + "type_id": 10, + "uid": "123456789012", + "labels": [] + }, + "org": {"name": "", "uid": ""}, + "provider": "aws", + "region": "us-east-1" + }, + "remediation": { + "desc": "Enable IAM Access Analyzer for all accounts.", + "references": [ + "aws accessanalyzer create-analyzer --analyzer-name --type ", + "https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html" + ] + }, + "risk_details": "AWS IAM Access Analyzer helps identify resources shared with external entities.", + "time": 1735570800, + "time_dt": "2024-12-30T15:00:00.000000", + "type_uid": 200401, + "type_name": "Detection Finding: Create" + }, + { + "message": "S3 bucket test-bucket-12345 has public access block enabled.", + "metadata": { + "event_code": "s3_bucket_public_access_block_enabled", + "product": { + "name": "Prowler", + "uid": "prowler", + "vendor_name": "Prowler", + "version": "5.0.0" + }, + "profiles": ["cloud", "datetime"], + "tenant_uid": "", + "version": "1.4.0" + }, + "severity_id": 1, + "severity": "Informational", + "status": "New", + "status_code": "PASS", + "status_detail": "S3 bucket test-bucket-12345 has public access block enabled.", + "status_id": 1, + "unmapped": { + "related_url": "https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-control-block-public-access.html", + "categories": ["storage", "security"], + "depends_on": [], + "related_to": [], + "additional_urls": [], + "notes": "", + "compliance": { + "CIS-1.4": ["2.1.5"], + "CIS-2.0": ["2.1.4"], + "PCI-DSS-3.2.1": ["1.2.1", "1.3.1"] + } + }, + "activity_name": "Create", + "activity_id": 1, + "finding_info": { + "created_time": 1735570800, + "created_time_dt": "2024-12-30T15:00:00.000000", + "desc": "Check if S3 buckets have public access block enabled", + "product_uid": "prowler", + "title": "S3 Bucket Public Access Block Check", + "types": ["S3"], + "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-us-west-2-test-bucket-12345" + }, + "resources": [ + { + "cloud_partition": "aws", + "region": "us-west-2", + "data": { + "details": "", + "metadata": { + "arn": "arn:aws:s3:::test-bucket-12345", + "name": "test-bucket-12345", + "status": "ENABLED", + "findings": [], + "tags": [{"Key": "Environment", "Value": "Test"}], + "type": "bucket", + "region": "us-west-2" + } + }, + "group": {"name": "s3"}, + "labels": [], + "name": "test-bucket-12345", + "type": "bucket", + "uid": "arn:aws:s3:::test-bucket-12345" + } + ], + "category_name": "Findings", + "category_uid": 2, + "class_name": "Detection Finding", + "class_uid": 2004, + "cloud": { + "account": { + "name": "Test AWS Account", + "type": "AWS Account", + "type_id": 10, + "uid": "123456789012", + "labels": [] + }, + "org": {"name": "", "uid": ""}, + "provider": "aws", + "region": "us-west-2" + }, + "remediation": { + "desc": "S3 Block Public Access is already enabled. No action required.", + "references": [] + }, + "risk_details": "Public S3 buckets can expose sensitive data to unauthorized users.", + "time": 1735570800, + "time_dt": "2024-12-30T15:00:00.000000", + "type_uid": 200401, + "type_name": "Detection Finding: Create" + }, + { + "message": "EC2 instance i-0abc123def456789 has IMDSv2 enabled.", + "metadata": { + "event_code": "ec2_instance_imdsv2_enabled", + "product": { + "name": "Prowler", + "uid": "prowler", + "vendor_name": "Prowler", + "version": "5.0.0" + }, + "profiles": ["cloud", "datetime"], + "tenant_uid": "", + "version": "1.4.0" + }, + "severity_id": 1, + "severity": "Informational", + "status": "New", + "status_code": "PASS", + "status_detail": "EC2 instance i-0abc123def456789 has IMDSv2 enabled.", + "status_id": 1, + "unmapped": { + "related_url": "https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-instance-metadata-service.html", + "categories": ["compute", "security"], + "depends_on": [], + "related_to": [], + "additional_urls": [], + "notes": "", + "compliance": { + "CIS-1.4": ["5.6"], + "CIS-2.0": ["5.6"], + "AWS-Foundational-Security-Best-Practices": ["EC2.8"] + } + }, + "activity_name": "Create", + "activity_id": 1, + "finding_info": { + "created_time": 1735570800, + "created_time_dt": "2024-12-30T15:00:00.000000", + "desc": "Check if EC2 instances have IMDSv2 enabled", + "product_uid": "prowler", + "title": "EC2 Instance IMDSv2 Check", + "types": ["EC2"], + "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-us-east-1-i-0abc123def456789" + }, + "resources": [ + { + "cloud_partition": "aws", + "region": "us-east-1", + "data": { + "details": "", + "metadata": { + "arn": "arn:aws:ec2:us-east-1:123456789012:instance/i-0abc123def456789", + "name": "test-instance", + "status": "running", + "findings": [], + "tags": [{"Key": "Name", "Value": "test-instance"}], + "type": "instance", + "region": "us-east-1" + } + }, + "group": {"name": "ec2"}, + "labels": [], + "name": "test-instance", + "type": "instance", + "uid": "arn:aws:ec2:us-east-1:123456789012:instance/i-0abc123def456789" + } + ], + "category_name": "Findings", + "category_uid": 2, + "class_name": "Detection Finding", + "class_uid": 2004, + "cloud": { + "account": { + "name": "Test AWS Account", + "type": "AWS Account", + "type_id": 10, + "uid": "123456789012", + "labels": [] + }, + "org": {"name": "", "uid": ""}, + "provider": "aws", + "region": "us-east-1" + }, + "remediation": { + "desc": "IMDSv2 is already enabled. No action required.", + "references": [] + }, + "risk_details": "IMDSv2 provides enhanced security for instance metadata access.", + "time": 1735570800, + "time_dt": "2024-12-30T15:00:00.000000", + "type_uid": 200401, + "type_name": "Detection Finding: Create" + } +] diff --git a/api/tests/manual/test_prowler_output_large_1500.csv b/api/tests/manual/test_prowler_output_large_1500.csv new file mode 100644 index 0000000000..a637d9b7b6 --- /dev/null +++ b/api/tests/manual/test_prowler_output_large_1500.csv @@ -0,0 +1,1501 @@ +AUTH_METHOD;TIMESTAMP;ACCOUNT_UID;ACCOUNT_NAME;ACCOUNT_EMAIL;ACCOUNT_ORGANIZATION_UID;ACCOUNT_ORGANIZATION_NAME;ACCOUNT_TAGS;FINDING_UID;PROVIDER;CHECK_ID;CHECK_TITLE;CHECK_TYPE;STATUS;STATUS_EXTENDED;MUTED;SERVICE_NAME;SUBSERVICE_NAME;SEVERITY;RESOURCE_TYPE;RESOURCE_UID;RESOURCE_NAME;RESOURCE_DETAILS;RESOURCE_TAGS;PARTITION;REGION;DESCRIPTION;RISK;RELATED_URL;REMEDIATION_RECOMMENDATION_TEXT;REMEDIATION_RECOMMENDATION_URL;REMEDIATION_CODE_NATIVEIAC;REMEDIATION_CODE_TERRAFORM;REMEDIATION_CODE_CLI;REMEDIATION_CODE_OTHER;COMPLIANCE;CATEGORIES;DEPENDS_ON;RELATED_TO;NOTES;PROWLER_VERSION;ADDITIONAL_URLS +profile;2025-12-30 23:17:49.159471;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-us-east-1-24190b18;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;PASS;Resource resource-0 check result: PASS;False;accessanalyzer;;critical;accessanalyzer;arn:aws:accessanalyzer:us-east-1:123456789012:resource-0;resource-0;;;aws;us-east-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.159517;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-east-2-240861a8;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;FAIL;Resource resource-1 check result: FAIL;False;acm;;high;acm;arn:aws:acm:us-east-2:123456789012:resource-1;resource-1;;;aws;us-east-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.159531;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-west-1-50a2c08f;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;MANUAL;Resource resource-2 check result: MANUAL;False;apigateway;;medium;apigateway;arn:aws:apigateway:us-west-1:123456789012:resource-2;resource-2;;;aws;us-west-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.159542;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-west-2-1ec9b3b5;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;PASS;Resource resource-3 check result: PASS;False;cloudfront;;low;cloudfront;arn:aws:cloudfront:us-west-2:123456789012:resource-3;resource-3;;;aws;us-west-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.159553;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-west-1-a77b720f;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;FAIL;Resource resource-4 check result: FAIL;False;cloudtrail;;informational;cloudtrail;arn:aws:cloudtrail:eu-west-1:123456789012:resource-4;resource-4;;;aws;eu-west-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.159562;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-2-7e3bdffc;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-5 check result: MANUAL;False;cloudwatch;;critical;cloudwatch;arn:aws:cloudwatch:eu-west-2:123456789012:resource-5;resource-5;;;aws;eu-west-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.159571;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-central-1-af6c7770;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-6 check result: PASS;False;config;;high;config;arn:aws:config:eu-central-1:123456789012:resource-6;resource-6;;;aws;eu-central-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.159582;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-southeast-1-0f4accbb;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;FAIL;Resource resource-7 check result: FAIL;False;dynamodb;;medium;dynamodb;arn:aws:dynamodb:ap-southeast-1:123456789012:resource-7;resource-7;;;aws;ap-southeast-1;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.159591;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-ap-southeast-2-1950c45d;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-8 check result: MANUAL;False;ec2;;low;ec2;arn:aws:ec2:ap-southeast-2:123456789012:resource-8;resource-8;;;aws;ap-southeast-2;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.159601;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-northeast-1-87e1fc7a;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;PASS;Resource resource-9 check result: PASS;False;ecr;;informational;ecr;arn:aws:ecr:ap-northeast-1:123456789012:resource-9;resource-9;;;aws;ap-northeast-1;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 13:17:49.159611;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-1-17d43bdf;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-10 check result: FAIL;False;ecs;;critical;ecs;arn:aws:ecs:us-east-1:123456789012:resource-10;resource-10;;;aws;us-east-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.159620;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-2-aa687885;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-11 check result: MANUAL;False;efs;;high;efs;arn:aws:efs:us-east-2:123456789012:resource-11;resource-11;;;aws;us-east-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.159629;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-us-west-1-caa8185d;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;PASS;Resource resource-12 check result: PASS;False;eks;;medium;eks;arn:aws:eks:us-west-1:123456789012:resource-12;resource-12;;;aws;us-west-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.159638;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-2-170cec20;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-13 check result: FAIL;False;elasticache;;low;elasticache;arn:aws:elasticache:us-west-2:123456789012:resource-13;resource-13;;;aws;us-west-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.159647;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-eu-west-1-643d76d5;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;MANUAL;Resource resource-14 check result: MANUAL;False;elb;;informational;elb;arn:aws:elb:eu-west-1:123456789012:resource-14;resource-14;;;aws;eu-west-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.159656;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-2-f4f88a9f;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-15 check result: PASS;False;emr;;critical;emr;arn:aws:emr:eu-west-2:123456789012:resource-15;resource-15;;;aws;eu-west-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.159665;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-central-1-612c99c9;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-16 check result: FAIL;False;guardduty;;high;guardduty;arn:aws:guardduty:eu-central-1:123456789012:resource-16;resource-16;;;aws;eu-central-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.159674;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-ap-southeast-1-a24af858;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-17 check result: MANUAL;False;iam;;medium;iam;arn:aws:iam:ap-southeast-1:123456789012:resource-17;resource-17;;;aws;ap-southeast-1;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.159682;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-2-ca13428b;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-18 check result: PASS;False;kms;;low;kms;arn:aws:kms:ap-southeast-2:123456789012:resource-18;resource-18;;;aws;ap-southeast-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.159691;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-northeast-1-a3ef63fb;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;FAIL;Resource resource-19 check result: FAIL;False;lambda;;informational;lambda;arn:aws:lambda:ap-northeast-1:123456789012:resource-19;resource-19;;;aws;ap-northeast-1;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.159700;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-us-east-1-b9d277d8;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-20 check result: MANUAL;False;rds;;critical;rds;arn:aws:rds:us-east-1:123456789012:resource-20;resource-20;;;aws;us-east-1;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.159708;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-2-702d9fd3;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-21 check result: PASS;False;redshift;;high;redshift;arn:aws:redshift:us-east-2:123456789012:resource-21;resource-21;;;aws;us-east-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.159718;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-us-west-1-e426b882;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-22 check result: FAIL;False;s3;;medium;s3;arn:aws:s3:us-west-1:123456789012:resource-22;resource-22;;;aws;us-west-1;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.159726;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-2-5631ee3d;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-23 check result: MANUAL;False;secretsmanager;;low;secretsmanager;arn:aws:secretsmanager:us-west-2:123456789012:resource-23;resource-23;;;aws;us-west-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.159735;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-1-d460d147;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-24 check result: PASS;False;sns;;informational;sns;arn:aws:sns:eu-west-1:123456789012:resource-24;resource-24;;;aws;eu-west-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 22:17:49.159744;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-2-6c356a77;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-25 check result: FAIL;False;sqs;;critical;sqs;arn:aws:sqs:eu-west-2:123456789012:resource-25;resource-25;;;aws;eu-west-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.159752;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-central-1-b12b87d9;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-26 check result: MANUAL;False;ssm;;high;ssm;arn:aws:ssm:eu-central-1:123456789012:resource-26;resource-26;;;aws;eu-central-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.159760;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-1-a12bd91e;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-27 check result: PASS;False;vpc;;medium;vpc;arn:aws:vpc:ap-southeast-1:123456789012:resource-27;resource-27;;;aws;ap-southeast-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.159769;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-2-81324a50;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-28 check result: FAIL;False;waf;;low;waf;arn:aws:waf:ap-southeast-2:123456789012:resource-28;resource-28;;;aws;ap-southeast-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.159777;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-ap-northeast-1-9bf54646;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;MANUAL;Resource resource-29 check result: MANUAL;False;accessanalyzer;;informational;accessanalyzer;arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-29;resource-29;;;aws;ap-northeast-1;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.159785;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-us-east-1-8c965527;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;PASS;Resource resource-30 check result: PASS;False;acm;;critical;acm;arn:aws:acm:us-east-1:123456789012:resource-30;resource-30;;;aws;us-east-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.159794;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-east-2-50140c13;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;FAIL;Resource resource-31 check result: FAIL;False;apigateway;;high;apigateway;arn:aws:apigateway:us-east-2:123456789012:resource-31;resource-31;;;aws;us-east-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.159803;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-west-1-12165f30;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;MANUAL;Resource resource-32 check result: MANUAL;False;cloudfront;;medium;cloudfront;arn:aws:cloudfront:us-west-1:123456789012:resource-32;resource-32;;;aws;us-west-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.159811;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-west-2-428c9d9b;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;PASS;Resource resource-33 check result: PASS;False;cloudtrail;;low;cloudtrail;arn:aws:cloudtrail:us-west-2:123456789012:resource-33;resource-33;;;aws;us-west-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.159820;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-1-1bc26373;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-34 check result: FAIL;False;cloudwatch;;informational;cloudwatch;arn:aws:cloudwatch:eu-west-1:123456789012:resource-34;resource-34;;;aws;eu-west-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.159829;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-2-396549b3;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-35 check result: MANUAL;False;config;;critical;config;arn:aws:config:eu-west-2:123456789012:resource-35;resource-35;;;aws;eu-west-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.159837;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-central-1-05f44b9c;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;PASS;Resource resource-36 check result: PASS;False;dynamodb;;high;dynamodb;arn:aws:dynamodb:eu-central-1:123456789012:resource-36;resource-36;;;aws;eu-central-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.159846;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-ap-southeast-1-db6f03d4;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-37 check result: FAIL;False;ec2;;medium;ec2;arn:aws:ec2:ap-southeast-1:123456789012:resource-37;resource-37;;;aws;ap-southeast-1;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.159855;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-ap-southeast-2-a8efaa59;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;MANUAL;Resource resource-38 check result: MANUAL;False;ecr;;low;ecr;arn:aws:ecr:ap-southeast-2:123456789012:resource-38;resource-38;;;aws;ap-southeast-2;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.159866;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-northeast-1-3b2ae53f;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-39 check result: PASS;False;ecs;;informational;ecs;arn:aws:ecs:ap-northeast-1:123456789012:resource-39;resource-39;;;aws;ap-northeast-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 07:17:49.159876;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-1-9fecd98b;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-40 check result: FAIL;False;efs;;critical;efs;arn:aws:efs:us-east-1:123456789012:resource-40;resource-40;;;aws;us-east-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.159885;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-east-2-ceb3a61e;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;MANUAL;Resource resource-41 check result: MANUAL;False;eks;;high;eks;arn:aws:eks:us-east-2:123456789012:resource-41;resource-41;;;aws;us-east-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.159893;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-1-56477d1d;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-42 check result: PASS;False;elasticache;;medium;elasticache;arn:aws:elasticache:us-west-1:123456789012:resource-42;resource-42;;;aws;us-west-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.159902;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-us-west-2-72ef95d8;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;FAIL;Resource resource-43 check result: FAIL;False;elb;;low;elb;arn:aws:elb:us-west-2:123456789012:resource-43;resource-43;;;aws;us-west-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.159910;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-1-b1c9395d;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-44 check result: MANUAL;False;emr;;informational;emr;arn:aws:emr:eu-west-1:123456789012:resource-44;resource-44;;;aws;eu-west-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.159918;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-west-2-9aa49624;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-45 check result: PASS;False;guardduty;;critical;guardduty;arn:aws:guardduty:eu-west-2:123456789012:resource-45;resource-45;;;aws;eu-west-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.159927;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-eu-central-1-8780891f;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-46 check result: FAIL;False;iam;;high;iam;arn:aws:iam:eu-central-1:123456789012:resource-46;resource-46;;;aws;eu-central-1;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.159935;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-1-e00d6a60;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-47 check result: MANUAL;False;kms;;medium;kms;arn:aws:kms:ap-southeast-1:123456789012:resource-47;resource-47;;;aws;ap-southeast-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.159943;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-ap-southeast-2-6baf140b;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;PASS;Resource resource-48 check result: PASS;False;lambda;;low;lambda;arn:aws:lambda:ap-southeast-2:123456789012:resource-48;resource-48;;;aws;ap-southeast-2;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.159952;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-ap-northeast-1-f384b7af;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-49 check result: FAIL;False;rds;;informational;rds;arn:aws:rds:ap-northeast-1:123456789012:resource-49;resource-49;;;aws;ap-northeast-1;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.159960;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-1-0239b5d1;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-50 check result: MANUAL;False;redshift;;critical;redshift;arn:aws:redshift:us-east-1:123456789012:resource-50;resource-50;;;aws;us-east-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.159970;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-us-east-2-f90763e6;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-51 check result: PASS;False;s3;;high;s3;arn:aws:s3:us-east-2:123456789012:resource-51;resource-51;;;aws;us-east-2;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.159979;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-1-7e8ab9b6;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-52 check result: FAIL;False;secretsmanager;;medium;secretsmanager;arn:aws:secretsmanager:us-west-1:123456789012:resource-52;resource-52;;;aws;us-west-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.159987;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-2-b35a71f8;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-53 check result: MANUAL;False;sns;;low;sns;arn:aws:sns:us-west-2:123456789012:resource-53;resource-53;;;aws;us-west-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.159995;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-1-82c5ed67;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-54 check result: PASS;False;sqs;;informational;sqs;arn:aws:sqs:eu-west-1:123456789012:resource-54;resource-54;;;aws;eu-west-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 16:17:49.160005;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-2-b849ba03;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-55 check result: FAIL;False;ssm;;critical;ssm;arn:aws:ssm:eu-west-2:123456789012:resource-55;resource-55;;;aws;eu-west-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.160013;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-eu-central-1-fd2c6a2f;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-56 check result: MANUAL;False;vpc;;high;vpc;arn:aws:vpc:eu-central-1:123456789012:resource-56;resource-56;;;aws;eu-central-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.160022;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-1-57f200fd;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-57 check result: PASS;False;waf;;medium;waf;arn:aws:waf:ap-southeast-1:123456789012:resource-57;resource-57;;;aws;ap-southeast-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.160032;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-ap-southeast-2-95e1c094;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;FAIL;Resource resource-58 check result: FAIL;False;accessanalyzer;;low;accessanalyzer;arn:aws:accessanalyzer:ap-southeast-2:123456789012:resource-58;resource-58;;;aws;ap-southeast-2;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.160041;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-northeast-1-2e380ce1;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;MANUAL;Resource resource-59 check result: MANUAL;False;acm;;informational;acm;arn:aws:acm:ap-northeast-1:123456789012:resource-59;resource-59;;;aws;ap-northeast-1;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.160051;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-east-1-b43f7587;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;PASS;Resource resource-60 check result: PASS;False;apigateway;;critical;apigateway;arn:aws:apigateway:us-east-1:123456789012:resource-60;resource-60;;;aws;us-east-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.160061;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-east-2-90b63d2b;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;FAIL;Resource resource-61 check result: FAIL;False;cloudfront;;high;cloudfront;arn:aws:cloudfront:us-east-2:123456789012:resource-61;resource-61;;;aws;us-east-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.160070;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-west-1-7ac0ee4d;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;MANUAL;Resource resource-62 check result: MANUAL;False;cloudtrail;;medium;cloudtrail;arn:aws:cloudtrail:us-west-1:123456789012:resource-62;resource-62;;;aws;us-west-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.160078;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-2-3d20e534;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-63 check result: PASS;False;cloudwatch;;low;cloudwatch;arn:aws:cloudwatch:us-west-2:123456789012:resource-63;resource-63;;;aws;us-west-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.160088;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-1-e0338feb;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-64 check result: FAIL;False;config;;informational;config;arn:aws:config:eu-west-1:123456789012:resource-64;resource-64;;;aws;eu-west-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.160096;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-eu-west-2-25c5ca27;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;MANUAL;Resource resource-65 check result: MANUAL;False;dynamodb;;critical;dynamodb;arn:aws:dynamodb:eu-west-2:123456789012:resource-65;resource-65;;;aws;eu-west-2;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.160104;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-eu-central-1-fbf26707;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-66 check result: PASS;False;ec2;;high;ec2;arn:aws:ec2:eu-central-1:123456789012:resource-66;resource-66;;;aws;eu-central-1;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.160114;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-southeast-1-15709e7e;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;FAIL;Resource resource-67 check result: FAIL;False;ecr;;medium;ecr;arn:aws:ecr:ap-southeast-1:123456789012:resource-67;resource-67;;;aws;ap-southeast-1;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.160122;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-2-e606afb0;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-68 check result: MANUAL;False;ecs;;low;ecs;arn:aws:ecs:ap-southeast-2:123456789012:resource-68;resource-68;;;aws;ap-southeast-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.160130;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-northeast-1-45833e7e;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-69 check result: PASS;False;efs;;informational;efs;arn:aws:efs:ap-northeast-1:123456789012:resource-69;resource-69;;;aws;ap-northeast-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 01:17:49.160139;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-us-east-1-54b6cbd6;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;FAIL;Resource resource-70 check result: FAIL;False;eks;;critical;eks;arn:aws:eks:us-east-1:123456789012:resource-70;resource-70;;;aws;us-east-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.160147;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-2-c8e8004a;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-71 check result: MANUAL;False;elasticache;;high;elasticache;arn:aws:elasticache:us-east-2:123456789012:resource-71;resource-71;;;aws;us-east-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.160155;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-us-west-1-4bf8951a;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;PASS;Resource resource-72 check result: PASS;False;elb;;medium;elb;arn:aws:elb:us-west-1:123456789012:resource-72;resource-72;;;aws;us-west-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.160164;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-2-e58a1212;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-73 check result: FAIL;False;emr;;low;emr;arn:aws:emr:us-west-2:123456789012:resource-73;resource-73;;;aws;us-west-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.160171;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-west-1-9bd78ef3;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-74 check result: MANUAL;False;guardduty;;informational;guardduty;arn:aws:guardduty:eu-west-1:123456789012:resource-74;resource-74;;;aws;eu-west-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.160180;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-eu-west-2-fd494123;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-75 check result: PASS;False;iam;;critical;iam;arn:aws:iam:eu-west-2:123456789012:resource-75;resource-75;;;aws;eu-west-2;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.160188;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-central-1-1d432bc6;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-76 check result: FAIL;False;kms;;high;kms;arn:aws:kms:eu-central-1:123456789012:resource-76;resource-76;;;aws;eu-central-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.160197;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-southeast-1-04a740aa;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;MANUAL;Resource resource-77 check result: MANUAL;False;lambda;;medium;lambda;arn:aws:lambda:ap-southeast-1:123456789012:resource-77;resource-77;;;aws;ap-southeast-1;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.160205;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-ap-southeast-2-4feec927;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-78 check result: PASS;False;rds;;low;rds;arn:aws:rds:ap-southeast-2:123456789012:resource-78;resource-78;;;aws;ap-southeast-2;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.160213;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-ap-northeast-1-c75aade2;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-79 check result: FAIL;False;redshift;;informational;redshift;arn:aws:redshift:ap-northeast-1:123456789012:resource-79;resource-79;;;aws;ap-northeast-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.160221;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-us-east-1-db547c23;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-80 check result: MANUAL;False;s3;;critical;s3;arn:aws:s3:us-east-1:123456789012:resource-80;resource-80;;;aws;us-east-1;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.160229;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-2-15e0a335;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-81 check result: PASS;False;secretsmanager;;high;secretsmanager;arn:aws:secretsmanager:us-east-2:123456789012:resource-81;resource-81;;;aws;us-east-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.160238;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-1-e5b0aaf7;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-82 check result: FAIL;False;sns;;medium;sns;arn:aws:sns:us-west-1:123456789012:resource-82;resource-82;;;aws;us-west-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.160246;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-2-87a2e597;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-83 check result: MANUAL;False;sqs;;low;sqs;arn:aws:sqs:us-west-2:123456789012:resource-83;resource-83;;;aws;us-west-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.160254;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-1-2d623ded;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-84 check result: PASS;False;ssm;;informational;ssm;arn:aws:ssm:eu-west-1:123456789012:resource-84;resource-84;;;aws;eu-west-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 10:17:49.160262;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-2-8406350a;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-85 check result: FAIL;False;vpc;;critical;vpc;arn:aws:vpc:eu-west-2:123456789012:resource-85;resource-85;;;aws;eu-west-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.160271;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-central-1-0f0494c6;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-86 check result: MANUAL;False;waf;;high;waf;arn:aws:waf:eu-central-1:123456789012:resource-86;resource-86;;;aws;eu-central-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.160279;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-ap-southeast-1-d2094725;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;PASS;Resource resource-87 check result: PASS;False;accessanalyzer;;medium;accessanalyzer;arn:aws:accessanalyzer:ap-southeast-1:123456789012:resource-87;resource-87;;;aws;ap-southeast-1;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.160287;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-ap-southeast-2-a479475c;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;FAIL;Resource resource-88 check result: FAIL;False;acm;;low;acm;arn:aws:acm:ap-southeast-2:123456789012:resource-88;resource-88;;;aws;ap-southeast-2;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.160295;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-northeast-1-a19529b5;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;MANUAL;Resource resource-89 check result: MANUAL;False;apigateway;;informational;apigateway;arn:aws:apigateway:ap-northeast-1:123456789012:resource-89;resource-89;;;aws;ap-northeast-1;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.160304;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-east-1-f9bad242;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;PASS;Resource resource-90 check result: PASS;False;cloudfront;;critical;cloudfront;arn:aws:cloudfront:us-east-1:123456789012:resource-90;resource-90;;;aws;us-east-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.160312;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-east-2-18c3e0d0;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;FAIL;Resource resource-91 check result: FAIL;False;cloudtrail;;high;cloudtrail;arn:aws:cloudtrail:us-east-2:123456789012:resource-91;resource-91;;;aws;us-east-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.160321;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-1-53ebe841;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-92 check result: MANUAL;False;cloudwatch;;medium;cloudwatch;arn:aws:cloudwatch:us-west-1:123456789012:resource-92;resource-92;;;aws;us-west-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.160329;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-2-af052a93;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-93 check result: PASS;False;config;;low;config;arn:aws:config:us-west-2:123456789012:resource-93;resource-93;;;aws;us-west-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.160338;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-west-1-d8cacfee;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;FAIL;Resource resource-94 check result: FAIL;False;dynamodb;;informational;dynamodb;arn:aws:dynamodb:eu-west-1:123456789012:resource-94;resource-94;;;aws;eu-west-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.160346;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-eu-west-2-f0078435;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-95 check result: MANUAL;False;ec2;;critical;ec2;arn:aws:ec2:eu-west-2:123456789012:resource-95;resource-95;;;aws;eu-west-2;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.160354;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-central-1-59b055e7;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;PASS;Resource resource-96 check result: PASS;False;ecr;;high;ecr;arn:aws:ecr:eu-central-1:123456789012:resource-96;resource-96;;;aws;eu-central-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.160363;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-1-3a0f14f9;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-97 check result: FAIL;False;ecs;;medium;ecs;arn:aws:ecs:ap-southeast-1:123456789012:resource-97;resource-97;;;aws;ap-southeast-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.160371;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-2-e9dcacd0;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-98 check result: MANUAL;False;efs;;low;efs;arn:aws:efs:ap-southeast-2:123456789012:resource-98;resource-98;;;aws;ap-southeast-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.160379;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-northeast-1-f673d1b0;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;PASS;Resource resource-99 check result: PASS;False;eks;;informational;eks;arn:aws:eks:ap-northeast-1:123456789012:resource-99;resource-99;;;aws;ap-northeast-1;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 19:17:49.160387;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-1-9fad558e;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-100 check result: FAIL;False;elasticache;;critical;elasticache;arn:aws:elasticache:us-east-1:123456789012:resource-100;resource-100;;;aws;us-east-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.160396;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-us-east-2-587bfbc8;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;MANUAL;Resource resource-101 check result: MANUAL;False;elb;;high;elb;arn:aws:elb:us-east-2:123456789012:resource-101;resource-101;;;aws;us-east-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.160404;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-1-4d8b578c;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-102 check result: PASS;False;emr;;medium;emr;arn:aws:emr:us-west-1:123456789012:resource-102;resource-102;;;aws;us-west-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.160413;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-west-2-d78dc6f7;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-103 check result: FAIL;False;guardduty;;low;guardduty;arn:aws:guardduty:us-west-2:123456789012:resource-103;resource-103;;;aws;us-west-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.160421;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-eu-west-1-67145c4d;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-104 check result: MANUAL;False;iam;;informational;iam;arn:aws:iam:eu-west-1:123456789012:resource-104;resource-104;;;aws;eu-west-1;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.160429;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-2-723066a0;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-105 check result: PASS;False;kms;;critical;kms;arn:aws:kms:eu-west-2:123456789012:resource-105;resource-105;;;aws;eu-west-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.160437;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-eu-central-1-84c41b03;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;FAIL;Resource resource-106 check result: FAIL;False;lambda;;high;lambda;arn:aws:lambda:eu-central-1:123456789012:resource-106;resource-106;;;aws;eu-central-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.160445;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-ap-southeast-1-25fb1aa5;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-107 check result: MANUAL;False;rds;;medium;rds;arn:aws:rds:ap-southeast-1:123456789012:resource-107;resource-107;;;aws;ap-southeast-1;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.160453;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-2-27fa73e3;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-108 check result: PASS;False;redshift;;low;redshift;arn:aws:redshift:ap-southeast-2:123456789012:resource-108;resource-108;;;aws;ap-southeast-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.160461;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-ap-northeast-1-b36d942f;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-109 check result: FAIL;False;s3;;informational;s3;arn:aws:s3:ap-northeast-1:123456789012:resource-109;resource-109;;;aws;ap-northeast-1;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.160469;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-1-be30910a;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-110 check result: MANUAL;False;secretsmanager;;critical;secretsmanager;arn:aws:secretsmanager:us-east-1:123456789012:resource-110;resource-110;;;aws;us-east-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.160477;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-2-16d627a3;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-111 check result: PASS;False;sns;;high;sns;arn:aws:sns:us-east-2:123456789012:resource-111;resource-111;;;aws;us-east-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.160487;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-1-1a9decc5;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-112 check result: FAIL;False;sqs;;medium;sqs;arn:aws:sqs:us-west-1:123456789012:resource-112;resource-112;;;aws;us-west-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.160494;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-2-b09e63a6;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-113 check result: MANUAL;False;ssm;;low;ssm;arn:aws:ssm:us-west-2:123456789012:resource-113;resource-113;;;aws;us-west-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.160502;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-1-42bab5e3;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-114 check result: PASS;False;vpc;;informational;vpc;arn:aws:vpc:eu-west-1:123456789012:resource-114;resource-114;;;aws;eu-west-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 04:17:49.160510;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-2-10b7263c;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-115 check result: FAIL;False;waf;;critical;waf;arn:aws:waf:eu-west-2:123456789012:resource-115;resource-115;;;aws;eu-west-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.160518;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-eu-central-1-4ef397fb;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;MANUAL;Resource resource-116 check result: MANUAL;False;accessanalyzer;;high;accessanalyzer;arn:aws:accessanalyzer:eu-central-1:123456789012:resource-116;resource-116;;;aws;eu-central-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.160526;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-southeast-1-22404244;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;PASS;Resource resource-117 check result: PASS;False;acm;;medium;acm;arn:aws:acm:ap-southeast-1:123456789012:resource-117;resource-117;;;aws;ap-southeast-1;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.160535;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-ap-southeast-2-2b852147;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;FAIL;Resource resource-118 check result: FAIL;False;apigateway;;low;apigateway;arn:aws:apigateway:ap-southeast-2:123456789012:resource-118;resource-118;;;aws;ap-southeast-2;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.160543;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-northeast-1-d59e41e9;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;MANUAL;Resource resource-119 check result: MANUAL;False;cloudfront;;informational;cloudfront;arn:aws:cloudfront:ap-northeast-1:123456789012:resource-119;resource-119;;;aws;ap-northeast-1;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.160551;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-east-1-1d6e0275;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;PASS;Resource resource-120 check result: PASS;False;cloudtrail;;critical;cloudtrail;arn:aws:cloudtrail:us-east-1:123456789012:resource-120;resource-120;;;aws;us-east-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.160559;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-2-cec1abe4;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-121 check result: FAIL;False;cloudwatch;;high;cloudwatch;arn:aws:cloudwatch:us-east-2:123456789012:resource-121;resource-121;;;aws;us-east-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.160567;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-1-c1641077;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-122 check result: MANUAL;False;config;;medium;config;arn:aws:config:us-west-1:123456789012:resource-122;resource-122;;;aws;us-west-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.160575;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-west-2-ed1cc378;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;PASS;Resource resource-123 check result: PASS;False;dynamodb;;low;dynamodb;arn:aws:dynamodb:us-west-2:123456789012:resource-123;resource-123;;;aws;us-west-2;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.160584;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-eu-west-1-0ea5df47;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-124 check result: FAIL;False;ec2;;informational;ec2;arn:aws:ec2:eu-west-1:123456789012:resource-124;resource-124;;;aws;eu-west-1;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.160592;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-eu-west-2-f8bae4fd;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;MANUAL;Resource resource-125 check result: MANUAL;False;ecr;;critical;ecr;arn:aws:ecr:eu-west-2:123456789012:resource-125;resource-125;;;aws;eu-west-2;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.160600;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-central-1-df366c31;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-126 check result: PASS;False;ecs;;high;ecs;arn:aws:ecs:eu-central-1:123456789012:resource-126;resource-126;;;aws;eu-central-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.160608;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-1-686cc959;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-127 check result: FAIL;False;efs;;medium;efs;arn:aws:efs:ap-southeast-1:123456789012:resource-127;resource-127;;;aws;ap-southeast-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.160616;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-ap-southeast-2-e2e0144d;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;MANUAL;Resource resource-128 check result: MANUAL;False;eks;;low;eks;arn:aws:eks:ap-southeast-2:123456789012:resource-128;resource-128;;;aws;ap-southeast-2;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.160624;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-northeast-1-b69cfaa5;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-129 check result: PASS;False;elasticache;;informational;elasticache;arn:aws:elasticache:ap-northeast-1:123456789012:resource-129;resource-129;;;aws;ap-northeast-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 13:17:49.160633;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-us-east-1-045f3019;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;FAIL;Resource resource-130 check result: FAIL;False;elb;;critical;elb;arn:aws:elb:us-east-1:123456789012:resource-130;resource-130;;;aws;us-east-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.160641;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-2-360c2e0a;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-131 check result: MANUAL;False;emr;;high;emr;arn:aws:emr:us-east-2:123456789012:resource-131;resource-131;;;aws;us-east-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.160649;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-west-1-078cad23;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-132 check result: PASS;False;guardduty;;medium;guardduty;arn:aws:guardduty:us-west-1:123456789012:resource-132;resource-132;;;aws;us-west-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.160657;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-us-west-2-874942eb;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-133 check result: FAIL;False;iam;;low;iam;arn:aws:iam:us-west-2:123456789012:resource-133;resource-133;;;aws;us-west-2;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.160665;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-1-22af468c;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-134 check result: MANUAL;False;kms;;informational;kms;arn:aws:kms:eu-west-1:123456789012:resource-134;resource-134;;;aws;eu-west-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.160673;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-eu-west-2-a0160397;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;PASS;Resource resource-135 check result: PASS;False;lambda;;critical;lambda;arn:aws:lambda:eu-west-2:123456789012:resource-135;resource-135;;;aws;eu-west-2;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.160682;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-eu-central-1-a1ba1c99;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-136 check result: FAIL;False;rds;;high;rds;arn:aws:rds:eu-central-1:123456789012:resource-136;resource-136;;;aws;eu-central-1;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.160689;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-1-5973129f;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-137 check result: MANUAL;False;redshift;;medium;redshift;arn:aws:redshift:ap-southeast-1:123456789012:resource-137;resource-137;;;aws;ap-southeast-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.160697;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-ap-southeast-2-5e74dab6;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-138 check result: PASS;False;s3;;low;s3;arn:aws:s3:ap-southeast-2:123456789012:resource-138;resource-138;;;aws;ap-southeast-2;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.160706;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-northeast-1-9302265c;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-139 check result: FAIL;False;secretsmanager;;informational;secretsmanager;arn:aws:secretsmanager:ap-northeast-1:123456789012:resource-139;resource-139;;;aws;ap-northeast-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.160714;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-1-df3a45d4;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-140 check result: MANUAL;False;sns;;critical;sns;arn:aws:sns:us-east-1:123456789012:resource-140;resource-140;;;aws;us-east-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.160721;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-2-14705628;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-141 check result: PASS;False;sqs;;high;sqs;arn:aws:sqs:us-east-2:123456789012:resource-141;resource-141;;;aws;us-east-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.160730;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-1-fd2fee81;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-142 check result: FAIL;False;ssm;;medium;ssm;arn:aws:ssm:us-west-1:123456789012:resource-142;resource-142;;;aws;us-west-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.160739;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-2-49ed941c;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-143 check result: MANUAL;False;vpc;;low;vpc;arn:aws:vpc:us-west-2:123456789012:resource-143;resource-143;;;aws;us-west-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.160746;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-1-b12f2803;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-144 check result: PASS;False;waf;;informational;waf;arn:aws:waf:eu-west-1:123456789012:resource-144;resource-144;;;aws;eu-west-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 22:17:49.160755;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-eu-west-2-f237d3d9;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;FAIL;Resource resource-145 check result: FAIL;False;accessanalyzer;;critical;accessanalyzer;arn:aws:accessanalyzer:eu-west-2:123456789012:resource-145;resource-145;;;aws;eu-west-2;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.160763;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-eu-central-1-bc9bcc0f;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;MANUAL;Resource resource-146 check result: MANUAL;False;acm;;high;acm;arn:aws:acm:eu-central-1:123456789012:resource-146;resource-146;;;aws;eu-central-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.160771;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-southeast-1-161b90f6;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;PASS;Resource resource-147 check result: PASS;False;apigateway;;medium;apigateway;arn:aws:apigateway:ap-southeast-1:123456789012:resource-147;resource-147;;;aws;ap-southeast-1;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.160780;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-ap-southeast-2-eb559cc7;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;FAIL;Resource resource-148 check result: FAIL;False;cloudfront;;low;cloudfront;arn:aws:cloudfront:ap-southeast-2:123456789012:resource-148;resource-148;;;aws;ap-southeast-2;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.160788;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-northeast-1-896772f3;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;MANUAL;Resource resource-149 check result: MANUAL;False;cloudtrail;;informational;cloudtrail;arn:aws:cloudtrail:ap-northeast-1:123456789012:resource-149;resource-149;;;aws;ap-northeast-1;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.160796;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-1-60e8b041;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-150 check result: PASS;False;cloudwatch;;critical;cloudwatch;arn:aws:cloudwatch:us-east-1:123456789012:resource-150;resource-150;;;aws;us-east-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.160805;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-2-da550bda;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-151 check result: FAIL;False;config;;high;config;arn:aws:config:us-east-2:123456789012:resource-151;resource-151;;;aws;us-east-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.160813;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-west-1-c29b9a1c;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;MANUAL;Resource resource-152 check result: MANUAL;False;dynamodb;;medium;dynamodb;arn:aws:dynamodb:us-west-1:123456789012:resource-152;resource-152;;;aws;us-west-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.160821;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-us-west-2-70bde0e9;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-153 check result: PASS;False;ec2;;low;ec2;arn:aws:ec2:us-west-2:123456789012:resource-153;resource-153;;;aws;us-west-2;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.160829;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-west-1-1400efc9;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;FAIL;Resource resource-154 check result: FAIL;False;ecr;;informational;ecr;arn:aws:ecr:eu-west-1:123456789012:resource-154;resource-154;;;aws;eu-west-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.160837;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-2-b4d34a71;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-155 check result: MANUAL;False;ecs;;critical;ecs;arn:aws:ecs:eu-west-2:123456789012:resource-155;resource-155;;;aws;eu-west-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.160845;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-central-1-2e88a725;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-156 check result: PASS;False;efs;;high;efs;arn:aws:efs:eu-central-1:123456789012:resource-156;resource-156;;;aws;eu-central-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.160854;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-southeast-1-27328fc1;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;FAIL;Resource resource-157 check result: FAIL;False;eks;;medium;eks;arn:aws:eks:ap-southeast-1:123456789012:resource-157;resource-157;;;aws;ap-southeast-1;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.160861;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-2-21559546;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-158 check result: MANUAL;False;elasticache;;low;elasticache;arn:aws:elasticache:ap-southeast-2:123456789012:resource-158;resource-158;;;aws;ap-southeast-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.160869;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-ap-northeast-1-19751565;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;PASS;Resource resource-159 check result: PASS;False;elb;;informational;elb;arn:aws:elb:ap-northeast-1:123456789012:resource-159;resource-159;;;aws;ap-northeast-1;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 07:17:49.160878;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-1-b7a702a6;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-160 check result: FAIL;False;emr;;critical;emr;arn:aws:emr:us-east-1:123456789012:resource-160;resource-160;;;aws;us-east-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.160886;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-east-2-886365af;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-161 check result: MANUAL;False;guardduty;;high;guardduty;arn:aws:guardduty:us-east-2:123456789012:resource-161;resource-161;;;aws;us-east-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.160894;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-us-west-1-44fbf3c5;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-162 check result: PASS;False;iam;;medium;iam;arn:aws:iam:us-west-1:123456789012:resource-162;resource-162;;;aws;us-west-1;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.160902;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-2-9823cb6d;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-163 check result: FAIL;False;kms;;low;kms;arn:aws:kms:us-west-2:123456789012:resource-163;resource-163;;;aws;us-west-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.160910;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-eu-west-1-f8adf208;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;MANUAL;Resource resource-164 check result: MANUAL;False;lambda;;informational;lambda;arn:aws:lambda:eu-west-1:123456789012:resource-164;resource-164;;;aws;eu-west-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.160918;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-eu-west-2-6155965d;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-165 check result: PASS;False;rds;;critical;rds;arn:aws:rds:eu-west-2:123456789012:resource-165;resource-165;;;aws;eu-west-2;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.160926;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-eu-central-1-18490690;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-166 check result: FAIL;False;redshift;;high;redshift;arn:aws:redshift:eu-central-1:123456789012:resource-166;resource-166;;;aws;eu-central-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.160934;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-ap-southeast-1-cf02742c;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-167 check result: MANUAL;False;s3;;medium;s3;arn:aws:s3:ap-southeast-1:123456789012:resource-167;resource-167;;;aws;ap-southeast-1;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.160942;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-2-05425a04;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-168 check result: PASS;False;secretsmanager;;low;secretsmanager;arn:aws:secretsmanager:ap-southeast-2:123456789012:resource-168;resource-168;;;aws;ap-southeast-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.160951;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-northeast-1-21d9cb88;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-169 check result: FAIL;False;sns;;informational;sns;arn:aws:sns:ap-northeast-1:123456789012:resource-169;resource-169;;;aws;ap-northeast-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.160958;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-1-b73b65a2;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-170 check result: MANUAL;False;sqs;;critical;sqs;arn:aws:sqs:us-east-1:123456789012:resource-170;resource-170;;;aws;us-east-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.160966;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-2-b29761ed;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-171 check result: PASS;False;ssm;;high;ssm;arn:aws:ssm:us-east-2:123456789012:resource-171;resource-171;;;aws;us-east-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.160976;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-1-7a71b3f8;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-172 check result: FAIL;False;vpc;;medium;vpc;arn:aws:vpc:us-west-1:123456789012:resource-172;resource-172;;;aws;us-west-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.160986;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-2-bf1fd0e8;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-173 check result: MANUAL;False;waf;;low;waf;arn:aws:waf:us-west-2:123456789012:resource-173;resource-173;;;aws;us-west-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.160994;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-eu-west-1-4f672efb;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;PASS;Resource resource-174 check result: PASS;False;accessanalyzer;;informational;accessanalyzer;arn:aws:accessanalyzer:eu-west-1:123456789012:resource-174;resource-174;;;aws;eu-west-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 16:17:49.161002;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-eu-west-2-cc7a315e;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;FAIL;Resource resource-175 check result: FAIL;False;acm;;critical;acm;arn:aws:acm:eu-west-2:123456789012:resource-175;resource-175;;;aws;eu-west-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.161010;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-central-1-6371353e;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;MANUAL;Resource resource-176 check result: MANUAL;False;apigateway;;high;apigateway;arn:aws:apigateway:eu-central-1:123456789012:resource-176;resource-176;;;aws;eu-central-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.161018;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-southeast-1-8bbcf00e;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;PASS;Resource resource-177 check result: PASS;False;cloudfront;;medium;cloudfront;arn:aws:cloudfront:ap-southeast-1:123456789012:resource-177;resource-177;;;aws;ap-southeast-1;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.161027;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-ap-southeast-2-e41f6bba;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;FAIL;Resource resource-178 check result: FAIL;False;cloudtrail;;low;cloudtrail;arn:aws:cloudtrail:ap-southeast-2:123456789012:resource-178;resource-178;;;aws;ap-southeast-2;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.161035;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-northeast-1-cd31fa14;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-179 check result: MANUAL;False;cloudwatch;;informational;cloudwatch;arn:aws:cloudwatch:ap-northeast-1:123456789012:resource-179;resource-179;;;aws;ap-northeast-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.161043;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-1-11021c12;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-180 check result: PASS;False;config;;critical;config;arn:aws:config:us-east-1:123456789012:resource-180;resource-180;;;aws;us-east-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.161052;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-east-2-22a514af;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;FAIL;Resource resource-181 check result: FAIL;False;dynamodb;;high;dynamodb;arn:aws:dynamodb:us-east-2:123456789012:resource-181;resource-181;;;aws;us-east-2;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.161060;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-us-west-1-71a42184;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-182 check result: MANUAL;False;ec2;;medium;ec2;arn:aws:ec2:us-west-1:123456789012:resource-182;resource-182;;;aws;us-west-1;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.161068;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-west-2-1d32f71e;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;PASS;Resource resource-183 check result: PASS;False;ecr;;low;ecr;arn:aws:ecr:us-west-2:123456789012:resource-183;resource-183;;;aws;us-west-2;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.161077;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-1-cb4bc20c;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-184 check result: FAIL;False;ecs;;informational;ecs;arn:aws:ecs:eu-west-1:123456789012:resource-184;resource-184;;;aws;eu-west-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.161084;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-2-37c25528;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-185 check result: MANUAL;False;efs;;critical;efs;arn:aws:efs:eu-west-2:123456789012:resource-185;resource-185;;;aws;eu-west-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.161093;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-eu-central-1-0ded95ca;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;PASS;Resource resource-186 check result: PASS;False;eks;;high;eks;arn:aws:eks:eu-central-1:123456789012:resource-186;resource-186;;;aws;eu-central-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.161101;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-1-fd098234;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-187 check result: FAIL;False;elasticache;;medium;elasticache;arn:aws:elasticache:ap-southeast-1:123456789012:resource-187;resource-187;;;aws;ap-southeast-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.161109;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-ap-southeast-2-b4646df6;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;MANUAL;Resource resource-188 check result: MANUAL;False;elb;;low;elb;arn:aws:elb:ap-southeast-2:123456789012:resource-188;resource-188;;;aws;ap-southeast-2;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.161117;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-northeast-1-7a338ba8;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-189 check result: PASS;False;emr;;informational;emr;arn:aws:emr:ap-northeast-1:123456789012:resource-189;resource-189;;;aws;ap-northeast-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 01:17:49.161127;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-east-1-66025574;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-190 check result: FAIL;False;guardduty;;critical;guardduty;arn:aws:guardduty:us-east-1:123456789012:resource-190;resource-190;;;aws;us-east-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.161135;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-us-east-2-18d0bb2c;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-191 check result: MANUAL;False;iam;;high;iam;arn:aws:iam:us-east-2:123456789012:resource-191;resource-191;;;aws;us-east-2;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.161143;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-1-665899d2;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-192 check result: PASS;False;kms;;medium;kms;arn:aws:kms:us-west-1:123456789012:resource-192;resource-192;;;aws;us-west-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.161151;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-west-2-cdee269b;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;FAIL;Resource resource-193 check result: FAIL;False;lambda;;low;lambda;arn:aws:lambda:us-west-2:123456789012:resource-193;resource-193;;;aws;us-west-2;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.161160;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-eu-west-1-04427fae;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-194 check result: MANUAL;False;rds;;informational;rds;arn:aws:rds:eu-west-1:123456789012:resource-194;resource-194;;;aws;eu-west-1;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.161167;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-2-a44bec06;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-195 check result: PASS;False;redshift;;critical;redshift;arn:aws:redshift:eu-west-2:123456789012:resource-195;resource-195;;;aws;eu-west-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.161176;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-eu-central-1-4924d28f;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-196 check result: FAIL;False;s3;;high;s3;arn:aws:s3:eu-central-1:123456789012:resource-196;resource-196;;;aws;eu-central-1;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.161184;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-1-857fec20;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-197 check result: MANUAL;False;secretsmanager;;medium;secretsmanager;arn:aws:secretsmanager:ap-southeast-1:123456789012:resource-197;resource-197;;;aws;ap-southeast-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.161192;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-2-577ca575;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-198 check result: PASS;False;sns;;low;sns;arn:aws:sns:ap-southeast-2:123456789012:resource-198;resource-198;;;aws;ap-southeast-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.161200;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-northeast-1-c619dc0b;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-199 check result: FAIL;False;sqs;;informational;sqs;arn:aws:sqs:ap-northeast-1:123456789012:resource-199;resource-199;;;aws;ap-northeast-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.161209;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-1-0e01fe22;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-200 check result: MANUAL;False;ssm;;critical;ssm;arn:aws:ssm:us-east-1:123456789012:resource-200;resource-200;;;aws;us-east-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.161217;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-2-25850984;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-201 check result: PASS;False;vpc;;high;vpc;arn:aws:vpc:us-east-2:123456789012:resource-201;resource-201;;;aws;us-east-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.161226;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-1-048134b3;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-202 check result: FAIL;False;waf;;medium;waf;arn:aws:waf:us-west-1:123456789012:resource-202;resource-202;;;aws;us-west-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.161234;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-us-west-2-7a37fafe;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;MANUAL;Resource resource-203 check result: MANUAL;False;accessanalyzer;;low;accessanalyzer;arn:aws:accessanalyzer:us-west-2:123456789012:resource-203;resource-203;;;aws;us-west-2;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.161242;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-eu-west-1-9a4b235d;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;PASS;Resource resource-204 check result: PASS;False;acm;;informational;acm;arn:aws:acm:eu-west-1:123456789012:resource-204;resource-204;;;aws;eu-west-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 10:17:49.161251;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-eu-west-2-bad265be;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;FAIL;Resource resource-205 check result: FAIL;False;apigateway;;critical;apigateway;arn:aws:apigateway:eu-west-2:123456789012:resource-205;resource-205;;;aws;eu-west-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.161259;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-central-1-53b42492;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;MANUAL;Resource resource-206 check result: MANUAL;False;cloudfront;;high;cloudfront;arn:aws:cloudfront:eu-central-1:123456789012:resource-206;resource-206;;;aws;eu-central-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.161267;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-southeast-1-7e248a0a;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;PASS;Resource resource-207 check result: PASS;False;cloudtrail;;medium;cloudtrail;arn:aws:cloudtrail:ap-southeast-1:123456789012:resource-207;resource-207;;;aws;ap-southeast-1;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.161276;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-2-42f61142;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-208 check result: FAIL;False;cloudwatch;;low;cloudwatch;arn:aws:cloudwatch:ap-southeast-2:123456789012:resource-208;resource-208;;;aws;ap-southeast-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.161285;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-northeast-1-c87d6a3e;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-209 check result: MANUAL;False;config;;informational;config;arn:aws:config:ap-northeast-1:123456789012:resource-209;resource-209;;;aws;ap-northeast-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.161293;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-east-1-d459b405;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;PASS;Resource resource-210 check result: PASS;False;dynamodb;;critical;dynamodb;arn:aws:dynamodb:us-east-1:123456789012:resource-210;resource-210;;;aws;us-east-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.161302;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-us-east-2-6b4998b0;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-211 check result: FAIL;False;ec2;;high;ec2;arn:aws:ec2:us-east-2:123456789012:resource-211;resource-211;;;aws;us-east-2;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.161310;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-west-1-3773f976;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;MANUAL;Resource resource-212 check result: MANUAL;False;ecr;;medium;ecr;arn:aws:ecr:us-west-1:123456789012:resource-212;resource-212;;;aws;us-west-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.161318;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-2-660b324c;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-213 check result: PASS;False;ecs;;low;ecs;arn:aws:ecs:us-west-2:123456789012:resource-213;resource-213;;;aws;us-west-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.161327;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-1-0a64af7f;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-214 check result: FAIL;False;efs;;informational;efs;arn:aws:efs:eu-west-1:123456789012:resource-214;resource-214;;;aws;eu-west-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.161335;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-eu-west-2-41015609;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;MANUAL;Resource resource-215 check result: MANUAL;False;eks;;critical;eks;arn:aws:eks:eu-west-2:123456789012:resource-215;resource-215;;;aws;eu-west-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.161343;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-central-1-102bdec0;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-216 check result: PASS;False;elasticache;;high;elasticache;arn:aws:elasticache:eu-central-1:123456789012:resource-216;resource-216;;;aws;eu-central-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.161352;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-ap-southeast-1-bb91edc2;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;FAIL;Resource resource-217 check result: FAIL;False;elb;;medium;elb;arn:aws:elb:ap-southeast-1:123456789012:resource-217;resource-217;;;aws;ap-southeast-1;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.161360;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-2-10ad3156;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-218 check result: MANUAL;False;emr;;low;emr;arn:aws:emr:ap-southeast-2:123456789012:resource-218;resource-218;;;aws;ap-southeast-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.161368;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-ap-northeast-1-a82f2f98;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-219 check result: PASS;False;guardduty;;informational;guardduty;arn:aws:guardduty:ap-northeast-1:123456789012:resource-219;resource-219;;;aws;ap-northeast-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 19:17:49.161377;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-us-east-1-38d32661;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-220 check result: FAIL;False;iam;;critical;iam;arn:aws:iam:us-east-1:123456789012:resource-220;resource-220;;;aws;us-east-1;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.161385;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-2-14388503;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-221 check result: MANUAL;False;kms;;high;kms;arn:aws:kms:us-east-2:123456789012:resource-221;resource-221;;;aws;us-east-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.161393;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-us-west-1-d5af88c1;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;PASS;Resource resource-222 check result: PASS;False;lambda;;medium;lambda;arn:aws:lambda:us-west-1:123456789012:resource-222;resource-222;;;aws;us-west-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.161402;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-us-west-2-9c368bf6;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-223 check result: FAIL;False;rds;;low;rds;arn:aws:rds:us-west-2:123456789012:resource-223;resource-223;;;aws;us-west-2;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.161410;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-1-f9193333;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-224 check result: MANUAL;False;redshift;;informational;redshift;arn:aws:redshift:eu-west-1:123456789012:resource-224;resource-224;;;aws;eu-west-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.161419;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-eu-west-2-47af0530;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-225 check result: PASS;False;s3;;critical;s3;arn:aws:s3:eu-west-2:123456789012:resource-225;resource-225;;;aws;eu-west-2;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.161428;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-central-1-9f25b696;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-226 check result: FAIL;False;secretsmanager;;high;secretsmanager;arn:aws:secretsmanager:eu-central-1:123456789012:resource-226;resource-226;;;aws;eu-central-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.161436;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-1-a2149fd8;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-227 check result: MANUAL;False;sns;;medium;sns;arn:aws:sns:ap-southeast-1:123456789012:resource-227;resource-227;;;aws;ap-southeast-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.161445;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-2-b19ffb29;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-228 check result: PASS;False;sqs;;low;sqs;arn:aws:sqs:ap-southeast-2:123456789012:resource-228;resource-228;;;aws;ap-southeast-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.161453;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-ap-northeast-1-e3216992;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-229 check result: FAIL;False;ssm;;informational;ssm;arn:aws:ssm:ap-northeast-1:123456789012:resource-229;resource-229;;;aws;ap-northeast-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.161461;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-1-2fb8c065;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-230 check result: MANUAL;False;vpc;;critical;vpc;arn:aws:vpc:us-east-1:123456789012:resource-230;resource-230;;;aws;us-east-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.161469;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-2-33b75905;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-231 check result: PASS;False;waf;;high;waf;arn:aws:waf:us-east-2:123456789012:resource-231;resource-231;;;aws;us-east-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.161478;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-us-west-1-c9f8ee98;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;FAIL;Resource resource-232 check result: FAIL;False;accessanalyzer;;medium;accessanalyzer;arn:aws:accessanalyzer:us-west-1:123456789012:resource-232;resource-232;;;aws;us-west-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.161487;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-west-2-a3e1f0a9;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;MANUAL;Resource resource-233 check result: MANUAL;False;acm;;low;acm;arn:aws:acm:us-west-2:123456789012:resource-233;resource-233;;;aws;us-west-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.161495;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-west-1-000aa3f1;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;PASS;Resource resource-234 check result: PASS;False;apigateway;;informational;apigateway;arn:aws:apigateway:eu-west-1:123456789012:resource-234;resource-234;;;aws;eu-west-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 04:17:49.161504;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-eu-west-2-f80d3a8e;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;FAIL;Resource resource-235 check result: FAIL;False;cloudfront;;critical;cloudfront;arn:aws:cloudfront:eu-west-2:123456789012:resource-235;resource-235;;;aws;eu-west-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.161512;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-central-1-08a9661b;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;MANUAL;Resource resource-236 check result: MANUAL;False;cloudtrail;;high;cloudtrail;arn:aws:cloudtrail:eu-central-1:123456789012:resource-236;resource-236;;;aws;eu-central-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.161520;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-1-757d0725;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-237 check result: PASS;False;cloudwatch;;medium;cloudwatch;arn:aws:cloudwatch:ap-southeast-1:123456789012:resource-237;resource-237;;;aws;ap-southeast-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.161529;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-2-37aadd0b;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-238 check result: FAIL;False;config;;low;config;arn:aws:config:ap-southeast-2:123456789012:resource-238;resource-238;;;aws;ap-southeast-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.161537;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-northeast-1-9f170753;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;MANUAL;Resource resource-239 check result: MANUAL;False;dynamodb;;informational;dynamodb;arn:aws:dynamodb:ap-northeast-1:123456789012:resource-239;resource-239;;;aws;ap-northeast-1;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.161546;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-us-east-1-5d4e0d43;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-240 check result: PASS;False;ec2;;critical;ec2;arn:aws:ec2:us-east-1:123456789012:resource-240;resource-240;;;aws;us-east-1;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.161554;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-east-2-220da85f;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;FAIL;Resource resource-241 check result: FAIL;False;ecr;;high;ecr;arn:aws:ecr:us-east-2:123456789012:resource-241;resource-241;;;aws;us-east-2;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.161562;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-1-9843a168;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-242 check result: MANUAL;False;ecs;;medium;ecs;arn:aws:ecs:us-west-1:123456789012:resource-242;resource-242;;;aws;us-west-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.161571;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-2-58a7e40f;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-243 check result: PASS;False;efs;;low;efs;arn:aws:efs:us-west-2:123456789012:resource-243;resource-243;;;aws;us-west-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.161580;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-eu-west-1-20801554;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;FAIL;Resource resource-244 check result: FAIL;False;eks;;informational;eks;arn:aws:eks:eu-west-1:123456789012:resource-244;resource-244;;;aws;eu-west-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.161588;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-2-6bdb01b5;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-245 check result: MANUAL;False;elasticache;;critical;elasticache;arn:aws:elasticache:eu-west-2:123456789012:resource-245;resource-245;;;aws;eu-west-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.161596;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-eu-central-1-478b66bc;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;PASS;Resource resource-246 check result: PASS;False;elb;;high;elb;arn:aws:elb:eu-central-1:123456789012:resource-246;resource-246;;;aws;eu-central-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.161605;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-1-b0fc552d;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-247 check result: FAIL;False;emr;;medium;emr;arn:aws:emr:ap-southeast-1:123456789012:resource-247;resource-247;;;aws;ap-southeast-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.161613;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-2-28e44ffd;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-248 check result: MANUAL;False;guardduty;;low;guardduty;arn:aws:guardduty:ap-southeast-2:123456789012:resource-248;resource-248;;;aws;ap-southeast-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.161621;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-ap-northeast-1-d0ec5d85;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-249 check result: PASS;False;iam;;informational;iam;arn:aws:iam:ap-northeast-1:123456789012:resource-249;resource-249;;;aws;ap-northeast-1;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 13:17:49.161630;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-1-8cd75310;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-250 check result: FAIL;False;kms;;critical;kms;arn:aws:kms:us-east-1:123456789012:resource-250;resource-250;;;aws;us-east-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.161638;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-east-2-f23065a3;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;MANUAL;Resource resource-251 check result: MANUAL;False;lambda;;high;lambda;arn:aws:lambda:us-east-2:123456789012:resource-251;resource-251;;;aws;us-east-2;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.161646;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-us-west-1-7cf52059;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-252 check result: PASS;False;rds;;medium;rds;arn:aws:rds:us-west-1:123456789012:resource-252;resource-252;;;aws;us-west-1;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.161655;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-2-8af9281a;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-253 check result: FAIL;False;redshift;;low;redshift;arn:aws:redshift:us-west-2:123456789012:resource-253;resource-253;;;aws;us-west-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.161663;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-eu-west-1-0db1ccd6;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-254 check result: MANUAL;False;s3;;informational;s3;arn:aws:s3:eu-west-1:123456789012:resource-254;resource-254;;;aws;eu-west-1;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.161671;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-2-5ee91713;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-255 check result: PASS;False;secretsmanager;;critical;secretsmanager;arn:aws:secretsmanager:eu-west-2:123456789012:resource-255;resource-255;;;aws;eu-west-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.161680;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-central-1-20128670;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-256 check result: FAIL;False;sns;;high;sns;arn:aws:sns:eu-central-1:123456789012:resource-256;resource-256;;;aws;eu-central-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.161688;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-1-cbf6916e;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-257 check result: MANUAL;False;sqs;;medium;sqs;arn:aws:sqs:ap-southeast-1:123456789012:resource-257;resource-257;;;aws;ap-southeast-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.161697;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-2-ab3e8f69;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-258 check result: PASS;False;ssm;;low;ssm;arn:aws:ssm:ap-southeast-2:123456789012:resource-258;resource-258;;;aws;ap-southeast-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.161707;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-northeast-1-fa76439e;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-259 check result: FAIL;False;vpc;;informational;vpc;arn:aws:vpc:ap-northeast-1:123456789012:resource-259;resource-259;;;aws;ap-northeast-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.161715;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-1-d93d3be7;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-260 check result: MANUAL;False;waf;;critical;waf;arn:aws:waf:us-east-1:123456789012:resource-260;resource-260;;;aws;us-east-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.161725;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-us-east-2-0cfa64e2;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;PASS;Resource resource-261 check result: PASS;False;accessanalyzer;;high;accessanalyzer;arn:aws:accessanalyzer:us-east-2:123456789012:resource-261;resource-261;;;aws;us-east-2;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.161734;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-us-west-1-e8a96200;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;FAIL;Resource resource-262 check result: FAIL;False;acm;;medium;acm;arn:aws:acm:us-west-1:123456789012:resource-262;resource-262;;;aws;us-west-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.161742;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-west-2-53a21bb4;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;MANUAL;Resource resource-263 check result: MANUAL;False;apigateway;;low;apigateway;arn:aws:apigateway:us-west-2:123456789012:resource-263;resource-263;;;aws;us-west-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.161750;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-west-1-18847ed6;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;PASS;Resource resource-264 check result: PASS;False;cloudfront;;informational;cloudfront;arn:aws:cloudfront:eu-west-1:123456789012:resource-264;resource-264;;;aws;eu-west-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 22:17:49.161759;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-eu-west-2-a785b130;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;FAIL;Resource resource-265 check result: FAIL;False;cloudtrail;;critical;cloudtrail;arn:aws:cloudtrail:eu-west-2:123456789012:resource-265;resource-265;;;aws;eu-west-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.161767;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-central-1-a656ea7a;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-266 check result: MANUAL;False;cloudwatch;;high;cloudwatch;arn:aws:cloudwatch:eu-central-1:123456789012:resource-266;resource-266;;;aws;eu-central-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.161776;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-1-54654e5b;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-267 check result: PASS;False;config;;medium;config;arn:aws:config:ap-southeast-1:123456789012:resource-267;resource-267;;;aws;ap-southeast-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.161785;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-ap-southeast-2-fc6b8926;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;FAIL;Resource resource-268 check result: FAIL;False;dynamodb;;low;dynamodb;arn:aws:dynamodb:ap-southeast-2:123456789012:resource-268;resource-268;;;aws;ap-southeast-2;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.161793;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-ap-northeast-1-e16f64ad;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-269 check result: MANUAL;False;ec2;;informational;ec2;arn:aws:ec2:ap-northeast-1:123456789012:resource-269;resource-269;;;aws;ap-northeast-1;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.161801;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-east-1-3c66d3dd;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;PASS;Resource resource-270 check result: PASS;False;ecr;;critical;ecr;arn:aws:ecr:us-east-1:123456789012:resource-270;resource-270;;;aws;us-east-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.161811;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-2-c76ca7ba;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-271 check result: FAIL;False;ecs;;high;ecs;arn:aws:ecs:us-east-2:123456789012:resource-271;resource-271;;;aws;us-east-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.161819;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-1-e33974c3;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-272 check result: MANUAL;False;efs;;medium;efs;arn:aws:efs:us-west-1:123456789012:resource-272;resource-272;;;aws;us-west-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.161827;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-west-2-b42648fe;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;PASS;Resource resource-273 check result: PASS;False;eks;;low;eks;arn:aws:eks:us-west-2:123456789012:resource-273;resource-273;;;aws;us-west-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.161836;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-1-190c9d60;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-274 check result: FAIL;False;elasticache;;informational;elasticache;arn:aws:elasticache:eu-west-1:123456789012:resource-274;resource-274;;;aws;eu-west-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.161844;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-eu-west-2-049a2459;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;MANUAL;Resource resource-275 check result: MANUAL;False;elb;;critical;elb;arn:aws:elb:eu-west-2:123456789012:resource-275;resource-275;;;aws;eu-west-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.161852;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-central-1-5f090c96;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-276 check result: PASS;False;emr;;high;emr;arn:aws:emr:eu-central-1:123456789012:resource-276;resource-276;;;aws;eu-central-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.161863;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-1-d8c68387;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-277 check result: FAIL;False;guardduty;;medium;guardduty;arn:aws:guardduty:ap-southeast-1:123456789012:resource-277;resource-277;;;aws;ap-southeast-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.161872;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-ap-southeast-2-c4fead4a;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-278 check result: MANUAL;False;iam;;low;iam;arn:aws:iam:ap-southeast-2:123456789012:resource-278;resource-278;;;aws;ap-southeast-2;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.161882;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-northeast-1-afa71b43;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-279 check result: PASS;False;kms;;informational;kms;arn:aws:kms:ap-northeast-1:123456789012:resource-279;resource-279;;;aws;ap-northeast-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 07:17:49.161890;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-us-east-1-98c48aec;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;FAIL;Resource resource-280 check result: FAIL;False;lambda;;critical;lambda;arn:aws:lambda:us-east-1:123456789012:resource-280;resource-280;;;aws;us-east-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.161899;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-us-east-2-0cc88892;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-281 check result: MANUAL;False;rds;;high;rds;arn:aws:rds:us-east-2:123456789012:resource-281;resource-281;;;aws;us-east-2;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.161907;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-1-fb4be5cf;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-282 check result: PASS;False;redshift;;medium;redshift;arn:aws:redshift:us-west-1:123456789012:resource-282;resource-282;;;aws;us-west-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.161916;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-us-west-2-2bba0572;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-283 check result: FAIL;False;s3;;low;s3;arn:aws:s3:us-west-2:123456789012:resource-283;resource-283;;;aws;us-west-2;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.161924;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-1-491871ce;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-284 check result: MANUAL;False;secretsmanager;;informational;secretsmanager;arn:aws:secretsmanager:eu-west-1:123456789012:resource-284;resource-284;;;aws;eu-west-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.161933;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-2-a631db2d;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-285 check result: PASS;False;sns;;critical;sns;arn:aws:sns:eu-west-2:123456789012:resource-285;resource-285;;;aws;eu-west-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.161942;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-central-1-af19a1a6;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-286 check result: FAIL;False;sqs;;high;sqs;arn:aws:sqs:eu-central-1:123456789012:resource-286;resource-286;;;aws;eu-central-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.161950;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-1-d29a1c21;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-287 check result: MANUAL;False;ssm;;medium;ssm;arn:aws:ssm:ap-southeast-1:123456789012:resource-287;resource-287;;;aws;ap-southeast-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.161960;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-2-7b8896d5;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-288 check result: PASS;False;vpc;;low;vpc;arn:aws:vpc:ap-southeast-2:123456789012:resource-288;resource-288;;;aws;ap-southeast-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.161968;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-northeast-1-a74bc1ef;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-289 check result: FAIL;False;waf;;informational;waf;arn:aws:waf:ap-northeast-1:123456789012:resource-289;resource-289;;;aws;ap-northeast-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.161977;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-us-east-1-a823a5b8;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;MANUAL;Resource resource-290 check result: MANUAL;False;accessanalyzer;;critical;accessanalyzer;arn:aws:accessanalyzer:us-east-1:123456789012:resource-290;resource-290;;;aws;us-east-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.161985;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-east-2-4c2f7e90;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;PASS;Resource resource-291 check result: PASS;False;acm;;high;acm;arn:aws:acm:us-east-2:123456789012:resource-291;resource-291;;;aws;us-east-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.161994;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-west-1-a467d2dc;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;FAIL;Resource resource-292 check result: FAIL;False;apigateway;;medium;apigateway;arn:aws:apigateway:us-west-1:123456789012:resource-292;resource-292;;;aws;us-west-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.162002;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-west-2-7dff5c52;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;MANUAL;Resource resource-293 check result: MANUAL;False;cloudfront;;low;cloudfront;arn:aws:cloudfront:us-west-2:123456789012:resource-293;resource-293;;;aws;us-west-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.162013;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-west-1-3f602925;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;PASS;Resource resource-294 check result: PASS;False;cloudtrail;;informational;cloudtrail;arn:aws:cloudtrail:eu-west-1:123456789012:resource-294;resource-294;;;aws;eu-west-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 16:17:49.162022;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-2-2c535544;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-295 check result: FAIL;False;cloudwatch;;critical;cloudwatch;arn:aws:cloudwatch:eu-west-2:123456789012:resource-295;resource-295;;;aws;eu-west-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.162031;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-central-1-c777631c;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-296 check result: MANUAL;False;config;;high;config;arn:aws:config:eu-central-1:123456789012:resource-296;resource-296;;;aws;eu-central-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.162039;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-southeast-1-6de7170c;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;PASS;Resource resource-297 check result: PASS;False;dynamodb;;medium;dynamodb;arn:aws:dynamodb:ap-southeast-1:123456789012:resource-297;resource-297;;;aws;ap-southeast-1;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.162048;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-ap-southeast-2-6f794c14;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-298 check result: FAIL;False;ec2;;low;ec2;arn:aws:ec2:ap-southeast-2:123456789012:resource-298;resource-298;;;aws;ap-southeast-2;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.162056;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-northeast-1-7a302917;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;MANUAL;Resource resource-299 check result: MANUAL;False;ecr;;informational;ecr;arn:aws:ecr:ap-northeast-1:123456789012:resource-299;resource-299;;;aws;ap-northeast-1;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.162064;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-1-e0175122;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-300 check result: PASS;False;ecs;;critical;ecs;arn:aws:ecs:us-east-1:123456789012:resource-300;resource-300;;;aws;us-east-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.162073;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-2-20bf2e70;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-301 check result: FAIL;False;efs;;high;efs;arn:aws:efs:us-east-2:123456789012:resource-301;resource-301;;;aws;us-east-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.162081;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-us-west-1-ab7db897;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;MANUAL;Resource resource-302 check result: MANUAL;False;eks;;medium;eks;arn:aws:eks:us-west-1:123456789012:resource-302;resource-302;;;aws;us-west-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.162089;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-2-30113364;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-303 check result: PASS;False;elasticache;;low;elasticache;arn:aws:elasticache:us-west-2:123456789012:resource-303;resource-303;;;aws;us-west-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.162099;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-eu-west-1-5d593553;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;FAIL;Resource resource-304 check result: FAIL;False;elb;;informational;elb;arn:aws:elb:eu-west-1:123456789012:resource-304;resource-304;;;aws;eu-west-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.162107;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-2-5f5948e7;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-305 check result: MANUAL;False;emr;;critical;emr;arn:aws:emr:eu-west-2:123456789012:resource-305;resource-305;;;aws;eu-west-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.162115;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-central-1-7e511ed6;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-306 check result: PASS;False;guardduty;;high;guardduty;arn:aws:guardduty:eu-central-1:123456789012:resource-306;resource-306;;;aws;eu-central-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.162124;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-ap-southeast-1-ad374cbd;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-307 check result: FAIL;False;iam;;medium;iam;arn:aws:iam:ap-southeast-1:123456789012:resource-307;resource-307;;;aws;ap-southeast-1;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.162132;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-2-17cf7f5b;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-308 check result: MANUAL;False;kms;;low;kms;arn:aws:kms:ap-southeast-2:123456789012:resource-308;resource-308;;;aws;ap-southeast-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.162140;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-northeast-1-d5c7c828;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;PASS;Resource resource-309 check result: PASS;False;lambda;;informational;lambda;arn:aws:lambda:ap-northeast-1:123456789012:resource-309;resource-309;;;aws;ap-northeast-1;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 01:17:49.162149;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-us-east-1-f8b7f333;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-310 check result: FAIL;False;rds;;critical;rds;arn:aws:rds:us-east-1:123456789012:resource-310;resource-310;;;aws;us-east-1;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.162157;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-2-7849bbd8;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-311 check result: MANUAL;False;redshift;;high;redshift;arn:aws:redshift:us-east-2:123456789012:resource-311;resource-311;;;aws;us-east-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.162165;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-us-west-1-014f81d1;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-312 check result: PASS;False;s3;;medium;s3;arn:aws:s3:us-west-1:123456789012:resource-312;resource-312;;;aws;us-west-1;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.162174;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-2-52e28d4b;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-313 check result: FAIL;False;secretsmanager;;low;secretsmanager;arn:aws:secretsmanager:us-west-2:123456789012:resource-313;resource-313;;;aws;us-west-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.162182;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-1-417712d7;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-314 check result: MANUAL;False;sns;;informational;sns;arn:aws:sns:eu-west-1:123456789012:resource-314;resource-314;;;aws;eu-west-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.162190;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-2-78a10acf;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-315 check result: PASS;False;sqs;;critical;sqs;arn:aws:sqs:eu-west-2:123456789012:resource-315;resource-315;;;aws;eu-west-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.162198;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-central-1-055a1d86;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-316 check result: FAIL;False;ssm;;high;ssm;arn:aws:ssm:eu-central-1:123456789012:resource-316;resource-316;;;aws;eu-central-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.162206;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-1-c164d3bd;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-317 check result: MANUAL;False;vpc;;medium;vpc;arn:aws:vpc:ap-southeast-1:123456789012:resource-317;resource-317;;;aws;ap-southeast-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.162214;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-2-a9d5fac3;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-318 check result: PASS;False;waf;;low;waf;arn:aws:waf:ap-southeast-2:123456789012:resource-318;resource-318;;;aws;ap-southeast-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.162223;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-ap-northeast-1-99ec83b3;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;FAIL;Resource resource-319 check result: FAIL;False;accessanalyzer;;informational;accessanalyzer;arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-319;resource-319;;;aws;ap-northeast-1;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.162231;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-us-east-1-8b655935;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;MANUAL;Resource resource-320 check result: MANUAL;False;acm;;critical;acm;arn:aws:acm:us-east-1:123456789012:resource-320;resource-320;;;aws;us-east-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.162239;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-east-2-64de2a44;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;PASS;Resource resource-321 check result: PASS;False;apigateway;;high;apigateway;arn:aws:apigateway:us-east-2:123456789012:resource-321;resource-321;;;aws;us-east-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.162248;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-west-1-caf63f5c;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;FAIL;Resource resource-322 check result: FAIL;False;cloudfront;;medium;cloudfront;arn:aws:cloudfront:us-west-1:123456789012:resource-322;resource-322;;;aws;us-west-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.162256;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-west-2-da272471;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;MANUAL;Resource resource-323 check result: MANUAL;False;cloudtrail;;low;cloudtrail;arn:aws:cloudtrail:us-west-2:123456789012:resource-323;resource-323;;;aws;us-west-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.162265;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-1-f41e2ce4;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-324 check result: PASS;False;cloudwatch;;informational;cloudwatch;arn:aws:cloudwatch:eu-west-1:123456789012:resource-324;resource-324;;;aws;eu-west-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 10:17:49.162274;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-2-786a2202;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-325 check result: FAIL;False;config;;critical;config;arn:aws:config:eu-west-2:123456789012:resource-325;resource-325;;;aws;eu-west-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.162282;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-central-1-8945d7aa;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;MANUAL;Resource resource-326 check result: MANUAL;False;dynamodb;;high;dynamodb;arn:aws:dynamodb:eu-central-1:123456789012:resource-326;resource-326;;;aws;eu-central-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.162290;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-ap-southeast-1-ac6d8911;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-327 check result: PASS;False;ec2;;medium;ec2;arn:aws:ec2:ap-southeast-1:123456789012:resource-327;resource-327;;;aws;ap-southeast-1;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.162299;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-ap-southeast-2-6067fc5e;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;FAIL;Resource resource-328 check result: FAIL;False;ecr;;low;ecr;arn:aws:ecr:ap-southeast-2:123456789012:resource-328;resource-328;;;aws;ap-southeast-2;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.162307;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-northeast-1-cf1437ce;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-329 check result: MANUAL;False;ecs;;informational;ecs;arn:aws:ecs:ap-northeast-1:123456789012:resource-329;resource-329;;;aws;ap-northeast-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.162316;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-1-41691398;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-330 check result: PASS;False;efs;;critical;efs;arn:aws:efs:us-east-1:123456789012:resource-330;resource-330;;;aws;us-east-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.162324;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-east-2-3b8589c0;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;FAIL;Resource resource-331 check result: FAIL;False;eks;;high;eks;arn:aws:eks:us-east-2:123456789012:resource-331;resource-331;;;aws;us-east-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.162333;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-1-fa45d634;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-332 check result: MANUAL;False;elasticache;;medium;elasticache;arn:aws:elasticache:us-west-1:123456789012:resource-332;resource-332;;;aws;us-west-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.162341;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-us-west-2-8729d22f;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;PASS;Resource resource-333 check result: PASS;False;elb;;low;elb;arn:aws:elb:us-west-2:123456789012:resource-333;resource-333;;;aws;us-west-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.162349;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-1-ce39c44f;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-334 check result: FAIL;False;emr;;informational;emr;arn:aws:emr:eu-west-1:123456789012:resource-334;resource-334;;;aws;eu-west-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.162357;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-west-2-48c4eb21;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-335 check result: MANUAL;False;guardduty;;critical;guardduty;arn:aws:guardduty:eu-west-2:123456789012:resource-335;resource-335;;;aws;eu-west-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.162366;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-eu-central-1-d4875b75;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-336 check result: PASS;False;iam;;high;iam;arn:aws:iam:eu-central-1:123456789012:resource-336;resource-336;;;aws;eu-central-1;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.162375;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-1-b7e2b779;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-337 check result: FAIL;False;kms;;medium;kms;arn:aws:kms:ap-southeast-1:123456789012:resource-337;resource-337;;;aws;ap-southeast-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.162383;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-ap-southeast-2-272b54f8;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;MANUAL;Resource resource-338 check result: MANUAL;False;lambda;;low;lambda;arn:aws:lambda:ap-southeast-2:123456789012:resource-338;resource-338;;;aws;ap-southeast-2;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.162391;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-ap-northeast-1-fbc54e1a;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-339 check result: PASS;False;rds;;informational;rds;arn:aws:rds:ap-northeast-1:123456789012:resource-339;resource-339;;;aws;ap-northeast-1;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 19:17:49.162401;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-1-93771c42;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-340 check result: FAIL;False;redshift;;critical;redshift;arn:aws:redshift:us-east-1:123456789012:resource-340;resource-340;;;aws;us-east-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.162409;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-us-east-2-659e668f;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-341 check result: MANUAL;False;s3;;high;s3;arn:aws:s3:us-east-2:123456789012:resource-341;resource-341;;;aws;us-east-2;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.162418;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-1-dfbe4498;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-342 check result: PASS;False;secretsmanager;;medium;secretsmanager;arn:aws:secretsmanager:us-west-1:123456789012:resource-342;resource-342;;;aws;us-west-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.162426;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-2-a00e1db5;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-343 check result: FAIL;False;sns;;low;sns;arn:aws:sns:us-west-2:123456789012:resource-343;resource-343;;;aws;us-west-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.162435;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-1-8d20e43f;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-344 check result: MANUAL;False;sqs;;informational;sqs;arn:aws:sqs:eu-west-1:123456789012:resource-344;resource-344;;;aws;eu-west-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.162443;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-2-f17a1f70;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-345 check result: PASS;False;ssm;;critical;ssm;arn:aws:ssm:eu-west-2:123456789012:resource-345;resource-345;;;aws;eu-west-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.162452;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-eu-central-1-e3c1b656;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-346 check result: FAIL;False;vpc;;high;vpc;arn:aws:vpc:eu-central-1:123456789012:resource-346;resource-346;;;aws;eu-central-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.162460;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-1-180f4c5f;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-347 check result: MANUAL;False;waf;;medium;waf;arn:aws:waf:ap-southeast-1:123456789012:resource-347;resource-347;;;aws;ap-southeast-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.162468;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-ap-southeast-2-b3233418;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;PASS;Resource resource-348 check result: PASS;False;accessanalyzer;;low;accessanalyzer;arn:aws:accessanalyzer:ap-southeast-2:123456789012:resource-348;resource-348;;;aws;ap-southeast-2;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.162477;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-northeast-1-d08bbb82;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;FAIL;Resource resource-349 check result: FAIL;False;acm;;informational;acm;arn:aws:acm:ap-northeast-1:123456789012:resource-349;resource-349;;;aws;ap-northeast-1;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.162485;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-east-1-0a428382;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;MANUAL;Resource resource-350 check result: MANUAL;False;apigateway;;critical;apigateway;arn:aws:apigateway:us-east-1:123456789012:resource-350;resource-350;;;aws;us-east-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.162493;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-east-2-66e40292;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;PASS;Resource resource-351 check result: PASS;False;cloudfront;;high;cloudfront;arn:aws:cloudfront:us-east-2:123456789012:resource-351;resource-351;;;aws;us-east-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.162503;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-west-1-9e5c567f;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;FAIL;Resource resource-352 check result: FAIL;False;cloudtrail;;medium;cloudtrail;arn:aws:cloudtrail:us-west-1:123456789012:resource-352;resource-352;;;aws;us-west-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.162511;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-2-8664be64;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-353 check result: MANUAL;False;cloudwatch;;low;cloudwatch;arn:aws:cloudwatch:us-west-2:123456789012:resource-353;resource-353;;;aws;us-west-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.162519;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-1-28e05b50;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-354 check result: PASS;False;config;;informational;config;arn:aws:config:eu-west-1:123456789012:resource-354;resource-354;;;aws;eu-west-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 04:17:49.162528;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-eu-west-2-49457df1;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;FAIL;Resource resource-355 check result: FAIL;False;dynamodb;;critical;dynamodb;arn:aws:dynamodb:eu-west-2:123456789012:resource-355;resource-355;;;aws;eu-west-2;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.162537;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-eu-central-1-b47f3f03;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-356 check result: MANUAL;False;ec2;;high;ec2;arn:aws:ec2:eu-central-1:123456789012:resource-356;resource-356;;;aws;eu-central-1;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.162545;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-southeast-1-4ca35c7a;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;PASS;Resource resource-357 check result: PASS;False;ecr;;medium;ecr;arn:aws:ecr:ap-southeast-1:123456789012:resource-357;resource-357;;;aws;ap-southeast-1;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.162553;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-2-ae124ae4;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-358 check result: FAIL;False;ecs;;low;ecs;arn:aws:ecs:ap-southeast-2:123456789012:resource-358;resource-358;;;aws;ap-southeast-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.162562;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-northeast-1-8f285d5b;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-359 check result: MANUAL;False;efs;;informational;efs;arn:aws:efs:ap-northeast-1:123456789012:resource-359;resource-359;;;aws;ap-northeast-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.162570;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-us-east-1-7d2a8e2a;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;PASS;Resource resource-360 check result: PASS;False;eks;;critical;eks;arn:aws:eks:us-east-1:123456789012:resource-360;resource-360;;;aws;us-east-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.162580;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-2-ea2ca40d;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-361 check result: FAIL;False;elasticache;;high;elasticache;arn:aws:elasticache:us-east-2:123456789012:resource-361;resource-361;;;aws;us-east-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.162588;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-us-west-1-cc7bd614;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;MANUAL;Resource resource-362 check result: MANUAL;False;elb;;medium;elb;arn:aws:elb:us-west-1:123456789012:resource-362;resource-362;;;aws;us-west-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.162596;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-2-4ea36066;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-363 check result: PASS;False;emr;;low;emr;arn:aws:emr:us-west-2:123456789012:resource-363;resource-363;;;aws;us-west-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.162605;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-west-1-11558714;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-364 check result: FAIL;False;guardduty;;informational;guardduty;arn:aws:guardduty:eu-west-1:123456789012:resource-364;resource-364;;;aws;eu-west-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.162613;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-eu-west-2-b637a166;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-365 check result: MANUAL;False;iam;;critical;iam;arn:aws:iam:eu-west-2:123456789012:resource-365;resource-365;;;aws;eu-west-2;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.162621;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-central-1-098d78f4;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-366 check result: PASS;False;kms;;high;kms;arn:aws:kms:eu-central-1:123456789012:resource-366;resource-366;;;aws;eu-central-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.162629;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-southeast-1-f795fb0c;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;FAIL;Resource resource-367 check result: FAIL;False;lambda;;medium;lambda;arn:aws:lambda:ap-southeast-1:123456789012:resource-367;resource-367;;;aws;ap-southeast-1;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.162639;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-ap-southeast-2-5bcdc15a;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-368 check result: MANUAL;False;rds;;low;rds;arn:aws:rds:ap-southeast-2:123456789012:resource-368;resource-368;;;aws;ap-southeast-2;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.162647;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-ap-northeast-1-13e7d162;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-369 check result: PASS;False;redshift;;informational;redshift;arn:aws:redshift:ap-northeast-1:123456789012:resource-369;resource-369;;;aws;ap-northeast-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 13:17:49.162656;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-us-east-1-9be92cb7;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-370 check result: FAIL;False;s3;;critical;s3;arn:aws:s3:us-east-1:123456789012:resource-370;resource-370;;;aws;us-east-1;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.162664;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-2-7ec84f55;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-371 check result: MANUAL;False;secretsmanager;;high;secretsmanager;arn:aws:secretsmanager:us-east-2:123456789012:resource-371;resource-371;;;aws;us-east-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.162672;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-1-ec5b9e81;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-372 check result: PASS;False;sns;;medium;sns;arn:aws:sns:us-west-1:123456789012:resource-372;resource-372;;;aws;us-west-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.162680;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-2-73e400d1;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-373 check result: FAIL;False;sqs;;low;sqs;arn:aws:sqs:us-west-2:123456789012:resource-373;resource-373;;;aws;us-west-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.162688;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-1-9c7c8dae;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-374 check result: MANUAL;False;ssm;;informational;ssm;arn:aws:ssm:eu-west-1:123456789012:resource-374;resource-374;;;aws;eu-west-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.162696;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-2-931b1405;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-375 check result: PASS;False;vpc;;critical;vpc;arn:aws:vpc:eu-west-2:123456789012:resource-375;resource-375;;;aws;eu-west-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.162704;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-central-1-dbdd0132;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-376 check result: FAIL;False;waf;;high;waf;arn:aws:waf:eu-central-1:123456789012:resource-376;resource-376;;;aws;eu-central-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.162714;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-ap-southeast-1-6e32783c;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;MANUAL;Resource resource-377 check result: MANUAL;False;accessanalyzer;;medium;accessanalyzer;arn:aws:accessanalyzer:ap-southeast-1:123456789012:resource-377;resource-377;;;aws;ap-southeast-1;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.162723;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-ap-southeast-2-475051d7;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;PASS;Resource resource-378 check result: PASS;False;acm;;low;acm;arn:aws:acm:ap-southeast-2:123456789012:resource-378;resource-378;;;aws;ap-southeast-2;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.162731;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-northeast-1-4c37fd43;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;FAIL;Resource resource-379 check result: FAIL;False;apigateway;;informational;apigateway;arn:aws:apigateway:ap-northeast-1:123456789012:resource-379;resource-379;;;aws;ap-northeast-1;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.162739;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-east-1-605a7cd6;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;MANUAL;Resource resource-380 check result: MANUAL;False;cloudfront;;critical;cloudfront;arn:aws:cloudfront:us-east-1:123456789012:resource-380;resource-380;;;aws;us-east-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.162747;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-east-2-13f53460;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;PASS;Resource resource-381 check result: PASS;False;cloudtrail;;high;cloudtrail;arn:aws:cloudtrail:us-east-2:123456789012:resource-381;resource-381;;;aws;us-east-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.162755;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-1-fd361ff1;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-382 check result: FAIL;False;cloudwatch;;medium;cloudwatch;arn:aws:cloudwatch:us-west-1:123456789012:resource-382;resource-382;;;aws;us-west-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.162763;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-2-1ddcb56f;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-383 check result: MANUAL;False;config;;low;config;arn:aws:config:us-west-2:123456789012:resource-383;resource-383;;;aws;us-west-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.162771;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-west-1-3ef3cdba;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;PASS;Resource resource-384 check result: PASS;False;dynamodb;;informational;dynamodb;arn:aws:dynamodb:eu-west-1:123456789012:resource-384;resource-384;;;aws;eu-west-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 22:17:49.162780;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-eu-west-2-b25c5ac4;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-385 check result: FAIL;False;ec2;;critical;ec2;arn:aws:ec2:eu-west-2:123456789012:resource-385;resource-385;;;aws;eu-west-2;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.162829;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-central-1-729adaf5;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;MANUAL;Resource resource-386 check result: MANUAL;False;ecr;;high;ecr;arn:aws:ecr:eu-central-1:123456789012:resource-386;resource-386;;;aws;eu-central-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.162876;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-1-6c8d1a07;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-387 check result: PASS;False;ecs;;medium;ecs;arn:aws:ecs:ap-southeast-1:123456789012:resource-387;resource-387;;;aws;ap-southeast-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.162918;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-2-12ef218d;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-388 check result: FAIL;False;efs;;low;efs;arn:aws:efs:ap-southeast-2:123456789012:resource-388;resource-388;;;aws;ap-southeast-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.162936;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-northeast-1-b58f370b;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;MANUAL;Resource resource-389 check result: MANUAL;False;eks;;informational;eks;arn:aws:eks:ap-northeast-1:123456789012:resource-389;resource-389;;;aws;ap-northeast-1;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.162949;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-1-a4d6685d;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-390 check result: PASS;False;elasticache;;critical;elasticache;arn:aws:elasticache:us-east-1:123456789012:resource-390;resource-390;;;aws;us-east-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.162962;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-us-east-2-706577ef;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;FAIL;Resource resource-391 check result: FAIL;False;elb;;high;elb;arn:aws:elb:us-east-2:123456789012:resource-391;resource-391;;;aws;us-east-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.162972;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-1-45e67e68;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-392 check result: MANUAL;False;emr;;medium;emr;arn:aws:emr:us-west-1:123456789012:resource-392;resource-392;;;aws;us-west-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.162981;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-west-2-aa662ebc;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-393 check result: PASS;False;guardduty;;low;guardduty;arn:aws:guardduty:us-west-2:123456789012:resource-393;resource-393;;;aws;us-west-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.162993;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-eu-west-1-4d6551a5;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-394 check result: FAIL;False;iam;;informational;iam;arn:aws:iam:eu-west-1:123456789012:resource-394;resource-394;;;aws;eu-west-1;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.163003;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-2-122c7d89;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-395 check result: MANUAL;False;kms;;critical;kms;arn:aws:kms:eu-west-2:123456789012:resource-395;resource-395;;;aws;eu-west-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.163013;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-eu-central-1-0bd8da5d;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;PASS;Resource resource-396 check result: PASS;False;lambda;;high;lambda;arn:aws:lambda:eu-central-1:123456789012:resource-396;resource-396;;;aws;eu-central-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.163023;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-ap-southeast-1-75fa538d;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-397 check result: FAIL;False;rds;;medium;rds;arn:aws:rds:ap-southeast-1:123456789012:resource-397;resource-397;;;aws;ap-southeast-1;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.163032;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-2-d5c0c6cf;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-398 check result: MANUAL;False;redshift;;low;redshift;arn:aws:redshift:ap-southeast-2:123456789012:resource-398;resource-398;;;aws;ap-southeast-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.163042;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-ap-northeast-1-59e7f731;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-399 check result: PASS;False;s3;;informational;s3;arn:aws:s3:ap-northeast-1:123456789012:resource-399;resource-399;;;aws;ap-northeast-1;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 07:17:49.163053;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-1-fd365afc;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-400 check result: FAIL;False;secretsmanager;;critical;secretsmanager;arn:aws:secretsmanager:us-east-1:123456789012:resource-400;resource-400;;;aws;us-east-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.163066;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-2-5510579d;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-401 check result: MANUAL;False;sns;;high;sns;arn:aws:sns:us-east-2:123456789012:resource-401;resource-401;;;aws;us-east-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.163075;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-1-0a2ca90e;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-402 check result: PASS;False;sqs;;medium;sqs;arn:aws:sqs:us-west-1:123456789012:resource-402;resource-402;;;aws;us-west-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.163084;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-2-2ff4bf15;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-403 check result: FAIL;False;ssm;;low;ssm;arn:aws:ssm:us-west-2:123456789012:resource-403;resource-403;;;aws;us-west-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.163092;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-1-b176e95b;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-404 check result: MANUAL;False;vpc;;informational;vpc;arn:aws:vpc:eu-west-1:123456789012:resource-404;resource-404;;;aws;eu-west-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.163101;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-2-4d0c1506;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-405 check result: PASS;False;waf;;critical;waf;arn:aws:waf:eu-west-2:123456789012:resource-405;resource-405;;;aws;eu-west-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.163111;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-eu-central-1-9745f568;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;FAIL;Resource resource-406 check result: FAIL;False;accessanalyzer;;high;accessanalyzer;arn:aws:accessanalyzer:eu-central-1:123456789012:resource-406;resource-406;;;aws;eu-central-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.163120;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-southeast-1-a2276659;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;MANUAL;Resource resource-407 check result: MANUAL;False;acm;;medium;acm;arn:aws:acm:ap-southeast-1:123456789012:resource-407;resource-407;;;aws;ap-southeast-1;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.163129;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-ap-southeast-2-e32a2c3c;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;PASS;Resource resource-408 check result: PASS;False;apigateway;;low;apigateway;arn:aws:apigateway:ap-southeast-2:123456789012:resource-408;resource-408;;;aws;ap-southeast-2;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.163138;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-northeast-1-71ee18cc;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;FAIL;Resource resource-409 check result: FAIL;False;cloudfront;;informational;cloudfront;arn:aws:cloudfront:ap-northeast-1:123456789012:resource-409;resource-409;;;aws;ap-northeast-1;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.163148;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-east-1-9553b1b9;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;MANUAL;Resource resource-410 check result: MANUAL;False;cloudtrail;;critical;cloudtrail;arn:aws:cloudtrail:us-east-1:123456789012:resource-410;resource-410;;;aws;us-east-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.163156;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-2-b2121b0d;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-411 check result: PASS;False;cloudwatch;;high;cloudwatch;arn:aws:cloudwatch:us-east-2:123456789012:resource-411;resource-411;;;aws;us-east-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.163166;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-1-419f8042;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-412 check result: FAIL;False;config;;medium;config;arn:aws:config:us-west-1:123456789012:resource-412;resource-412;;;aws;us-west-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.163177;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-west-2-c58a9ea4;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;MANUAL;Resource resource-413 check result: MANUAL;False;dynamodb;;low;dynamodb;arn:aws:dynamodb:us-west-2:123456789012:resource-413;resource-413;;;aws;us-west-2;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.163185;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-eu-west-1-0be4ff9b;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-414 check result: PASS;False;ec2;;informational;ec2;arn:aws:ec2:eu-west-1:123456789012:resource-414;resource-414;;;aws;eu-west-1;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 16:17:49.163195;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-eu-west-2-2482b48d;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;FAIL;Resource resource-415 check result: FAIL;False;ecr;;critical;ecr;arn:aws:ecr:eu-west-2:123456789012:resource-415;resource-415;;;aws;eu-west-2;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.163203;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-central-1-83399309;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-416 check result: MANUAL;False;ecs;;high;ecs;arn:aws:ecs:eu-central-1:123456789012:resource-416;resource-416;;;aws;eu-central-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.163212;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-1-52298b7e;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-417 check result: PASS;False;efs;;medium;efs;arn:aws:efs:ap-southeast-1:123456789012:resource-417;resource-417;;;aws;ap-southeast-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.163221;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-ap-southeast-2-e31ac89d;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;FAIL;Resource resource-418 check result: FAIL;False;eks;;low;eks;arn:aws:eks:ap-southeast-2:123456789012:resource-418;resource-418;;;aws;ap-southeast-2;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.163229;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-northeast-1-eb321994;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-419 check result: MANUAL;False;elasticache;;informational;elasticache;arn:aws:elasticache:ap-northeast-1:123456789012:resource-419;resource-419;;;aws;ap-northeast-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.163238;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-us-east-1-f8ef3876;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;PASS;Resource resource-420 check result: PASS;False;elb;;critical;elb;arn:aws:elb:us-east-1:123456789012:resource-420;resource-420;;;aws;us-east-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.163247;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-2-bf38c01b;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-421 check result: FAIL;False;emr;;high;emr;arn:aws:emr:us-east-2:123456789012:resource-421;resource-421;;;aws;us-east-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.163255;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-west-1-de4372f3;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-422 check result: MANUAL;False;guardduty;;medium;guardduty;arn:aws:guardduty:us-west-1:123456789012:resource-422;resource-422;;;aws;us-west-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.163263;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-us-west-2-0976d00b;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-423 check result: PASS;False;iam;;low;iam;arn:aws:iam:us-west-2:123456789012:resource-423;resource-423;;;aws;us-west-2;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.163273;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-1-5396ec0a;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-424 check result: FAIL;False;kms;;informational;kms;arn:aws:kms:eu-west-1:123456789012:resource-424;resource-424;;;aws;eu-west-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.163281;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-eu-west-2-da9816c4;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;MANUAL;Resource resource-425 check result: MANUAL;False;lambda;;critical;lambda;arn:aws:lambda:eu-west-2:123456789012:resource-425;resource-425;;;aws;eu-west-2;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.163289;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-eu-central-1-8a1eec9f;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-426 check result: PASS;False;rds;;high;rds;arn:aws:rds:eu-central-1:123456789012:resource-426;resource-426;;;aws;eu-central-1;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.163298;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-1-ee9a5e5a;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-427 check result: FAIL;False;redshift;;medium;redshift;arn:aws:redshift:ap-southeast-1:123456789012:resource-427;resource-427;;;aws;ap-southeast-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.163307;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-ap-southeast-2-f89d55d7;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-428 check result: MANUAL;False;s3;;low;s3;arn:aws:s3:ap-southeast-2:123456789012:resource-428;resource-428;;;aws;ap-southeast-2;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.163315;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-northeast-1-545ae8ac;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-429 check result: PASS;False;secretsmanager;;informational;secretsmanager;arn:aws:secretsmanager:ap-northeast-1:123456789012:resource-429;resource-429;;;aws;ap-northeast-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 01:17:49.163324;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-1-10a636cb;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-430 check result: FAIL;False;sns;;critical;sns;arn:aws:sns:us-east-1:123456789012:resource-430;resource-430;;;aws;us-east-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.163333;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-2-4ff426d6;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-431 check result: MANUAL;False;sqs;;high;sqs;arn:aws:sqs:us-east-2:123456789012:resource-431;resource-431;;;aws;us-east-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.163341;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-1-53049f3c;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-432 check result: PASS;False;ssm;;medium;ssm;arn:aws:ssm:us-west-1:123456789012:resource-432;resource-432;;;aws;us-west-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.163350;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-2-54ab917c;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-433 check result: FAIL;False;vpc;;low;vpc;arn:aws:vpc:us-west-2:123456789012:resource-433;resource-433;;;aws;us-west-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.163359;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-1-3a01f21b;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-434 check result: MANUAL;False;waf;;informational;waf;arn:aws:waf:eu-west-1:123456789012:resource-434;resource-434;;;aws;eu-west-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.163367;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-eu-west-2-5f032ae7;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;PASS;Resource resource-435 check result: PASS;False;accessanalyzer;;critical;accessanalyzer;arn:aws:accessanalyzer:eu-west-2:123456789012:resource-435;resource-435;;;aws;eu-west-2;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.163378;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-eu-central-1-419b63ff;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;FAIL;Resource resource-436 check result: FAIL;False;acm;;high;acm;arn:aws:acm:eu-central-1:123456789012:resource-436;resource-436;;;aws;eu-central-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.163386;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-southeast-1-241a1fa1;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;MANUAL;Resource resource-437 check result: MANUAL;False;apigateway;;medium;apigateway;arn:aws:apigateway:ap-southeast-1:123456789012:resource-437;resource-437;;;aws;ap-southeast-1;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.163398;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-ap-southeast-2-dca008d5;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;PASS;Resource resource-438 check result: PASS;False;cloudfront;;low;cloudfront;arn:aws:cloudfront:ap-southeast-2:123456789012:resource-438;resource-438;;;aws;ap-southeast-2;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.163407;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-northeast-1-38465a47;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;FAIL;Resource resource-439 check result: FAIL;False;cloudtrail;;informational;cloudtrail;arn:aws:cloudtrail:ap-northeast-1:123456789012:resource-439;resource-439;;;aws;ap-northeast-1;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.163416;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-1-c7b5ddc9;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-440 check result: MANUAL;False;cloudwatch;;critical;cloudwatch;arn:aws:cloudwatch:us-east-1:123456789012:resource-440;resource-440;;;aws;us-east-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.163424;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-2-85919d1b;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-441 check result: PASS;False;config;;high;config;arn:aws:config:us-east-2:123456789012:resource-441;resource-441;;;aws;us-east-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.163435;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-west-1-5df3c974;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;FAIL;Resource resource-442 check result: FAIL;False;dynamodb;;medium;dynamodb;arn:aws:dynamodb:us-west-1:123456789012:resource-442;resource-442;;;aws;us-west-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.163443;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-us-west-2-2670bcf3;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-443 check result: MANUAL;False;ec2;;low;ec2;arn:aws:ec2:us-west-2:123456789012:resource-443;resource-443;;;aws;us-west-2;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.163452;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-west-1-2da14c8e;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;PASS;Resource resource-444 check result: PASS;False;ecr;;informational;ecr;arn:aws:ecr:eu-west-1:123456789012:resource-444;resource-444;;;aws;eu-west-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 10:17:49.163461;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-2-2dc5f176;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-445 check result: FAIL;False;ecs;;critical;ecs;arn:aws:ecs:eu-west-2:123456789012:resource-445;resource-445;;;aws;eu-west-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.163469;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-central-1-5b3600ff;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-446 check result: MANUAL;False;efs;;high;efs;arn:aws:efs:eu-central-1:123456789012:resource-446;resource-446;;;aws;eu-central-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.163498;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-southeast-1-2e06ac22;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;PASS;Resource resource-447 check result: PASS;False;eks;;medium;eks;arn:aws:eks:ap-southeast-1:123456789012:resource-447;resource-447;;;aws;ap-southeast-1;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.163514;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-2-181c3ecc;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-448 check result: FAIL;False;elasticache;;low;elasticache;arn:aws:elasticache:ap-southeast-2:123456789012:resource-448;resource-448;;;aws;ap-southeast-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.163525;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-ap-northeast-1-b1ad909d;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;MANUAL;Resource resource-449 check result: MANUAL;False;elb;;informational;elb;arn:aws:elb:ap-northeast-1:123456789012:resource-449;resource-449;;;aws;ap-northeast-1;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.163552;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-1-595c62de;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-450 check result: PASS;False;emr;;critical;emr;arn:aws:emr:us-east-1:123456789012:resource-450;resource-450;;;aws;us-east-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.163566;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-east-2-313a4ef2;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-451 check result: FAIL;False;guardduty;;high;guardduty;arn:aws:guardduty:us-east-2:123456789012:resource-451;resource-451;;;aws;us-east-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.163575;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-us-west-1-6732a3c0;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-452 check result: MANUAL;False;iam;;medium;iam;arn:aws:iam:us-west-1:123456789012:resource-452;resource-452;;;aws;us-west-1;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.163584;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-2-a7944572;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-453 check result: PASS;False;kms;;low;kms;arn:aws:kms:us-west-2:123456789012:resource-453;resource-453;;;aws;us-west-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.163593;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-eu-west-1-2a923450;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;FAIL;Resource resource-454 check result: FAIL;False;lambda;;informational;lambda;arn:aws:lambda:eu-west-1:123456789012:resource-454;resource-454;;;aws;eu-west-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.163602;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-eu-west-2-08078993;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-455 check result: MANUAL;False;rds;;critical;rds;arn:aws:rds:eu-west-2:123456789012:resource-455;resource-455;;;aws;eu-west-2;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.163611;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-eu-central-1-cd523650;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-456 check result: PASS;False;redshift;;high;redshift;arn:aws:redshift:eu-central-1:123456789012:resource-456;resource-456;;;aws;eu-central-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.163620;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-ap-southeast-1-18691277;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-457 check result: FAIL;False;s3;;medium;s3;arn:aws:s3:ap-southeast-1:123456789012:resource-457;resource-457;;;aws;ap-southeast-1;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.163629;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-2-4001673a;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-458 check result: MANUAL;False;secretsmanager;;low;secretsmanager;arn:aws:secretsmanager:ap-southeast-2:123456789012:resource-458;resource-458;;;aws;ap-southeast-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.163638;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-northeast-1-51f78dde;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-459 check result: PASS;False;sns;;informational;sns;arn:aws:sns:ap-northeast-1:123456789012:resource-459;resource-459;;;aws;ap-northeast-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 19:17:49.163647;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-1-36ea99a0;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-460 check result: FAIL;False;sqs;;critical;sqs;arn:aws:sqs:us-east-1:123456789012:resource-460;resource-460;;;aws;us-east-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.163655;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-2-9107626e;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-461 check result: MANUAL;False;ssm;;high;ssm;arn:aws:ssm:us-east-2:123456789012:resource-461;resource-461;;;aws;us-east-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.163663;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-1-abdaedcd;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-462 check result: PASS;False;vpc;;medium;vpc;arn:aws:vpc:us-west-1:123456789012:resource-462;resource-462;;;aws;us-west-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.163672;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-2-9d15a382;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-463 check result: FAIL;False;waf;;low;waf;arn:aws:waf:us-west-2:123456789012:resource-463;resource-463;;;aws;us-west-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.163680;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-eu-west-1-886e413b;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;MANUAL;Resource resource-464 check result: MANUAL;False;accessanalyzer;;informational;accessanalyzer;arn:aws:accessanalyzer:eu-west-1:123456789012:resource-464;resource-464;;;aws;eu-west-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.163689;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-eu-west-2-b35d12e3;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;PASS;Resource resource-465 check result: PASS;False;acm;;critical;acm;arn:aws:acm:eu-west-2:123456789012:resource-465;resource-465;;;aws;eu-west-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.163698;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-central-1-9e43942f;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;FAIL;Resource resource-466 check result: FAIL;False;apigateway;;high;apigateway;arn:aws:apigateway:eu-central-1:123456789012:resource-466;resource-466;;;aws;eu-central-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.163706;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-southeast-1-8794b8ba;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;MANUAL;Resource resource-467 check result: MANUAL;False;cloudfront;;medium;cloudfront;arn:aws:cloudfront:ap-southeast-1:123456789012:resource-467;resource-467;;;aws;ap-southeast-1;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.163714;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-ap-southeast-2-693fac99;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;PASS;Resource resource-468 check result: PASS;False;cloudtrail;;low;cloudtrail;arn:aws:cloudtrail:ap-southeast-2:123456789012:resource-468;resource-468;;;aws;ap-southeast-2;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.163724;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-northeast-1-2c7151eb;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-469 check result: FAIL;False;cloudwatch;;informational;cloudwatch;arn:aws:cloudwatch:ap-northeast-1:123456789012:resource-469;resource-469;;;aws;ap-northeast-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.163732;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-1-2268d2aa;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-470 check result: MANUAL;False;config;;critical;config;arn:aws:config:us-east-1:123456789012:resource-470;resource-470;;;aws;us-east-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.163741;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-east-2-522e3752;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;PASS;Resource resource-471 check result: PASS;False;dynamodb;;high;dynamodb;arn:aws:dynamodb:us-east-2:123456789012:resource-471;resource-471;;;aws;us-east-2;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.163752;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-us-west-1-723b9966;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-472 check result: FAIL;False;ec2;;medium;ec2;arn:aws:ec2:us-west-1:123456789012:resource-472;resource-472;;;aws;us-west-1;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.163760;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-west-2-502b91b8;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;MANUAL;Resource resource-473 check result: MANUAL;False;ecr;;low;ecr;arn:aws:ecr:us-west-2:123456789012:resource-473;resource-473;;;aws;us-west-2;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.163768;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-1-639e55fa;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-474 check result: PASS;False;ecs;;informational;ecs;arn:aws:ecs:eu-west-1:123456789012:resource-474;resource-474;;;aws;eu-west-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 04:17:49.163777;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-2-39b4bff9;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-475 check result: FAIL;False;efs;;critical;efs;arn:aws:efs:eu-west-2:123456789012:resource-475;resource-475;;;aws;eu-west-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.163786;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-eu-central-1-d54fc02e;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;MANUAL;Resource resource-476 check result: MANUAL;False;eks;;high;eks;arn:aws:eks:eu-central-1:123456789012:resource-476;resource-476;;;aws;eu-central-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.163794;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-1-6ec5a9ba;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-477 check result: PASS;False;elasticache;;medium;elasticache;arn:aws:elasticache:ap-southeast-1:123456789012:resource-477;resource-477;;;aws;ap-southeast-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.163803;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-ap-southeast-2-669dad0b;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;FAIL;Resource resource-478 check result: FAIL;False;elb;;low;elb;arn:aws:elb:ap-southeast-2:123456789012:resource-478;resource-478;;;aws;ap-southeast-2;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.163811;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-northeast-1-bad5f557;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-479 check result: MANUAL;False;emr;;informational;emr;arn:aws:emr:ap-northeast-1:123456789012:resource-479;resource-479;;;aws;ap-northeast-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.163820;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-east-1-6663cc39;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-480 check result: PASS;False;guardduty;;critical;guardduty;arn:aws:guardduty:us-east-1:123456789012:resource-480;resource-480;;;aws;us-east-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.163829;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-us-east-2-10561406;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-481 check result: FAIL;False;iam;;high;iam;arn:aws:iam:us-east-2:123456789012:resource-481;resource-481;;;aws;us-east-2;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.163839;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-1-b4d8f51d;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-482 check result: MANUAL;False;kms;;medium;kms;arn:aws:kms:us-west-1:123456789012:resource-482;resource-482;;;aws;us-west-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.163849;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-west-2-5c641e35;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;PASS;Resource resource-483 check result: PASS;False;lambda;;low;lambda;arn:aws:lambda:us-west-2:123456789012:resource-483;resource-483;;;aws;us-west-2;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.163858;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-eu-west-1-7e5024eb;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-484 check result: FAIL;False;rds;;informational;rds;arn:aws:rds:eu-west-1:123456789012:resource-484;resource-484;;;aws;eu-west-1;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.163866;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-2-1ea8868c;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-485 check result: MANUAL;False;redshift;;critical;redshift;arn:aws:redshift:eu-west-2:123456789012:resource-485;resource-485;;;aws;eu-west-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.163875;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-eu-central-1-bb94f312;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-486 check result: PASS;False;s3;;high;s3;arn:aws:s3:eu-central-1:123456789012:resource-486;resource-486;;;aws;eu-central-1;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.163884;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-1-d712bc0c;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-487 check result: FAIL;False;secretsmanager;;medium;secretsmanager;arn:aws:secretsmanager:ap-southeast-1:123456789012:resource-487;resource-487;;;aws;ap-southeast-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.163892;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-2-a64ca982;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-488 check result: MANUAL;False;sns;;low;sns;arn:aws:sns:ap-southeast-2:123456789012:resource-488;resource-488;;;aws;ap-southeast-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.163900;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-northeast-1-320fabd8;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-489 check result: PASS;False;sqs;;informational;sqs;arn:aws:sqs:ap-northeast-1:123456789012:resource-489;resource-489;;;aws;ap-northeast-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 13:17:49.163909;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-1-2c465254;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-490 check result: FAIL;False;ssm;;critical;ssm;arn:aws:ssm:us-east-1:123456789012:resource-490;resource-490;;;aws;us-east-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.163917;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-2-35c71c5d;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-491 check result: MANUAL;False;vpc;;high;vpc;arn:aws:vpc:us-east-2:123456789012:resource-491;resource-491;;;aws;us-east-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.163925;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-1-3dfb309e;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-492 check result: PASS;False;waf;;medium;waf;arn:aws:waf:us-west-1:123456789012:resource-492;resource-492;;;aws;us-west-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.163934;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-us-west-2-dcc19ac2;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;FAIL;Resource resource-493 check result: FAIL;False;accessanalyzer;;low;accessanalyzer;arn:aws:accessanalyzer:us-west-2:123456789012:resource-493;resource-493;;;aws;us-west-2;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.163942;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-eu-west-1-4a1b0976;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;MANUAL;Resource resource-494 check result: MANUAL;False;acm;;informational;acm;arn:aws:acm:eu-west-1:123456789012:resource-494;resource-494;;;aws;eu-west-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.163950;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-eu-west-2-2f13f243;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;PASS;Resource resource-495 check result: PASS;False;apigateway;;critical;apigateway;arn:aws:apigateway:eu-west-2:123456789012:resource-495;resource-495;;;aws;eu-west-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.163960;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-central-1-0c5fa117;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;FAIL;Resource resource-496 check result: FAIL;False;cloudfront;;high;cloudfront;arn:aws:cloudfront:eu-central-1:123456789012:resource-496;resource-496;;;aws;eu-central-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.163968;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-southeast-1-d204e775;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;MANUAL;Resource resource-497 check result: MANUAL;False;cloudtrail;;medium;cloudtrail;arn:aws:cloudtrail:ap-southeast-1:123456789012:resource-497;resource-497;;;aws;ap-southeast-1;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.163976;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-2-415e2645;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-498 check result: PASS;False;cloudwatch;;low;cloudwatch;arn:aws:cloudwatch:ap-southeast-2:123456789012:resource-498;resource-498;;;aws;ap-southeast-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.163985;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-northeast-1-fa718e89;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-499 check result: FAIL;False;config;;informational;config;arn:aws:config:ap-northeast-1:123456789012:resource-499;resource-499;;;aws;ap-northeast-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.163994;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-east-1-2c0a335d;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;MANUAL;Resource resource-500 check result: MANUAL;False;dynamodb;;critical;dynamodb;arn:aws:dynamodb:us-east-1:123456789012:resource-500;resource-500;;;aws;us-east-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.164002;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-us-east-2-22979cfa;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-501 check result: PASS;False;ec2;;high;ec2;arn:aws:ec2:us-east-2:123456789012:resource-501;resource-501;;;aws;us-east-2;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.164011;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-west-1-a946397f;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;FAIL;Resource resource-502 check result: FAIL;False;ecr;;medium;ecr;arn:aws:ecr:us-west-1:123456789012:resource-502;resource-502;;;aws;us-west-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.164019;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-2-bbfad446;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-503 check result: MANUAL;False;ecs;;low;ecs;arn:aws:ecs:us-west-2:123456789012:resource-503;resource-503;;;aws;us-west-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.164027;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-1-ef298f97;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-504 check result: PASS;False;efs;;informational;efs;arn:aws:efs:eu-west-1:123456789012:resource-504;resource-504;;;aws;eu-west-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 22:17:49.164036;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-eu-west-2-26f2d5f5;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;FAIL;Resource resource-505 check result: FAIL;False;eks;;critical;eks;arn:aws:eks:eu-west-2:123456789012:resource-505;resource-505;;;aws;eu-west-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.164044;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-central-1-3c797632;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-506 check result: MANUAL;False;elasticache;;high;elasticache;arn:aws:elasticache:eu-central-1:123456789012:resource-506;resource-506;;;aws;eu-central-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.164052;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-ap-southeast-1-9e447af2;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;PASS;Resource resource-507 check result: PASS;False;elb;;medium;elb;arn:aws:elb:ap-southeast-1:123456789012:resource-507;resource-507;;;aws;ap-southeast-1;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.164063;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-2-4b558d59;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-508 check result: FAIL;False;emr;;low;emr;arn:aws:emr:ap-southeast-2:123456789012:resource-508;resource-508;;;aws;ap-southeast-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.164072;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-ap-northeast-1-6e63d199;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-509 check result: MANUAL;False;guardduty;;informational;guardduty;arn:aws:guardduty:ap-northeast-1:123456789012:resource-509;resource-509;;;aws;ap-northeast-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.164080;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-us-east-1-51dffd22;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-510 check result: PASS;False;iam;;critical;iam;arn:aws:iam:us-east-1:123456789012:resource-510;resource-510;;;aws;us-east-1;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.164089;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-2-40b5e121;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-511 check result: FAIL;False;kms;;high;kms;arn:aws:kms:us-east-2:123456789012:resource-511;resource-511;;;aws;us-east-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.164097;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-us-west-1-7a8d55af;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;MANUAL;Resource resource-512 check result: MANUAL;False;lambda;;medium;lambda;arn:aws:lambda:us-west-1:123456789012:resource-512;resource-512;;;aws;us-west-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.164105;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-us-west-2-6b2f413a;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-513 check result: PASS;False;rds;;low;rds;arn:aws:rds:us-west-2:123456789012:resource-513;resource-513;;;aws;us-west-2;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.164114;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-1-07837579;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-514 check result: FAIL;False;redshift;;informational;redshift;arn:aws:redshift:eu-west-1:123456789012:resource-514;resource-514;;;aws;eu-west-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.164122;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-eu-west-2-2e9bb919;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-515 check result: MANUAL;False;s3;;critical;s3;arn:aws:s3:eu-west-2:123456789012:resource-515;resource-515;;;aws;eu-west-2;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.164130;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-central-1-6f7e0c06;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-516 check result: PASS;False;secretsmanager;;high;secretsmanager;arn:aws:secretsmanager:eu-central-1:123456789012:resource-516;resource-516;;;aws;eu-central-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.164141;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-1-56a6f3b6;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-517 check result: FAIL;False;sns;;medium;sns;arn:aws:sns:ap-southeast-1:123456789012:resource-517;resource-517;;;aws;ap-southeast-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.164151;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-2-6df8c3af;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-518 check result: MANUAL;False;sqs;;low;sqs;arn:aws:sqs:ap-southeast-2:123456789012:resource-518;resource-518;;;aws;ap-southeast-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.164159;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-ap-northeast-1-b22e2789;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-519 check result: PASS;False;ssm;;informational;ssm;arn:aws:ssm:ap-northeast-1:123456789012:resource-519;resource-519;;;aws;ap-northeast-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 07:17:49.164168;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-1-9b9df8ba;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-520 check result: FAIL;False;vpc;;critical;vpc;arn:aws:vpc:us-east-1:123456789012:resource-520;resource-520;;;aws;us-east-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.164176;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-2-66467e1c;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-521 check result: MANUAL;False;waf;;high;waf;arn:aws:waf:us-east-2:123456789012:resource-521;resource-521;;;aws;us-east-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.164184;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-us-west-1-44208725;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;PASS;Resource resource-522 check result: PASS;False;accessanalyzer;;medium;accessanalyzer;arn:aws:accessanalyzer:us-west-1:123456789012:resource-522;resource-522;;;aws;us-west-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.164193;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-west-2-2eee3221;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;FAIL;Resource resource-523 check result: FAIL;False;acm;;low;acm;arn:aws:acm:us-west-2:123456789012:resource-523;resource-523;;;aws;us-west-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.164201;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-west-1-f9e98c00;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;MANUAL;Resource resource-524 check result: MANUAL;False;apigateway;;informational;apigateway;arn:aws:apigateway:eu-west-1:123456789012:resource-524;resource-524;;;aws;eu-west-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.164210;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-eu-west-2-c3b4befb;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;PASS;Resource resource-525 check result: PASS;False;cloudfront;;critical;cloudfront;arn:aws:cloudfront:eu-west-2:123456789012:resource-525;resource-525;;;aws;eu-west-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.164218;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-central-1-6e5dcb1e;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;FAIL;Resource resource-526 check result: FAIL;False;cloudtrail;;high;cloudtrail;arn:aws:cloudtrail:eu-central-1:123456789012:resource-526;resource-526;;;aws;eu-central-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.164226;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-1-a7b86537;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-527 check result: MANUAL;False;cloudwatch;;medium;cloudwatch;arn:aws:cloudwatch:ap-southeast-1:123456789012:resource-527;resource-527;;;aws;ap-southeast-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.164235;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-2-3670a247;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-528 check result: PASS;False;config;;low;config;arn:aws:config:ap-southeast-2:123456789012:resource-528;resource-528;;;aws;ap-southeast-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.164243;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-northeast-1-4e11005a;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;FAIL;Resource resource-529 check result: FAIL;False;dynamodb;;informational;dynamodb;arn:aws:dynamodb:ap-northeast-1:123456789012:resource-529;resource-529;;;aws;ap-northeast-1;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.164251;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-us-east-1-d2b7ba3d;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-530 check result: MANUAL;False;ec2;;critical;ec2;arn:aws:ec2:us-east-1:123456789012:resource-530;resource-530;;;aws;us-east-1;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.164259;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-east-2-0256d7d1;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;PASS;Resource resource-531 check result: PASS;False;ecr;;high;ecr;arn:aws:ecr:us-east-2:123456789012:resource-531;resource-531;;;aws;us-east-2;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.164268;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-1-2d0a7a78;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-532 check result: FAIL;False;ecs;;medium;ecs;arn:aws:ecs:us-west-1:123456789012:resource-532;resource-532;;;aws;us-west-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.164275;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-2-6d9afec3;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-533 check result: MANUAL;False;efs;;low;efs;arn:aws:efs:us-west-2:123456789012:resource-533;resource-533;;;aws;us-west-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.164283;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-eu-west-1-ccde1aab;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;PASS;Resource resource-534 check result: PASS;False;eks;;informational;eks;arn:aws:eks:eu-west-1:123456789012:resource-534;resource-534;;;aws;eu-west-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 16:17:49.164292;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-2-4597bd32;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-535 check result: FAIL;False;elasticache;;critical;elasticache;arn:aws:elasticache:eu-west-2:123456789012:resource-535;resource-535;;;aws;eu-west-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.164300;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-eu-central-1-3b39eaca;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;MANUAL;Resource resource-536 check result: MANUAL;False;elb;;high;elb;arn:aws:elb:eu-central-1:123456789012:resource-536;resource-536;;;aws;eu-central-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.164308;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-1-d648473e;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-537 check result: PASS;False;emr;;medium;emr;arn:aws:emr:ap-southeast-1:123456789012:resource-537;resource-537;;;aws;ap-southeast-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.164317;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-2-d1ef49ce;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-538 check result: FAIL;False;guardduty;;low;guardduty;arn:aws:guardduty:ap-southeast-2:123456789012:resource-538;resource-538;;;aws;ap-southeast-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.164324;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-ap-northeast-1-a35b9650;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-539 check result: MANUAL;False;iam;;informational;iam;arn:aws:iam:ap-northeast-1:123456789012:resource-539;resource-539;;;aws;ap-northeast-1;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.164332;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-1-63c14045;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-540 check result: PASS;False;kms;;critical;kms;arn:aws:kms:us-east-1:123456789012:resource-540;resource-540;;;aws;us-east-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.164341;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-east-2-6faf5850;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;FAIL;Resource resource-541 check result: FAIL;False;lambda;;high;lambda;arn:aws:lambda:us-east-2:123456789012:resource-541;resource-541;;;aws;us-east-2;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.164349;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-us-west-1-39a9a485;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-542 check result: MANUAL;False;rds;;medium;rds;arn:aws:rds:us-west-1:123456789012:resource-542;resource-542;;;aws;us-west-1;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.164357;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-2-5f3798d5;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-543 check result: PASS;False;redshift;;low;redshift;arn:aws:redshift:us-west-2:123456789012:resource-543;resource-543;;;aws;us-west-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.164366;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-eu-west-1-cb401baf;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-544 check result: FAIL;False;s3;;informational;s3;arn:aws:s3:eu-west-1:123456789012:resource-544;resource-544;;;aws;eu-west-1;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.164374;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-2-8c059fb6;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-545 check result: MANUAL;False;secretsmanager;;critical;secretsmanager;arn:aws:secretsmanager:eu-west-2:123456789012:resource-545;resource-545;;;aws;eu-west-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.164382;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-central-1-18dd4301;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-546 check result: PASS;False;sns;;high;sns;arn:aws:sns:eu-central-1:123456789012:resource-546;resource-546;;;aws;eu-central-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.164391;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-1-422c160e;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-547 check result: FAIL;False;sqs;;medium;sqs;arn:aws:sqs:ap-southeast-1:123456789012:resource-547;resource-547;;;aws;ap-southeast-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.164400;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-2-e6ee4cd8;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-548 check result: MANUAL;False;ssm;;low;ssm;arn:aws:ssm:ap-southeast-2:123456789012:resource-548;resource-548;;;aws;ap-southeast-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.164408;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-northeast-1-1a363167;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-549 check result: PASS;False;vpc;;informational;vpc;arn:aws:vpc:ap-northeast-1:123456789012:resource-549;resource-549;;;aws;ap-northeast-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 01:17:49.164416;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-1-4fd9ff4b;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-550 check result: FAIL;False;waf;;critical;waf;arn:aws:waf:us-east-1:123456789012:resource-550;resource-550;;;aws;us-east-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.164424;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-us-east-2-79e6f951;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;MANUAL;Resource resource-551 check result: MANUAL;False;accessanalyzer;;high;accessanalyzer;arn:aws:accessanalyzer:us-east-2:123456789012:resource-551;resource-551;;;aws;us-east-2;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.164433;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-us-west-1-40acc956;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;PASS;Resource resource-552 check result: PASS;False;acm;;medium;acm;arn:aws:acm:us-west-1:123456789012:resource-552;resource-552;;;aws;us-west-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.164441;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-west-2-50655257;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;FAIL;Resource resource-553 check result: FAIL;False;apigateway;;low;apigateway;arn:aws:apigateway:us-west-2:123456789012:resource-553;resource-553;;;aws;us-west-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.164450;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-west-1-2554d89f;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;MANUAL;Resource resource-554 check result: MANUAL;False;cloudfront;;informational;cloudfront;arn:aws:cloudfront:eu-west-1:123456789012:resource-554;resource-554;;;aws;eu-west-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.164458;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-eu-west-2-eae3777b;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;PASS;Resource resource-555 check result: PASS;False;cloudtrail;;critical;cloudtrail;arn:aws:cloudtrail:eu-west-2:123456789012:resource-555;resource-555;;;aws;eu-west-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.164467;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-central-1-6b26f3c8;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-556 check result: FAIL;False;cloudwatch;;high;cloudwatch;arn:aws:cloudwatch:eu-central-1:123456789012:resource-556;resource-556;;;aws;eu-central-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.164475;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-1-6ecfa629;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-557 check result: MANUAL;False;config;;medium;config;arn:aws:config:ap-southeast-1:123456789012:resource-557;resource-557;;;aws;ap-southeast-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.164483;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-ap-southeast-2-63620bb7;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;PASS;Resource resource-558 check result: PASS;False;dynamodb;;low;dynamodb;arn:aws:dynamodb:ap-southeast-2:123456789012:resource-558;resource-558;;;aws;ap-southeast-2;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.164492;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-ap-northeast-1-e8f520ad;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-559 check result: FAIL;False;ec2;;informational;ec2;arn:aws:ec2:ap-northeast-1:123456789012:resource-559;resource-559;;;aws;ap-northeast-1;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.164500;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-east-1-9597a0d1;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;MANUAL;Resource resource-560 check result: MANUAL;False;ecr;;critical;ecr;arn:aws:ecr:us-east-1:123456789012:resource-560;resource-560;;;aws;us-east-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.164509;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-2-f4310040;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-561 check result: PASS;False;ecs;;high;ecs;arn:aws:ecs:us-east-2:123456789012:resource-561;resource-561;;;aws;us-east-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.164518;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-1-431280d7;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-562 check result: FAIL;False;efs;;medium;efs;arn:aws:efs:us-west-1:123456789012:resource-562;resource-562;;;aws;us-west-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.164526;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-west-2-f3e8bdb8;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;MANUAL;Resource resource-563 check result: MANUAL;False;eks;;low;eks;arn:aws:eks:us-west-2:123456789012:resource-563;resource-563;;;aws;us-west-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.164536;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-1-6d263b0a;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-564 check result: PASS;False;elasticache;;informational;elasticache;arn:aws:elasticache:eu-west-1:123456789012:resource-564;resource-564;;;aws;eu-west-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 10:17:49.164545;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-eu-west-2-7fdbc241;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;FAIL;Resource resource-565 check result: FAIL;False;elb;;critical;elb;arn:aws:elb:eu-west-2:123456789012:resource-565;resource-565;;;aws;eu-west-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.164553;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-central-1-b8b83abd;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-566 check result: MANUAL;False;emr;;high;emr;arn:aws:emr:eu-central-1:123456789012:resource-566;resource-566;;;aws;eu-central-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.164561;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-1-59973e53;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-567 check result: PASS;False;guardduty;;medium;guardduty;arn:aws:guardduty:ap-southeast-1:123456789012:resource-567;resource-567;;;aws;ap-southeast-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.164570;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-ap-southeast-2-774a06ca;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-568 check result: FAIL;False;iam;;low;iam;arn:aws:iam:ap-southeast-2:123456789012:resource-568;resource-568;;;aws;ap-southeast-2;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.164578;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-northeast-1-7b5b5da8;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-569 check result: MANUAL;False;kms;;informational;kms;arn:aws:kms:ap-northeast-1:123456789012:resource-569;resource-569;;;aws;ap-northeast-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.164587;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-us-east-1-343cddb0;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;PASS;Resource resource-570 check result: PASS;False;lambda;;critical;lambda;arn:aws:lambda:us-east-1:123456789012:resource-570;resource-570;;;aws;us-east-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.164596;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-us-east-2-fb29d84f;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-571 check result: FAIL;False;rds;;high;rds;arn:aws:rds:us-east-2:123456789012:resource-571;resource-571;;;aws;us-east-2;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.164604;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-1-5e0b2e67;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-572 check result: MANUAL;False;redshift;;medium;redshift;arn:aws:redshift:us-west-1:123456789012:resource-572;resource-572;;;aws;us-west-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.164612;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-us-west-2-e93aac6d;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-573 check result: PASS;False;s3;;low;s3;arn:aws:s3:us-west-2:123456789012:resource-573;resource-573;;;aws;us-west-2;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.164621;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-1-4a407a4d;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-574 check result: FAIL;False;secretsmanager;;informational;secretsmanager;arn:aws:secretsmanager:eu-west-1:123456789012:resource-574;resource-574;;;aws;eu-west-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.164629;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-2-f594f809;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-575 check result: MANUAL;False;sns;;critical;sns;arn:aws:sns:eu-west-2:123456789012:resource-575;resource-575;;;aws;eu-west-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.164637;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-central-1-82159eb3;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-576 check result: PASS;False;sqs;;high;sqs;arn:aws:sqs:eu-central-1:123456789012:resource-576;resource-576;;;aws;eu-central-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.164646;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-1-030760d7;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-577 check result: FAIL;False;ssm;;medium;ssm;arn:aws:ssm:ap-southeast-1:123456789012:resource-577;resource-577;;;aws;ap-southeast-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.164654;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-2-d5029c6b;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-578 check result: MANUAL;False;vpc;;low;vpc;arn:aws:vpc:ap-southeast-2:123456789012:resource-578;resource-578;;;aws;ap-southeast-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.164662;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-northeast-1-513345b2;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-579 check result: PASS;False;waf;;informational;waf;arn:aws:waf:ap-northeast-1:123456789012:resource-579;resource-579;;;aws;ap-northeast-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 19:17:49.164671;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-us-east-1-018c59b6;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;FAIL;Resource resource-580 check result: FAIL;False;accessanalyzer;;critical;accessanalyzer;arn:aws:accessanalyzer:us-east-1:123456789012:resource-580;resource-580;;;aws;us-east-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.164679;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-east-2-2d45d6d6;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;MANUAL;Resource resource-581 check result: MANUAL;False;acm;;high;acm;arn:aws:acm:us-east-2:123456789012:resource-581;resource-581;;;aws;us-east-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.164687;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-west-1-b6e844e6;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;PASS;Resource resource-582 check result: PASS;False;apigateway;;medium;apigateway;arn:aws:apigateway:us-west-1:123456789012:resource-582;resource-582;;;aws;us-west-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.164696;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-west-2-5dbebec2;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;FAIL;Resource resource-583 check result: FAIL;False;cloudfront;;low;cloudfront;arn:aws:cloudfront:us-west-2:123456789012:resource-583;resource-583;;;aws;us-west-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.164704;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-west-1-2a568cbf;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;MANUAL;Resource resource-584 check result: MANUAL;False;cloudtrail;;informational;cloudtrail;arn:aws:cloudtrail:eu-west-1:123456789012:resource-584;resource-584;;;aws;eu-west-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.164713;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-2-8e0d958b;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-585 check result: PASS;False;cloudwatch;;critical;cloudwatch;arn:aws:cloudwatch:eu-west-2:123456789012:resource-585;resource-585;;;aws;eu-west-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.164722;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-central-1-15d0e64f;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-586 check result: FAIL;False;config;;high;config;arn:aws:config:eu-central-1:123456789012:resource-586;resource-586;;;aws;eu-central-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.164730;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-southeast-1-8e2238bb;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;MANUAL;Resource resource-587 check result: MANUAL;False;dynamodb;;medium;dynamodb;arn:aws:dynamodb:ap-southeast-1:123456789012:resource-587;resource-587;;;aws;ap-southeast-1;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.164738;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-ap-southeast-2-0969b14b;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-588 check result: PASS;False;ec2;;low;ec2;arn:aws:ec2:ap-southeast-2:123456789012:resource-588;resource-588;;;aws;ap-southeast-2;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.164747;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-northeast-1-c43dc9f6;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;FAIL;Resource resource-589 check result: FAIL;False;ecr;;informational;ecr;arn:aws:ecr:ap-northeast-1:123456789012:resource-589;resource-589;;;aws;ap-northeast-1;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.164755;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-1-25306141;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-590 check result: MANUAL;False;ecs;;critical;ecs;arn:aws:ecs:us-east-1:123456789012:resource-590;resource-590;;;aws;us-east-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.164764;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-2-c9be34a4;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-591 check result: PASS;False;efs;;high;efs;arn:aws:efs:us-east-2:123456789012:resource-591;resource-591;;;aws;us-east-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.164773;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-us-west-1-55ea6740;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;FAIL;Resource resource-592 check result: FAIL;False;eks;;medium;eks;arn:aws:eks:us-west-1:123456789012:resource-592;resource-592;;;aws;us-west-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.164781;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-2-c3d8d9dc;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-593 check result: MANUAL;False;elasticache;;low;elasticache;arn:aws:elasticache:us-west-2:123456789012:resource-593;resource-593;;;aws;us-west-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.164789;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-eu-west-1-1fcee189;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;PASS;Resource resource-594 check result: PASS;False;elb;;informational;elb;arn:aws:elb:eu-west-1:123456789012:resource-594;resource-594;;;aws;eu-west-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 04:17:49.164798;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-2-40941a62;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-595 check result: FAIL;False;emr;;critical;emr;arn:aws:emr:eu-west-2:123456789012:resource-595;resource-595;;;aws;eu-west-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.164806;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-central-1-5344b45a;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-596 check result: MANUAL;False;guardduty;;high;guardduty;arn:aws:guardduty:eu-central-1:123456789012:resource-596;resource-596;;;aws;eu-central-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.164814;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-ap-southeast-1-15de4ae5;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-597 check result: PASS;False;iam;;medium;iam;arn:aws:iam:ap-southeast-1:123456789012:resource-597;resource-597;;;aws;ap-southeast-1;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.164823;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-2-04258c33;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-598 check result: FAIL;False;kms;;low;kms;arn:aws:kms:ap-southeast-2:123456789012:resource-598;resource-598;;;aws;ap-southeast-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.164831;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-northeast-1-4ec5e4c2;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;MANUAL;Resource resource-599 check result: MANUAL;False;lambda;;informational;lambda;arn:aws:lambda:ap-northeast-1:123456789012:resource-599;resource-599;;;aws;ap-northeast-1;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.164842;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-us-east-1-bb3eff4d;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-600 check result: PASS;False;rds;;critical;rds;arn:aws:rds:us-east-1:123456789012:resource-600;resource-600;;;aws;us-east-1;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.164851;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-2-d0bb09fe;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-601 check result: FAIL;False;redshift;;high;redshift;arn:aws:redshift:us-east-2:123456789012:resource-601;resource-601;;;aws;us-east-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.164859;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-us-west-1-09a7e4b5;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-602 check result: MANUAL;False;s3;;medium;s3;arn:aws:s3:us-west-1:123456789012:resource-602;resource-602;;;aws;us-west-1;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.164867;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-2-7f0e0f3d;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-603 check result: PASS;False;secretsmanager;;low;secretsmanager;arn:aws:secretsmanager:us-west-2:123456789012:resource-603;resource-603;;;aws;us-west-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.164876;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-1-ef7956e2;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-604 check result: FAIL;False;sns;;informational;sns;arn:aws:sns:eu-west-1:123456789012:resource-604;resource-604;;;aws;eu-west-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.164883;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-2-ed1ea3da;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-605 check result: MANUAL;False;sqs;;critical;sqs;arn:aws:sqs:eu-west-2:123456789012:resource-605;resource-605;;;aws;eu-west-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.164891;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-central-1-d45afb54;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-606 check result: PASS;False;ssm;;high;ssm;arn:aws:ssm:eu-central-1:123456789012:resource-606;resource-606;;;aws;eu-central-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.164900;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-1-d2589f92;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-607 check result: FAIL;False;vpc;;medium;vpc;arn:aws:vpc:ap-southeast-1:123456789012:resource-607;resource-607;;;aws;ap-southeast-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.164909;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-2-4c3f4c63;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-608 check result: MANUAL;False;waf;;low;waf;arn:aws:waf:ap-southeast-2:123456789012:resource-608;resource-608;;;aws;ap-southeast-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.164917;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-ap-northeast-1-961925ea;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;PASS;Resource resource-609 check result: PASS;False;accessanalyzer;;informational;accessanalyzer;arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-609;resource-609;;;aws;ap-northeast-1;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 13:17:49.164926;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-us-east-1-3bff7813;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;FAIL;Resource resource-610 check result: FAIL;False;acm;;critical;acm;arn:aws:acm:us-east-1:123456789012:resource-610;resource-610;;;aws;us-east-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.164934;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-east-2-ccb7702f;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;MANUAL;Resource resource-611 check result: MANUAL;False;apigateway;;high;apigateway;arn:aws:apigateway:us-east-2:123456789012:resource-611;resource-611;;;aws;us-east-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.164941;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-west-1-ea657e94;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;PASS;Resource resource-612 check result: PASS;False;cloudfront;;medium;cloudfront;arn:aws:cloudfront:us-west-1:123456789012:resource-612;resource-612;;;aws;us-west-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.164950;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-west-2-70a14c30;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;FAIL;Resource resource-613 check result: FAIL;False;cloudtrail;;low;cloudtrail;arn:aws:cloudtrail:us-west-2:123456789012:resource-613;resource-613;;;aws;us-west-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.164957;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-1-bcce2d87;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-614 check result: MANUAL;False;cloudwatch;;informational;cloudwatch;arn:aws:cloudwatch:eu-west-1:123456789012:resource-614;resource-614;;;aws;eu-west-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.164966;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-2-a9dbae04;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-615 check result: PASS;False;config;;critical;config;arn:aws:config:eu-west-2:123456789012:resource-615;resource-615;;;aws;eu-west-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.164974;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-central-1-7d53f774;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;FAIL;Resource resource-616 check result: FAIL;False;dynamodb;;high;dynamodb;arn:aws:dynamodb:eu-central-1:123456789012:resource-616;resource-616;;;aws;eu-central-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.164983;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-ap-southeast-1-53fc93a2;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-617 check result: MANUAL;False;ec2;;medium;ec2;arn:aws:ec2:ap-southeast-1:123456789012:resource-617;resource-617;;;aws;ap-southeast-1;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.164991;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-ap-southeast-2-d0ce4b06;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;PASS;Resource resource-618 check result: PASS;False;ecr;;low;ecr;arn:aws:ecr:ap-southeast-2:123456789012:resource-618;resource-618;;;aws;ap-southeast-2;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.165000;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-northeast-1-359c7d9b;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-619 check result: FAIL;False;ecs;;informational;ecs;arn:aws:ecs:ap-northeast-1:123456789012:resource-619;resource-619;;;aws;ap-northeast-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.165007;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-1-b973af9e;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-620 check result: MANUAL;False;efs;;critical;efs;arn:aws:efs:us-east-1:123456789012:resource-620;resource-620;;;aws;us-east-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.165015;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-east-2-cf93268f;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;PASS;Resource resource-621 check result: PASS;False;eks;;high;eks;arn:aws:eks:us-east-2:123456789012:resource-621;resource-621;;;aws;us-east-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.165023;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-1-e9b9a961;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-622 check result: FAIL;False;elasticache;;medium;elasticache;arn:aws:elasticache:us-west-1:123456789012:resource-622;resource-622;;;aws;us-west-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.165031;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-us-west-2-aecdfe86;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;MANUAL;Resource resource-623 check result: MANUAL;False;elb;;low;elb;arn:aws:elb:us-west-2:123456789012:resource-623;resource-623;;;aws;us-west-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.165039;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-1-0fdf9a0a;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-624 check result: PASS;False;emr;;informational;emr;arn:aws:emr:eu-west-1:123456789012:resource-624;resource-624;;;aws;eu-west-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 22:17:49.165049;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-west-2-26ef2837;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-625 check result: FAIL;False;guardduty;;critical;guardduty;arn:aws:guardduty:eu-west-2:123456789012:resource-625;resource-625;;;aws;eu-west-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.165057;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-eu-central-1-c9a094a1;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-626 check result: MANUAL;False;iam;;high;iam;arn:aws:iam:eu-central-1:123456789012:resource-626;resource-626;;;aws;eu-central-1;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.165065;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-1-2e304fd7;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-627 check result: PASS;False;kms;;medium;kms;arn:aws:kms:ap-southeast-1:123456789012:resource-627;resource-627;;;aws;ap-southeast-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.165073;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-ap-southeast-2-0bdef7bb;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;FAIL;Resource resource-628 check result: FAIL;False;lambda;;low;lambda;arn:aws:lambda:ap-southeast-2:123456789012:resource-628;resource-628;;;aws;ap-southeast-2;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.165081;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-ap-northeast-1-7f495733;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-629 check result: MANUAL;False;rds;;informational;rds;arn:aws:rds:ap-northeast-1:123456789012:resource-629;resource-629;;;aws;ap-northeast-1;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.165088;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-1-06e13284;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-630 check result: PASS;False;redshift;;critical;redshift;arn:aws:redshift:us-east-1:123456789012:resource-630;resource-630;;;aws;us-east-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.165097;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-us-east-2-9278554b;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-631 check result: FAIL;False;s3;;high;s3;arn:aws:s3:us-east-2:123456789012:resource-631;resource-631;;;aws;us-east-2;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.165105;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-1-1eb0bf66;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-632 check result: MANUAL;False;secretsmanager;;medium;secretsmanager;arn:aws:secretsmanager:us-west-1:123456789012:resource-632;resource-632;;;aws;us-west-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.165113;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-2-c1ef112e;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-633 check result: PASS;False;sns;;low;sns;arn:aws:sns:us-west-2:123456789012:resource-633;resource-633;;;aws;us-west-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.165121;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-1-02afbcaa;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-634 check result: FAIL;False;sqs;;informational;sqs;arn:aws:sqs:eu-west-1:123456789012:resource-634;resource-634;;;aws;eu-west-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.165129;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-2-a37a167b;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-635 check result: MANUAL;False;ssm;;critical;ssm;arn:aws:ssm:eu-west-2:123456789012:resource-635;resource-635;;;aws;eu-west-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.165137;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-eu-central-1-083c0d5a;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-636 check result: PASS;False;vpc;;high;vpc;arn:aws:vpc:eu-central-1:123456789012:resource-636;resource-636;;;aws;eu-central-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.165146;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-1-8efd48ca;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-637 check result: FAIL;False;waf;;medium;waf;arn:aws:waf:ap-southeast-1:123456789012:resource-637;resource-637;;;aws;ap-southeast-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.165154;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-ap-southeast-2-5e06db3a;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;MANUAL;Resource resource-638 check result: MANUAL;False;accessanalyzer;;low;accessanalyzer;arn:aws:accessanalyzer:ap-southeast-2:123456789012:resource-638;resource-638;;;aws;ap-southeast-2;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.165162;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-northeast-1-6664d08c;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;PASS;Resource resource-639 check result: PASS;False;acm;;informational;acm;arn:aws:acm:ap-northeast-1:123456789012:resource-639;resource-639;;;aws;ap-northeast-1;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 07:17:49.165170;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-east-1-93484b6f;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;FAIL;Resource resource-640 check result: FAIL;False;apigateway;;critical;apigateway;arn:aws:apigateway:us-east-1:123456789012:resource-640;resource-640;;;aws;us-east-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.165178;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-east-2-d99f4c90;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;MANUAL;Resource resource-641 check result: MANUAL;False;cloudfront;;high;cloudfront;arn:aws:cloudfront:us-east-2:123456789012:resource-641;resource-641;;;aws;us-east-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.165186;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-west-1-9acb1fac;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;PASS;Resource resource-642 check result: PASS;False;cloudtrail;;medium;cloudtrail;arn:aws:cloudtrail:us-west-1:123456789012:resource-642;resource-642;;;aws;us-west-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.165194;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-2-4b2efb11;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-643 check result: FAIL;False;cloudwatch;;low;cloudwatch;arn:aws:cloudwatch:us-west-2:123456789012:resource-643;resource-643;;;aws;us-west-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.165202;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-1-1284be9d;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-644 check result: MANUAL;False;config;;informational;config;arn:aws:config:eu-west-1:123456789012:resource-644;resource-644;;;aws;eu-west-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.165210;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-eu-west-2-06631b4f;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;PASS;Resource resource-645 check result: PASS;False;dynamodb;;critical;dynamodb;arn:aws:dynamodb:eu-west-2:123456789012:resource-645;resource-645;;;aws;eu-west-2;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.165219;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-eu-central-1-c7dc3c48;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-646 check result: FAIL;False;ec2;;high;ec2;arn:aws:ec2:eu-central-1:123456789012:resource-646;resource-646;;;aws;eu-central-1;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.165226;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-southeast-1-b3e08dc3;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;MANUAL;Resource resource-647 check result: MANUAL;False;ecr;;medium;ecr;arn:aws:ecr:ap-southeast-1:123456789012:resource-647;resource-647;;;aws;ap-southeast-1;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.165235;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-2-fdff07e0;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-648 check result: PASS;False;ecs;;low;ecs;arn:aws:ecs:ap-southeast-2:123456789012:resource-648;resource-648;;;aws;ap-southeast-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.165244;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-northeast-1-3d943a1a;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-649 check result: FAIL;False;efs;;informational;efs;arn:aws:efs:ap-northeast-1:123456789012:resource-649;resource-649;;;aws;ap-northeast-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.165252;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-us-east-1-d517c321;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;MANUAL;Resource resource-650 check result: MANUAL;False;eks;;critical;eks;arn:aws:eks:us-east-1:123456789012:resource-650;resource-650;;;aws;us-east-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.165259;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-2-4b3eca51;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-651 check result: PASS;False;elasticache;;high;elasticache;arn:aws:elasticache:us-east-2:123456789012:resource-651;resource-651;;;aws;us-east-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.165268;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-us-west-1-08548703;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;FAIL;Resource resource-652 check result: FAIL;False;elb;;medium;elb;arn:aws:elb:us-west-1:123456789012:resource-652;resource-652;;;aws;us-west-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.165276;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-2-e1c40106;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-653 check result: MANUAL;False;emr;;low;emr;arn:aws:emr:us-west-2:123456789012:resource-653;resource-653;;;aws;us-west-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.165284;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-west-1-08a0f57c;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-654 check result: PASS;False;guardduty;;informational;guardduty;arn:aws:guardduty:eu-west-1:123456789012:resource-654;resource-654;;;aws;eu-west-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 16:17:49.165292;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-eu-west-2-7417184c;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-655 check result: FAIL;False;iam;;critical;iam;arn:aws:iam:eu-west-2:123456789012:resource-655;resource-655;;;aws;eu-west-2;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.165300;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-central-1-19e229c8;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-656 check result: MANUAL;False;kms;;high;kms;arn:aws:kms:eu-central-1:123456789012:resource-656;resource-656;;;aws;eu-central-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.165308;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-southeast-1-60ce9606;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;PASS;Resource resource-657 check result: PASS;False;lambda;;medium;lambda;arn:aws:lambda:ap-southeast-1:123456789012:resource-657;resource-657;;;aws;ap-southeast-1;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.165316;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-ap-southeast-2-760991b5;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-658 check result: FAIL;False;rds;;low;rds;arn:aws:rds:ap-southeast-2:123456789012:resource-658;resource-658;;;aws;ap-southeast-2;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.165324;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-ap-northeast-1-3dbb4bfa;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-659 check result: MANUAL;False;redshift;;informational;redshift;arn:aws:redshift:ap-northeast-1:123456789012:resource-659;resource-659;;;aws;ap-northeast-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.165332;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-us-east-1-6373bb9a;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-660 check result: PASS;False;s3;;critical;s3;arn:aws:s3:us-east-1:123456789012:resource-660;resource-660;;;aws;us-east-1;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.165340;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-2-6da03f52;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-661 check result: FAIL;False;secretsmanager;;high;secretsmanager;arn:aws:secretsmanager:us-east-2:123456789012:resource-661;resource-661;;;aws;us-east-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.165348;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-1-ce43868a;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-662 check result: MANUAL;False;sns;;medium;sns;arn:aws:sns:us-west-1:123456789012:resource-662;resource-662;;;aws;us-west-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.165356;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-2-88fd4b6c;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-663 check result: PASS;False;sqs;;low;sqs;arn:aws:sqs:us-west-2:123456789012:resource-663;resource-663;;;aws;us-west-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.165364;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-1-c16ba121;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-664 check result: FAIL;False;ssm;;informational;ssm;arn:aws:ssm:eu-west-1:123456789012:resource-664;resource-664;;;aws;eu-west-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.165372;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-2-9faf59fc;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-665 check result: MANUAL;False;vpc;;critical;vpc;arn:aws:vpc:eu-west-2:123456789012:resource-665;resource-665;;;aws;eu-west-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.165380;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-central-1-ef48ad59;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-666 check result: PASS;False;waf;;high;waf;arn:aws:waf:eu-central-1:123456789012:resource-666;resource-666;;;aws;eu-central-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.165388;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-ap-southeast-1-eb5e8721;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;FAIL;Resource resource-667 check result: FAIL;False;accessanalyzer;;medium;accessanalyzer;arn:aws:accessanalyzer:ap-southeast-1:123456789012:resource-667;resource-667;;;aws;ap-southeast-1;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.165396;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-ap-southeast-2-2d61f748;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;MANUAL;Resource resource-668 check result: MANUAL;False;acm;;low;acm;arn:aws:acm:ap-southeast-2:123456789012:resource-668;resource-668;;;aws;ap-southeast-2;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.165404;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-northeast-1-1b5faea2;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;PASS;Resource resource-669 check result: PASS;False;apigateway;;informational;apigateway;arn:aws:apigateway:ap-northeast-1:123456789012:resource-669;resource-669;;;aws;ap-northeast-1;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 01:17:49.165412;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-east-1-aabdccdb;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;FAIL;Resource resource-670 check result: FAIL;False;cloudfront;;critical;cloudfront;arn:aws:cloudfront:us-east-1:123456789012:resource-670;resource-670;;;aws;us-east-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.165420;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-east-2-ca67dd74;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;MANUAL;Resource resource-671 check result: MANUAL;False;cloudtrail;;high;cloudtrail;arn:aws:cloudtrail:us-east-2:123456789012:resource-671;resource-671;;;aws;us-east-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.165428;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-1-df01cfab;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-672 check result: PASS;False;cloudwatch;;medium;cloudwatch;arn:aws:cloudwatch:us-west-1:123456789012:resource-672;resource-672;;;aws;us-west-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.165436;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-2-25036e22;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-673 check result: FAIL;False;config;;low;config;arn:aws:config:us-west-2:123456789012:resource-673;resource-673;;;aws;us-west-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.165445;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-west-1-72921881;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;MANUAL;Resource resource-674 check result: MANUAL;False;dynamodb;;informational;dynamodb;arn:aws:dynamodb:eu-west-1:123456789012:resource-674;resource-674;;;aws;eu-west-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.165454;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-eu-west-2-fd7360d8;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-675 check result: PASS;False;ec2;;critical;ec2;arn:aws:ec2:eu-west-2:123456789012:resource-675;resource-675;;;aws;eu-west-2;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.165464;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-central-1-41e067bd;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;FAIL;Resource resource-676 check result: FAIL;False;ecr;;high;ecr;arn:aws:ecr:eu-central-1:123456789012:resource-676;resource-676;;;aws;eu-central-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.165472;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-1-534a14c3;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-677 check result: MANUAL;False;ecs;;medium;ecs;arn:aws:ecs:ap-southeast-1:123456789012:resource-677;resource-677;;;aws;ap-southeast-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.165480;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-2-b97d85c5;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-678 check result: PASS;False;efs;;low;efs;arn:aws:efs:ap-southeast-2:123456789012:resource-678;resource-678;;;aws;ap-southeast-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.165488;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-northeast-1-63b31cdc;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;FAIL;Resource resource-679 check result: FAIL;False;eks;;informational;eks;arn:aws:eks:ap-northeast-1:123456789012:resource-679;resource-679;;;aws;ap-northeast-1;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.165496;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-1-780ab4c0;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-680 check result: MANUAL;False;elasticache;;critical;elasticache;arn:aws:elasticache:us-east-1:123456789012:resource-680;resource-680;;;aws;us-east-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.165504;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-us-east-2-c830b293;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;PASS;Resource resource-681 check result: PASS;False;elb;;high;elb;arn:aws:elb:us-east-2:123456789012:resource-681;resource-681;;;aws;us-east-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.165512;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-1-ba2dd06d;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-682 check result: FAIL;False;emr;;medium;emr;arn:aws:emr:us-west-1:123456789012:resource-682;resource-682;;;aws;us-west-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.165520;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-west-2-ae93edb5;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-683 check result: MANUAL;False;guardduty;;low;guardduty;arn:aws:guardduty:us-west-2:123456789012:resource-683;resource-683;;;aws;us-west-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.165528;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-eu-west-1-24dbc957;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-684 check result: PASS;False;iam;;informational;iam;arn:aws:iam:eu-west-1:123456789012:resource-684;resource-684;;;aws;eu-west-1;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 10:17:49.165538;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-2-9859e22e;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-685 check result: FAIL;False;kms;;critical;kms;arn:aws:kms:eu-west-2:123456789012:resource-685;resource-685;;;aws;eu-west-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.165547;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-eu-central-1-44ecc5cb;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;MANUAL;Resource resource-686 check result: MANUAL;False;lambda;;high;lambda;arn:aws:lambda:eu-central-1:123456789012:resource-686;resource-686;;;aws;eu-central-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.165555;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-ap-southeast-1-6be1ad8e;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-687 check result: PASS;False;rds;;medium;rds;arn:aws:rds:ap-southeast-1:123456789012:resource-687;resource-687;;;aws;ap-southeast-1;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.165563;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-2-1fa6b974;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-688 check result: FAIL;False;redshift;;low;redshift;arn:aws:redshift:ap-southeast-2:123456789012:resource-688;resource-688;;;aws;ap-southeast-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.165571;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-ap-northeast-1-0336335a;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-689 check result: MANUAL;False;s3;;informational;s3;arn:aws:s3:ap-northeast-1:123456789012:resource-689;resource-689;;;aws;ap-northeast-1;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.165579;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-1-7b050737;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-690 check result: PASS;False;secretsmanager;;critical;secretsmanager;arn:aws:secretsmanager:us-east-1:123456789012:resource-690;resource-690;;;aws;us-east-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.165587;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-2-40708b2c;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-691 check result: FAIL;False;sns;;high;sns;arn:aws:sns:us-east-2:123456789012:resource-691;resource-691;;;aws;us-east-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.165595;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-1-c9a5ea74;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-692 check result: MANUAL;False;sqs;;medium;sqs;arn:aws:sqs:us-west-1:123456789012:resource-692;resource-692;;;aws;us-west-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.165603;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-2-41d832c4;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-693 check result: PASS;False;ssm;;low;ssm;arn:aws:ssm:us-west-2:123456789012:resource-693;resource-693;;;aws;us-west-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.165612;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-1-785dae4b;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-694 check result: FAIL;False;vpc;;informational;vpc;arn:aws:vpc:eu-west-1:123456789012:resource-694;resource-694;;;aws;eu-west-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.165620;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-2-39013bc1;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-695 check result: MANUAL;False;waf;;critical;waf;arn:aws:waf:eu-west-2:123456789012:resource-695;resource-695;;;aws;eu-west-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.165627;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-eu-central-1-8806edfb;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;PASS;Resource resource-696 check result: PASS;False;accessanalyzer;;high;accessanalyzer;arn:aws:accessanalyzer:eu-central-1:123456789012:resource-696;resource-696;;;aws;eu-central-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.165636;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-southeast-1-b32e28f8;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;FAIL;Resource resource-697 check result: FAIL;False;acm;;medium;acm;arn:aws:acm:ap-southeast-1:123456789012:resource-697;resource-697;;;aws;ap-southeast-1;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.165644;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-ap-southeast-2-87bce115;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;MANUAL;Resource resource-698 check result: MANUAL;False;apigateway;;low;apigateway;arn:aws:apigateway:ap-southeast-2:123456789012:resource-698;resource-698;;;aws;ap-southeast-2;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.165652;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-northeast-1-4944ba35;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;PASS;Resource resource-699 check result: PASS;False;cloudfront;;informational;cloudfront;arn:aws:cloudfront:ap-northeast-1:123456789012:resource-699;resource-699;;;aws;ap-northeast-1;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 19:17:49.165660;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-east-1-51866278;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;FAIL;Resource resource-700 check result: FAIL;False;cloudtrail;;critical;cloudtrail;arn:aws:cloudtrail:us-east-1:123456789012:resource-700;resource-700;;;aws;us-east-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.165668;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-2-dec259fa;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-701 check result: MANUAL;False;cloudwatch;;high;cloudwatch;arn:aws:cloudwatch:us-east-2:123456789012:resource-701;resource-701;;;aws;us-east-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.165676;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-1-92498988;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-702 check result: PASS;False;config;;medium;config;arn:aws:config:us-west-1:123456789012:resource-702;resource-702;;;aws;us-west-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.165685;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-west-2-7f7ccc8c;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;FAIL;Resource resource-703 check result: FAIL;False;dynamodb;;low;dynamodb;arn:aws:dynamodb:us-west-2:123456789012:resource-703;resource-703;;;aws;us-west-2;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.165693;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-eu-west-1-b4d141f0;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-704 check result: MANUAL;False;ec2;;informational;ec2;arn:aws:ec2:eu-west-1:123456789012:resource-704;resource-704;;;aws;eu-west-1;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.165701;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-eu-west-2-93d2a559;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;PASS;Resource resource-705 check result: PASS;False;ecr;;critical;ecr;arn:aws:ecr:eu-west-2:123456789012:resource-705;resource-705;;;aws;eu-west-2;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.165709;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-central-1-24dac1b9;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-706 check result: FAIL;False;ecs;;high;ecs;arn:aws:ecs:eu-central-1:123456789012:resource-706;resource-706;;;aws;eu-central-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.165717;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-1-91bd223f;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-707 check result: MANUAL;False;efs;;medium;efs;arn:aws:efs:ap-southeast-1:123456789012:resource-707;resource-707;;;aws;ap-southeast-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.165725;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-ap-southeast-2-dc537e91;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;PASS;Resource resource-708 check result: PASS;False;eks;;low;eks;arn:aws:eks:ap-southeast-2:123456789012:resource-708;resource-708;;;aws;ap-southeast-2;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.165733;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-northeast-1-cb639c21;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-709 check result: FAIL;False;elasticache;;informational;elasticache;arn:aws:elasticache:ap-northeast-1:123456789012:resource-709;resource-709;;;aws;ap-northeast-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.165741;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-us-east-1-bc111a96;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;MANUAL;Resource resource-710 check result: MANUAL;False;elb;;critical;elb;arn:aws:elb:us-east-1:123456789012:resource-710;resource-710;;;aws;us-east-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.165749;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-2-ab72a4d7;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-711 check result: PASS;False;emr;;high;emr;arn:aws:emr:us-east-2:123456789012:resource-711;resource-711;;;aws;us-east-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.165757;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-west-1-99df51d1;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-712 check result: FAIL;False;guardduty;;medium;guardduty;arn:aws:guardduty:us-west-1:123456789012:resource-712;resource-712;;;aws;us-west-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.165765;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-us-west-2-558a9ae2;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-713 check result: MANUAL;False;iam;;low;iam;arn:aws:iam:us-west-2:123456789012:resource-713;resource-713;;;aws;us-west-2;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.165773;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-1-c412549a;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-714 check result: PASS;False;kms;;informational;kms;arn:aws:kms:eu-west-1:123456789012:resource-714;resource-714;;;aws;eu-west-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 04:17:49.165782;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-eu-west-2-c3eaf1ef;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;FAIL;Resource resource-715 check result: FAIL;False;lambda;;critical;lambda;arn:aws:lambda:eu-west-2:123456789012:resource-715;resource-715;;;aws;eu-west-2;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.165790;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-eu-central-1-88f45e40;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-716 check result: MANUAL;False;rds;;high;rds;arn:aws:rds:eu-central-1:123456789012:resource-716;resource-716;;;aws;eu-central-1;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.165797;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-1-a082515c;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-717 check result: PASS;False;redshift;;medium;redshift;arn:aws:redshift:ap-southeast-1:123456789012:resource-717;resource-717;;;aws;ap-southeast-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.165807;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-ap-southeast-2-4a1dda27;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-718 check result: FAIL;False;s3;;low;s3;arn:aws:s3:ap-southeast-2:123456789012:resource-718;resource-718;;;aws;ap-southeast-2;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.165817;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-northeast-1-982bf125;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-719 check result: MANUAL;False;secretsmanager;;informational;secretsmanager;arn:aws:secretsmanager:ap-northeast-1:123456789012:resource-719;resource-719;;;aws;ap-northeast-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.165825;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-1-1d839140;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-720 check result: PASS;False;sns;;critical;sns;arn:aws:sns:us-east-1:123456789012:resource-720;resource-720;;;aws;us-east-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.165834;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-2-9f1760f8;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-721 check result: FAIL;False;sqs;;high;sqs;arn:aws:sqs:us-east-2:123456789012:resource-721;resource-721;;;aws;us-east-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.165842;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-1-481dad3f;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-722 check result: MANUAL;False;ssm;;medium;ssm;arn:aws:ssm:us-west-1:123456789012:resource-722;resource-722;;;aws;us-west-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.165851;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-2-6223743a;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-723 check result: PASS;False;vpc;;low;vpc;arn:aws:vpc:us-west-2:123456789012:resource-723;resource-723;;;aws;us-west-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.165859;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-1-91452083;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-724 check result: FAIL;False;waf;;informational;waf;arn:aws:waf:eu-west-1:123456789012:resource-724;resource-724;;;aws;eu-west-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.165867;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-eu-west-2-56c11866;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;MANUAL;Resource resource-725 check result: MANUAL;False;accessanalyzer;;critical;accessanalyzer;arn:aws:accessanalyzer:eu-west-2:123456789012:resource-725;resource-725;;;aws;eu-west-2;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.165876;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-eu-central-1-082d4b41;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;PASS;Resource resource-726 check result: PASS;False;acm;;high;acm;arn:aws:acm:eu-central-1:123456789012:resource-726;resource-726;;;aws;eu-central-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.165884;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-southeast-1-1d627bc4;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;FAIL;Resource resource-727 check result: FAIL;False;apigateway;;medium;apigateway;arn:aws:apigateway:ap-southeast-1:123456789012:resource-727;resource-727;;;aws;ap-southeast-1;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.165894;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-ap-southeast-2-8702852f;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;MANUAL;Resource resource-728 check result: MANUAL;False;cloudfront;;low;cloudfront;arn:aws:cloudfront:ap-southeast-2:123456789012:resource-728;resource-728;;;aws;ap-southeast-2;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.165902;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-northeast-1-314e6d93;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;PASS;Resource resource-729 check result: PASS;False;cloudtrail;;informational;cloudtrail;arn:aws:cloudtrail:ap-northeast-1:123456789012:resource-729;resource-729;;;aws;ap-northeast-1;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 13:17:49.165911;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-1-a80003f1;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-730 check result: FAIL;False;cloudwatch;;critical;cloudwatch;arn:aws:cloudwatch:us-east-1:123456789012:resource-730;resource-730;;;aws;us-east-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.165919;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-2-ba7ba37d;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-731 check result: MANUAL;False;config;;high;config;arn:aws:config:us-east-2:123456789012:resource-731;resource-731;;;aws;us-east-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.165927;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-west-1-69e7feb4;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;PASS;Resource resource-732 check result: PASS;False;dynamodb;;medium;dynamodb;arn:aws:dynamodb:us-west-1:123456789012:resource-732;resource-732;;;aws;us-west-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.165936;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-us-west-2-81d3c66e;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-733 check result: FAIL;False;ec2;;low;ec2;arn:aws:ec2:us-west-2:123456789012:resource-733;resource-733;;;aws;us-west-2;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.165944;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-west-1-9a03791e;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;MANUAL;Resource resource-734 check result: MANUAL;False;ecr;;informational;ecr;arn:aws:ecr:eu-west-1:123456789012:resource-734;resource-734;;;aws;eu-west-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.166062;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-2-6c5e53b2;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-735 check result: PASS;False;ecs;;critical;ecs;arn:aws:ecs:eu-west-2:123456789012:resource-735;resource-735;;;aws;eu-west-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.166166;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-central-1-ea94f7dd;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-736 check result: FAIL;False;efs;;high;efs;arn:aws:efs:eu-central-1:123456789012:resource-736;resource-736;;;aws;eu-central-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.166184;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-southeast-1-f63b1771;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;MANUAL;Resource resource-737 check result: MANUAL;False;eks;;medium;eks;arn:aws:eks:ap-southeast-1:123456789012:resource-737;resource-737;;;aws;ap-southeast-1;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.166196;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-2-7b21b30a;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-738 check result: PASS;False;elasticache;;low;elasticache;arn:aws:elasticache:ap-southeast-2:123456789012:resource-738;resource-738;;;aws;ap-southeast-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.166208;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-ap-northeast-1-f3c5907e;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;FAIL;Resource resource-739 check result: FAIL;False;elb;;informational;elb;arn:aws:elb:ap-northeast-1:123456789012:resource-739;resource-739;;;aws;ap-northeast-1;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.166218;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-1-c865ac62;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-740 check result: MANUAL;False;emr;;critical;emr;arn:aws:emr:us-east-1:123456789012:resource-740;resource-740;;;aws;us-east-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.166227;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-east-2-940a6eaf;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-741 check result: PASS;False;guardduty;;high;guardduty;arn:aws:guardduty:us-east-2:123456789012:resource-741;resource-741;;;aws;us-east-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.166237;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-us-west-1-07f97418;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-742 check result: FAIL;False;iam;;medium;iam;arn:aws:iam:us-west-1:123456789012:resource-742;resource-742;;;aws;us-west-1;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.166281;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-2-6b9f8130;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-743 check result: MANUAL;False;kms;;low;kms;arn:aws:kms:us-west-2:123456789012:resource-743;resource-743;;;aws;us-west-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.166322;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-eu-west-1-0eeeacbd;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;PASS;Resource resource-744 check result: PASS;False;lambda;;informational;lambda;arn:aws:lambda:eu-west-1:123456789012:resource-744;resource-744;;;aws;eu-west-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 22:17:49.166336;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-eu-west-2-05ab41ea;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-745 check result: FAIL;False;rds;;critical;rds;arn:aws:rds:eu-west-2:123456789012:resource-745;resource-745;;;aws;eu-west-2;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.166345;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-eu-central-1-af4195f4;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-746 check result: MANUAL;False;redshift;;high;redshift;arn:aws:redshift:eu-central-1:123456789012:resource-746;resource-746;;;aws;eu-central-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.166354;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-ap-southeast-1-bbcbb0bc;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-747 check result: PASS;False;s3;;medium;s3;arn:aws:s3:ap-southeast-1:123456789012:resource-747;resource-747;;;aws;ap-southeast-1;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.166364;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-2-ef737fd8;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-748 check result: FAIL;False;secretsmanager;;low;secretsmanager;arn:aws:secretsmanager:ap-southeast-2:123456789012:resource-748;resource-748;;;aws;ap-southeast-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.166373;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-northeast-1-5b4e47e1;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-749 check result: MANUAL;False;sns;;informational;sns;arn:aws:sns:ap-northeast-1:123456789012:resource-749;resource-749;;;aws;ap-northeast-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.166382;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-1-480e50b1;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-750 check result: PASS;False;sqs;;critical;sqs;arn:aws:sqs:us-east-1:123456789012:resource-750;resource-750;;;aws;us-east-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.166391;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-2-a51e554e;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-751 check result: FAIL;False;ssm;;high;ssm;arn:aws:ssm:us-east-2:123456789012:resource-751;resource-751;;;aws;us-east-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.166401;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-1-f83fe5a9;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-752 check result: MANUAL;False;vpc;;medium;vpc;arn:aws:vpc:us-west-1:123456789012:resource-752;resource-752;;;aws;us-west-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.166409;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-2-a5f0d3d6;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-753 check result: PASS;False;waf;;low;waf;arn:aws:waf:us-west-2:123456789012:resource-753;resource-753;;;aws;us-west-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.166419;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-eu-west-1-5b12c8c6;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;FAIL;Resource resource-754 check result: FAIL;False;accessanalyzer;;informational;accessanalyzer;arn:aws:accessanalyzer:eu-west-1:123456789012:resource-754;resource-754;;;aws;eu-west-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.166427;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-eu-west-2-83172309;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;MANUAL;Resource resource-755 check result: MANUAL;False;acm;;critical;acm;arn:aws:acm:eu-west-2:123456789012:resource-755;resource-755;;;aws;eu-west-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.166436;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-central-1-a0faf75f;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;PASS;Resource resource-756 check result: PASS;False;apigateway;;high;apigateway;arn:aws:apigateway:eu-central-1:123456789012:resource-756;resource-756;;;aws;eu-central-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.166446;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-southeast-1-8b175346;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;FAIL;Resource resource-757 check result: FAIL;False;cloudfront;;medium;cloudfront;arn:aws:cloudfront:ap-southeast-1:123456789012:resource-757;resource-757;;;aws;ap-southeast-1;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.166455;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-ap-southeast-2-09b9841e;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;MANUAL;Resource resource-758 check result: MANUAL;False;cloudtrail;;low;cloudtrail;arn:aws:cloudtrail:ap-southeast-2:123456789012:resource-758;resource-758;;;aws;ap-southeast-2;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.166500;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-northeast-1-fef40209;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-759 check result: PASS;False;cloudwatch;;informational;cloudwatch;arn:aws:cloudwatch:ap-northeast-1:123456789012:resource-759;resource-759;;;aws;ap-northeast-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 07:17:49.166520;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-1-333ac7ef;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-760 check result: FAIL;False;config;;critical;config;arn:aws:config:us-east-1:123456789012:resource-760;resource-760;;;aws;us-east-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.166532;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-east-2-0df6d318;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;MANUAL;Resource resource-761 check result: MANUAL;False;dynamodb;;high;dynamodb;arn:aws:dynamodb:us-east-2:123456789012:resource-761;resource-761;;;aws;us-east-2;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.166543;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-us-west-1-766f932c;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-762 check result: PASS;False;ec2;;medium;ec2;arn:aws:ec2:us-west-1:123456789012:resource-762;resource-762;;;aws;us-west-1;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.166554;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-west-2-de4b6ddc;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;FAIL;Resource resource-763 check result: FAIL;False;ecr;;low;ecr;arn:aws:ecr:us-west-2:123456789012:resource-763;resource-763;;;aws;us-west-2;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.166563;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-1-22dafe10;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-764 check result: MANUAL;False;ecs;;informational;ecs;arn:aws:ecs:eu-west-1:123456789012:resource-764;resource-764;;;aws;eu-west-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.166572;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-2-f0083cf8;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-765 check result: PASS;False;efs;;critical;efs;arn:aws:efs:eu-west-2:123456789012:resource-765;resource-765;;;aws;eu-west-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.166582;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-eu-central-1-afb919f3;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;FAIL;Resource resource-766 check result: FAIL;False;eks;;high;eks;arn:aws:eks:eu-central-1:123456789012:resource-766;resource-766;;;aws;eu-central-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.166591;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-1-121e8924;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-767 check result: MANUAL;False;elasticache;;medium;elasticache;arn:aws:elasticache:ap-southeast-1:123456789012:resource-767;resource-767;;;aws;ap-southeast-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.166600;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-ap-southeast-2-09f62c77;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;PASS;Resource resource-768 check result: PASS;False;elb;;low;elb;arn:aws:elb:ap-southeast-2:123456789012:resource-768;resource-768;;;aws;ap-southeast-2;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.166612;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-northeast-1-bd5f135a;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-769 check result: FAIL;False;emr;;informational;emr;arn:aws:emr:ap-northeast-1:123456789012:resource-769;resource-769;;;aws;ap-northeast-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.166622;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-east-1-f981b3dd;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-770 check result: MANUAL;False;guardduty;;critical;guardduty;arn:aws:guardduty:us-east-1:123456789012:resource-770;resource-770;;;aws;us-east-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.166630;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-us-east-2-c644d1dc;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-771 check result: PASS;False;iam;;high;iam;arn:aws:iam:us-east-2:123456789012:resource-771;resource-771;;;aws;us-east-2;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.166640;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-1-735c3c2e;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-772 check result: FAIL;False;kms;;medium;kms;arn:aws:kms:us-west-1:123456789012:resource-772;resource-772;;;aws;us-west-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.166648;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-west-2-57ae1749;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;MANUAL;Resource resource-773 check result: MANUAL;False;lambda;;low;lambda;arn:aws:lambda:us-west-2:123456789012:resource-773;resource-773;;;aws;us-west-2;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.166657;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-eu-west-1-8d118191;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-774 check result: PASS;False;rds;;informational;rds;arn:aws:rds:eu-west-1:123456789012:resource-774;resource-774;;;aws;eu-west-1;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 16:17:49.166666;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-2-62fbf951;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-775 check result: FAIL;False;redshift;;critical;redshift;arn:aws:redshift:eu-west-2:123456789012:resource-775;resource-775;;;aws;eu-west-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.166675;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-eu-central-1-fbfa7805;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-776 check result: MANUAL;False;s3;;high;s3;arn:aws:s3:eu-central-1:123456789012:resource-776;resource-776;;;aws;eu-central-1;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.166683;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-1-c18747cc;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-777 check result: PASS;False;secretsmanager;;medium;secretsmanager;arn:aws:secretsmanager:ap-southeast-1:123456789012:resource-777;resource-777;;;aws;ap-southeast-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.166693;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-2-b119a4ff;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-778 check result: FAIL;False;sns;;low;sns;arn:aws:sns:ap-southeast-2:123456789012:resource-778;resource-778;;;aws;ap-southeast-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.166701;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-northeast-1-b500617e;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-779 check result: MANUAL;False;sqs;;informational;sqs;arn:aws:sqs:ap-northeast-1:123456789012:resource-779;resource-779;;;aws;ap-northeast-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.166709;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-1-2951ca9a;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-780 check result: PASS;False;ssm;;critical;ssm;arn:aws:ssm:us-east-1:123456789012:resource-780;resource-780;;;aws;us-east-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.166718;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-2-031433c6;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-781 check result: FAIL;False;vpc;;high;vpc;arn:aws:vpc:us-east-2:123456789012:resource-781;resource-781;;;aws;us-east-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.166727;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-1-c023979d;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-782 check result: MANUAL;False;waf;;medium;waf;arn:aws:waf:us-west-1:123456789012:resource-782;resource-782;;;aws;us-west-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.166735;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-us-west-2-e6727b29;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;PASS;Resource resource-783 check result: PASS;False;accessanalyzer;;low;accessanalyzer;arn:aws:accessanalyzer:us-west-2:123456789012:resource-783;resource-783;;;aws;us-west-2;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.166746;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-eu-west-1-eea94d7a;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;FAIL;Resource resource-784 check result: FAIL;False;acm;;informational;acm;arn:aws:acm:eu-west-1:123456789012:resource-784;resource-784;;;aws;eu-west-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.166755;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-eu-west-2-2023125e;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;MANUAL;Resource resource-785 check result: MANUAL;False;apigateway;;critical;apigateway;arn:aws:apigateway:eu-west-2:123456789012:resource-785;resource-785;;;aws;eu-west-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.166764;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-central-1-69f84d16;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;PASS;Resource resource-786 check result: PASS;False;cloudfront;;high;cloudfront;arn:aws:cloudfront:eu-central-1:123456789012:resource-786;resource-786;;;aws;eu-central-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.166773;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-southeast-1-33bbcd85;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;FAIL;Resource resource-787 check result: FAIL;False;cloudtrail;;medium;cloudtrail;arn:aws:cloudtrail:ap-southeast-1:123456789012:resource-787;resource-787;;;aws;ap-southeast-1;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.166781;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-2-7400e57e;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-788 check result: MANUAL;False;cloudwatch;;low;cloudwatch;arn:aws:cloudwatch:ap-southeast-2:123456789012:resource-788;resource-788;;;aws;ap-southeast-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.166790;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-northeast-1-6defeb84;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-789 check result: PASS;False;config;;informational;config;arn:aws:config:ap-northeast-1:123456789012:resource-789;resource-789;;;aws;ap-northeast-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 01:17:49.166799;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-east-1-1d830223;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;FAIL;Resource resource-790 check result: FAIL;False;dynamodb;;critical;dynamodb;arn:aws:dynamodb:us-east-1:123456789012:resource-790;resource-790;;;aws;us-east-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.166807;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-us-east-2-698afc59;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-791 check result: MANUAL;False;ec2;;high;ec2;arn:aws:ec2:us-east-2:123456789012:resource-791;resource-791;;;aws;us-east-2;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.166816;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-west-1-b4587573;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;PASS;Resource resource-792 check result: PASS;False;ecr;;medium;ecr;arn:aws:ecr:us-west-1:123456789012:resource-792;resource-792;;;aws;us-west-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.166825;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-2-261e0407;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-793 check result: FAIL;False;ecs;;low;ecs;arn:aws:ecs:us-west-2:123456789012:resource-793;resource-793;;;aws;us-west-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.166833;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-1-636504a5;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-794 check result: MANUAL;False;efs;;informational;efs;arn:aws:efs:eu-west-1:123456789012:resource-794;resource-794;;;aws;eu-west-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.166842;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-eu-west-2-d330c8fa;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;PASS;Resource resource-795 check result: PASS;False;eks;;critical;eks;arn:aws:eks:eu-west-2:123456789012:resource-795;resource-795;;;aws;eu-west-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.166851;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-central-1-60976e93;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-796 check result: FAIL;False;elasticache;;high;elasticache;arn:aws:elasticache:eu-central-1:123456789012:resource-796;resource-796;;;aws;eu-central-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.166859;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-ap-southeast-1-a7b2ef3e;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;MANUAL;Resource resource-797 check result: MANUAL;False;elb;;medium;elb;arn:aws:elb:ap-southeast-1:123456789012:resource-797;resource-797;;;aws;ap-southeast-1;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.166868;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-2-12e68a09;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-798 check result: PASS;False;emr;;low;emr;arn:aws:emr:ap-southeast-2:123456789012:resource-798;resource-798;;;aws;ap-southeast-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.166877;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-ap-northeast-1-8d5145c5;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-799 check result: FAIL;False;guardduty;;informational;guardduty;arn:aws:guardduty:ap-northeast-1:123456789012:resource-799;resource-799;;;aws;ap-northeast-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.166886;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-us-east-1-130eb541;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-800 check result: MANUAL;False;iam;;critical;iam;arn:aws:iam:us-east-1:123456789012:resource-800;resource-800;;;aws;us-east-1;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.166894;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-2-c8a88656;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-801 check result: PASS;False;kms;;high;kms;arn:aws:kms:us-east-2:123456789012:resource-801;resource-801;;;aws;us-east-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.166903;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-us-west-1-6e71f7c6;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;FAIL;Resource resource-802 check result: FAIL;False;lambda;;medium;lambda;arn:aws:lambda:us-west-1:123456789012:resource-802;resource-802;;;aws;us-west-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.166911;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-us-west-2-b551b2ba;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-803 check result: MANUAL;False;rds;;low;rds;arn:aws:rds:us-west-2:123456789012:resource-803;resource-803;;;aws;us-west-2;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.166919;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-1-ce78f876;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-804 check result: PASS;False;redshift;;informational;redshift;arn:aws:redshift:eu-west-1:123456789012:resource-804;resource-804;;;aws;eu-west-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 10:17:49.166928;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-eu-west-2-17e05903;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-805 check result: FAIL;False;s3;;critical;s3;arn:aws:s3:eu-west-2:123456789012:resource-805;resource-805;;;aws;eu-west-2;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.166937;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-central-1-8f9b7096;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-806 check result: MANUAL;False;secretsmanager;;high;secretsmanager;arn:aws:secretsmanager:eu-central-1:123456789012:resource-806;resource-806;;;aws;eu-central-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.166945;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-1-6a288df6;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-807 check result: PASS;False;sns;;medium;sns;arn:aws:sns:ap-southeast-1:123456789012:resource-807;resource-807;;;aws;ap-southeast-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.166954;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-2-0fbf2b56;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-808 check result: FAIL;False;sqs;;low;sqs;arn:aws:sqs:ap-southeast-2:123456789012:resource-808;resource-808;;;aws;ap-southeast-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.166962;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-ap-northeast-1-06c4573b;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-809 check result: MANUAL;False;ssm;;informational;ssm;arn:aws:ssm:ap-northeast-1:123456789012:resource-809;resource-809;;;aws;ap-northeast-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.166970;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-1-95389531;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-810 check result: PASS;False;vpc;;critical;vpc;arn:aws:vpc:us-east-1:123456789012:resource-810;resource-810;;;aws;us-east-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.166979;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-2-b4428b95;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-811 check result: FAIL;False;waf;;high;waf;arn:aws:waf:us-east-2:123456789012:resource-811;resource-811;;;aws;us-east-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.166987;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-us-west-1-3155c6b2;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;MANUAL;Resource resource-812 check result: MANUAL;False;accessanalyzer;;medium;accessanalyzer;arn:aws:accessanalyzer:us-west-1:123456789012:resource-812;resource-812;;;aws;us-west-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.166997;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-west-2-97a8f2e0;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;PASS;Resource resource-813 check result: PASS;False;acm;;low;acm;arn:aws:acm:us-west-2:123456789012:resource-813;resource-813;;;aws;us-west-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.167007;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-west-1-d89d0daf;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;FAIL;Resource resource-814 check result: FAIL;False;apigateway;;informational;apigateway;arn:aws:apigateway:eu-west-1:123456789012:resource-814;resource-814;;;aws;eu-west-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.167015;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-eu-west-2-44e5eeae;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;MANUAL;Resource resource-815 check result: MANUAL;False;cloudfront;;critical;cloudfront;arn:aws:cloudfront:eu-west-2:123456789012:resource-815;resource-815;;;aws;eu-west-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.167023;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-central-1-b1a2db7a;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;PASS;Resource resource-816 check result: PASS;False;cloudtrail;;high;cloudtrail;arn:aws:cloudtrail:eu-central-1:123456789012:resource-816;resource-816;;;aws;eu-central-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.167032;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-1-bc099245;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-817 check result: FAIL;False;cloudwatch;;medium;cloudwatch;arn:aws:cloudwatch:ap-southeast-1:123456789012:resource-817;resource-817;;;aws;ap-southeast-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.167041;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-2-1105f46d;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-818 check result: MANUAL;False;config;;low;config;arn:aws:config:ap-southeast-2:123456789012:resource-818;resource-818;;;aws;ap-southeast-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.167049;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-northeast-1-f13e581f;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;PASS;Resource resource-819 check result: PASS;False;dynamodb;;informational;dynamodb;arn:aws:dynamodb:ap-northeast-1:123456789012:resource-819;resource-819;;;aws;ap-northeast-1;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 19:17:49.167058;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-us-east-1-82301f7e;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-820 check result: FAIL;False;ec2;;critical;ec2;arn:aws:ec2:us-east-1:123456789012:resource-820;resource-820;;;aws;us-east-1;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.167111;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-east-2-8c04f8e8;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;MANUAL;Resource resource-821 check result: MANUAL;False;ecr;;high;ecr;arn:aws:ecr:us-east-2:123456789012:resource-821;resource-821;;;aws;us-east-2;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.167126;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-1-7d247c99;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-822 check result: PASS;False;ecs;;medium;ecs;arn:aws:ecs:us-west-1:123456789012:resource-822;resource-822;;;aws;us-west-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.167135;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-2-8d56d16f;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-823 check result: FAIL;False;efs;;low;efs;arn:aws:efs:us-west-2:123456789012:resource-823;resource-823;;;aws;us-west-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.167145;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-eu-west-1-bff9c438;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;MANUAL;Resource resource-824 check result: MANUAL;False;eks;;informational;eks;arn:aws:eks:eu-west-1:123456789012:resource-824;resource-824;;;aws;eu-west-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.167153;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-2-a921b98a;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-825 check result: PASS;False;elasticache;;critical;elasticache;arn:aws:elasticache:eu-west-2:123456789012:resource-825;resource-825;;;aws;eu-west-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.167164;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-eu-central-1-5f566562;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;FAIL;Resource resource-826 check result: FAIL;False;elb;;high;elb;arn:aws:elb:eu-central-1:123456789012:resource-826;resource-826;;;aws;eu-central-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.167173;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-1-4ffeb6eb;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-827 check result: MANUAL;False;emr;;medium;emr;arn:aws:emr:ap-southeast-1:123456789012:resource-827;resource-827;;;aws;ap-southeast-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.167181;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-2-31077a3b;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-828 check result: PASS;False;guardduty;;low;guardduty;arn:aws:guardduty:ap-southeast-2:123456789012:resource-828;resource-828;;;aws;ap-southeast-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.167190;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-ap-northeast-1-241253d2;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-829 check result: FAIL;False;iam;;informational;iam;arn:aws:iam:ap-northeast-1:123456789012:resource-829;resource-829;;;aws;ap-northeast-1;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.167198;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-1-d6254a21;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-830 check result: MANUAL;False;kms;;critical;kms;arn:aws:kms:us-east-1:123456789012:resource-830;resource-830;;;aws;us-east-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.167206;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-east-2-2d03c17d;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;PASS;Resource resource-831 check result: PASS;False;lambda;;high;lambda;arn:aws:lambda:us-east-2:123456789012:resource-831;resource-831;;;aws;us-east-2;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.167216;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-us-west-1-fd4a1ce7;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-832 check result: FAIL;False;rds;;medium;rds;arn:aws:rds:us-west-1:123456789012:resource-832;resource-832;;;aws;us-west-1;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.167224;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-2-4618a9e8;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-833 check result: MANUAL;False;redshift;;low;redshift;arn:aws:redshift:us-west-2:123456789012:resource-833;resource-833;;;aws;us-west-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.167232;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-eu-west-1-65d66958;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-834 check result: PASS;False;s3;;informational;s3;arn:aws:s3:eu-west-1:123456789012:resource-834;resource-834;;;aws;eu-west-1;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 04:17:49.167241;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-2-3eec674c;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-835 check result: FAIL;False;secretsmanager;;critical;secretsmanager;arn:aws:secretsmanager:eu-west-2:123456789012:resource-835;resource-835;;;aws;eu-west-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.167252;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-central-1-1204ba3a;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-836 check result: MANUAL;False;sns;;high;sns;arn:aws:sns:eu-central-1:123456789012:resource-836;resource-836;;;aws;eu-central-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.167260;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-1-22379bff;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-837 check result: PASS;False;sqs;;medium;sqs;arn:aws:sqs:ap-southeast-1:123456789012:resource-837;resource-837;;;aws;ap-southeast-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.167269;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-2-c820b0f2;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-838 check result: FAIL;False;ssm;;low;ssm;arn:aws:ssm:ap-southeast-2:123456789012:resource-838;resource-838;;;aws;ap-southeast-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.167277;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-northeast-1-9cce3781;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-839 check result: MANUAL;False;vpc;;informational;vpc;arn:aws:vpc:ap-northeast-1:123456789012:resource-839;resource-839;;;aws;ap-northeast-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.167285;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-1-4492326c;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-840 check result: PASS;False;waf;;critical;waf;arn:aws:waf:us-east-1:123456789012:resource-840;resource-840;;;aws;us-east-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.167294;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-us-east-2-4bc1eb65;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;FAIL;Resource resource-841 check result: FAIL;False;accessanalyzer;;high;accessanalyzer;arn:aws:accessanalyzer:us-east-2:123456789012:resource-841;resource-841;;;aws;us-east-2;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.167302;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-us-west-1-19470c55;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;MANUAL;Resource resource-842 check result: MANUAL;False;acm;;medium;acm;arn:aws:acm:us-west-1:123456789012:resource-842;resource-842;;;aws;us-west-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.167310;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-west-2-8f73fd55;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;PASS;Resource resource-843 check result: PASS;False;apigateway;;low;apigateway;arn:aws:apigateway:us-west-2:123456789012:resource-843;resource-843;;;aws;us-west-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.167319;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-west-1-7cacf823;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;FAIL;Resource resource-844 check result: FAIL;False;cloudfront;;informational;cloudfront;arn:aws:cloudfront:eu-west-1:123456789012:resource-844;resource-844;;;aws;eu-west-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.167327;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-eu-west-2-c5bd7874;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;MANUAL;Resource resource-845 check result: MANUAL;False;cloudtrail;;critical;cloudtrail;arn:aws:cloudtrail:eu-west-2:123456789012:resource-845;resource-845;;;aws;eu-west-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.167336;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-central-1-f41f4561;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-846 check result: PASS;False;cloudwatch;;high;cloudwatch;arn:aws:cloudwatch:eu-central-1:123456789012:resource-846;resource-846;;;aws;eu-central-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.167345;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-1-4aeba7ff;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-847 check result: FAIL;False;config;;medium;config;arn:aws:config:ap-southeast-1:123456789012:resource-847;resource-847;;;aws;ap-southeast-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.167353;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-ap-southeast-2-b326334b;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;MANUAL;Resource resource-848 check result: MANUAL;False;dynamodb;;low;dynamodb;arn:aws:dynamodb:ap-southeast-2:123456789012:resource-848;resource-848;;;aws;ap-southeast-2;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.167361;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-ap-northeast-1-abf47035;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-849 check result: PASS;False;ec2;;informational;ec2;arn:aws:ec2:ap-northeast-1:123456789012:resource-849;resource-849;;;aws;ap-northeast-1;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 13:17:49.167370;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-east-1-44bf946a;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;FAIL;Resource resource-850 check result: FAIL;False;ecr;;critical;ecr;arn:aws:ecr:us-east-1:123456789012:resource-850;resource-850;;;aws;us-east-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.167399;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-2-146f24a7;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-851 check result: MANUAL;False;ecs;;high;ecs;arn:aws:ecs:us-east-2:123456789012:resource-851;resource-851;;;aws;us-east-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.167445;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-1-5d16544f;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-852 check result: PASS;False;efs;;medium;efs;arn:aws:efs:us-west-1:123456789012:resource-852;resource-852;;;aws;us-west-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.167454;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-west-2-3a42b4c5;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;FAIL;Resource resource-853 check result: FAIL;False;eks;;low;eks;arn:aws:eks:us-west-2:123456789012:resource-853;resource-853;;;aws;us-west-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.167463;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-1-8be08721;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-854 check result: MANUAL;False;elasticache;;informational;elasticache;arn:aws:elasticache:eu-west-1:123456789012:resource-854;resource-854;;;aws;eu-west-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.167472;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-eu-west-2-b73c3847;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;PASS;Resource resource-855 check result: PASS;False;elb;;critical;elb;arn:aws:elb:eu-west-2:123456789012:resource-855;resource-855;;;aws;eu-west-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.167481;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-central-1-f71ae566;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-856 check result: FAIL;False;emr;;high;emr;arn:aws:emr:eu-central-1:123456789012:resource-856;resource-856;;;aws;eu-central-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.167489;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-1-7b25800c;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-857 check result: MANUAL;False;guardduty;;medium;guardduty;arn:aws:guardduty:ap-southeast-1:123456789012:resource-857;resource-857;;;aws;ap-southeast-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.167501;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-ap-southeast-2-ba92b96f;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-858 check result: PASS;False;iam;;low;iam;arn:aws:iam:ap-southeast-2:123456789012:resource-858;resource-858;;;aws;ap-southeast-2;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.167510;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-northeast-1-c4255ceb;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-859 check result: FAIL;False;kms;;informational;kms;arn:aws:kms:ap-northeast-1:123456789012:resource-859;resource-859;;;aws;ap-northeast-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.167519;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-us-east-1-a7d228a5;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;MANUAL;Resource resource-860 check result: MANUAL;False;lambda;;critical;lambda;arn:aws:lambda:us-east-1:123456789012:resource-860;resource-860;;;aws;us-east-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.167528;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-us-east-2-2a45caa5;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-861 check result: PASS;False;rds;;high;rds;arn:aws:rds:us-east-2:123456789012:resource-861;resource-861;;;aws;us-east-2;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.167536;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-1-eec7b6b2;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-862 check result: FAIL;False;redshift;;medium;redshift;arn:aws:redshift:us-west-1:123456789012:resource-862;resource-862;;;aws;us-west-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.167545;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-us-west-2-3020d319;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-863 check result: MANUAL;False;s3;;low;s3;arn:aws:s3:us-west-2:123456789012:resource-863;resource-863;;;aws;us-west-2;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.167553;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-1-0d4a6b9b;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-864 check result: PASS;False;secretsmanager;;informational;secretsmanager;arn:aws:secretsmanager:eu-west-1:123456789012:resource-864;resource-864;;;aws;eu-west-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 22:17:49.167562;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-2-c3d5c0b2;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-865 check result: FAIL;False;sns;;critical;sns;arn:aws:sns:eu-west-2:123456789012:resource-865;resource-865;;;aws;eu-west-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.167570;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-central-1-08b89797;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-866 check result: MANUAL;False;sqs;;high;sqs;arn:aws:sqs:eu-central-1:123456789012:resource-866;resource-866;;;aws;eu-central-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.167578;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-1-3549d68e;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-867 check result: PASS;False;ssm;;medium;ssm;arn:aws:ssm:ap-southeast-1:123456789012:resource-867;resource-867;;;aws;ap-southeast-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.167587;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-2-1f57a18d;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-868 check result: FAIL;False;vpc;;low;vpc;arn:aws:vpc:ap-southeast-2:123456789012:resource-868;resource-868;;;aws;ap-southeast-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.167595;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-northeast-1-4a1d31c3;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-869 check result: MANUAL;False;waf;;informational;waf;arn:aws:waf:ap-northeast-1:123456789012:resource-869;resource-869;;;aws;ap-northeast-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.167603;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-us-east-1-d5aa99fa;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;PASS;Resource resource-870 check result: PASS;False;accessanalyzer;;critical;accessanalyzer;arn:aws:accessanalyzer:us-east-1:123456789012:resource-870;resource-870;;;aws;us-east-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.167613;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-east-2-bded3d33;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;FAIL;Resource resource-871 check result: FAIL;False;acm;;high;acm;arn:aws:acm:us-east-2:123456789012:resource-871;resource-871;;;aws;us-east-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.167621;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-west-1-8ffbd84f;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;MANUAL;Resource resource-872 check result: MANUAL;False;apigateway;;medium;apigateway;arn:aws:apigateway:us-west-1:123456789012:resource-872;resource-872;;;aws;us-west-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.167630;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-west-2-19c1e8a3;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;PASS;Resource resource-873 check result: PASS;False;cloudfront;;low;cloudfront;arn:aws:cloudfront:us-west-2:123456789012:resource-873;resource-873;;;aws;us-west-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.167639;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-west-1-dfdc2a7c;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;FAIL;Resource resource-874 check result: FAIL;False;cloudtrail;;informational;cloudtrail;arn:aws:cloudtrail:eu-west-1:123456789012:resource-874;resource-874;;;aws;eu-west-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.167647;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-2-7fe1d988;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-875 check result: MANUAL;False;cloudwatch;;critical;cloudwatch;arn:aws:cloudwatch:eu-west-2:123456789012:resource-875;resource-875;;;aws;eu-west-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.167655;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-central-1-79832b81;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-876 check result: PASS;False;config;;high;config;arn:aws:config:eu-central-1:123456789012:resource-876;resource-876;;;aws;eu-central-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.167664;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-southeast-1-bf716ed5;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;FAIL;Resource resource-877 check result: FAIL;False;dynamodb;;medium;dynamodb;arn:aws:dynamodb:ap-southeast-1:123456789012:resource-877;resource-877;;;aws;ap-southeast-1;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.167673;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-ap-southeast-2-29ebfaf9;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-878 check result: MANUAL;False;ec2;;low;ec2;arn:aws:ec2:ap-southeast-2:123456789012:resource-878;resource-878;;;aws;ap-southeast-2;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.167681;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-northeast-1-9c86a023;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;PASS;Resource resource-879 check result: PASS;False;ecr;;informational;ecr;arn:aws:ecr:ap-northeast-1:123456789012:resource-879;resource-879;;;aws;ap-northeast-1;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 07:17:49.167690;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-1-ff10471f;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-880 check result: FAIL;False;ecs;;critical;ecs;arn:aws:ecs:us-east-1:123456789012:resource-880;resource-880;;;aws;us-east-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.167699;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-2-0d5aa318;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-881 check result: MANUAL;False;efs;;high;efs;arn:aws:efs:us-east-2:123456789012:resource-881;resource-881;;;aws;us-east-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.167707;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-us-west-1-f9245654;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;PASS;Resource resource-882 check result: PASS;False;eks;;medium;eks;arn:aws:eks:us-west-1:123456789012:resource-882;resource-882;;;aws;us-west-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.167716;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-2-353b13a0;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-883 check result: FAIL;False;elasticache;;low;elasticache;arn:aws:elasticache:us-west-2:123456789012:resource-883;resource-883;;;aws;us-west-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.167724;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-eu-west-1-d0255857;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;MANUAL;Resource resource-884 check result: MANUAL;False;elb;;informational;elb;arn:aws:elb:eu-west-1:123456789012:resource-884;resource-884;;;aws;eu-west-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.167732;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-2-3ca5e329;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-885 check result: PASS;False;emr;;critical;emr;arn:aws:emr:eu-west-2:123456789012:resource-885;resource-885;;;aws;eu-west-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.167741;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-central-1-1336fd8d;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-886 check result: FAIL;False;guardduty;;high;guardduty;arn:aws:guardduty:eu-central-1:123456789012:resource-886;resource-886;;;aws;eu-central-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.167750;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-ap-southeast-1-d3ac0963;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-887 check result: MANUAL;False;iam;;medium;iam;arn:aws:iam:ap-southeast-1:123456789012:resource-887;resource-887;;;aws;ap-southeast-1;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.167758;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-2-5553c887;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-888 check result: PASS;False;kms;;low;kms;arn:aws:kms:ap-southeast-2:123456789012:resource-888;resource-888;;;aws;ap-southeast-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.167766;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-northeast-1-5e8d6ef9;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;FAIL;Resource resource-889 check result: FAIL;False;lambda;;informational;lambda;arn:aws:lambda:ap-northeast-1:123456789012:resource-889;resource-889;;;aws;ap-northeast-1;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.167775;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-us-east-1-776ccfd2;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-890 check result: MANUAL;False;rds;;critical;rds;arn:aws:rds:us-east-1:123456789012:resource-890;resource-890;;;aws;us-east-1;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.167783;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-2-b38bacf7;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-891 check result: PASS;False;redshift;;high;redshift;arn:aws:redshift:us-east-2:123456789012:resource-891;resource-891;;;aws;us-east-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.167792;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-us-west-1-97a2ecc0;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-892 check result: FAIL;False;s3;;medium;s3;arn:aws:s3:us-west-1:123456789012:resource-892;resource-892;;;aws;us-west-1;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.167800;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-2-1ea3a595;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-893 check result: MANUAL;False;secretsmanager;;low;secretsmanager;arn:aws:secretsmanager:us-west-2:123456789012:resource-893;resource-893;;;aws;us-west-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.167808;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-1-fdc8569a;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-894 check result: PASS;False;sns;;informational;sns;arn:aws:sns:eu-west-1:123456789012:resource-894;resource-894;;;aws;eu-west-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 16:17:49.167817;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-2-1c491e19;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-895 check result: FAIL;False;sqs;;critical;sqs;arn:aws:sqs:eu-west-2:123456789012:resource-895;resource-895;;;aws;eu-west-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.167825;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-central-1-cba98b9d;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-896 check result: MANUAL;False;ssm;;high;ssm;arn:aws:ssm:eu-central-1:123456789012:resource-896;resource-896;;;aws;eu-central-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.167833;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-1-47f0b446;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-897 check result: PASS;False;vpc;;medium;vpc;arn:aws:vpc:ap-southeast-1:123456789012:resource-897;resource-897;;;aws;ap-southeast-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.167844;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-2-89af1238;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-898 check result: FAIL;False;waf;;low;waf;arn:aws:waf:ap-southeast-2:123456789012:resource-898;resource-898;;;aws;ap-southeast-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.167852;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-ap-northeast-1-13e68d80;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;MANUAL;Resource resource-899 check result: MANUAL;False;accessanalyzer;;informational;accessanalyzer;arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-899;resource-899;;;aws;ap-northeast-1;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.167860;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-us-east-1-a1c23b9f;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;PASS;Resource resource-900 check result: PASS;False;acm;;critical;acm;arn:aws:acm:us-east-1:123456789012:resource-900;resource-900;;;aws;us-east-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.167869;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-east-2-1196ce33;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;FAIL;Resource resource-901 check result: FAIL;False;apigateway;;high;apigateway;arn:aws:apigateway:us-east-2:123456789012:resource-901;resource-901;;;aws;us-east-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.167877;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-west-1-421f061d;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;MANUAL;Resource resource-902 check result: MANUAL;False;cloudfront;;medium;cloudfront;arn:aws:cloudfront:us-west-1:123456789012:resource-902;resource-902;;;aws;us-west-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.167885;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-west-2-6ccc4580;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;PASS;Resource resource-903 check result: PASS;False;cloudtrail;;low;cloudtrail;arn:aws:cloudtrail:us-west-2:123456789012:resource-903;resource-903;;;aws;us-west-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.167894;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-1-13f6c303;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-904 check result: FAIL;False;cloudwatch;;informational;cloudwatch;arn:aws:cloudwatch:eu-west-1:123456789012:resource-904;resource-904;;;aws;eu-west-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.167902;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-2-64ecdc55;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-905 check result: MANUAL;False;config;;critical;config;arn:aws:config:eu-west-2:123456789012:resource-905;resource-905;;;aws;eu-west-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.167910;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-central-1-753c2931;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;PASS;Resource resource-906 check result: PASS;False;dynamodb;;high;dynamodb;arn:aws:dynamodb:eu-central-1:123456789012:resource-906;resource-906;;;aws;eu-central-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.167920;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-ap-southeast-1-ee3c85a4;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-907 check result: FAIL;False;ec2;;medium;ec2;arn:aws:ec2:ap-southeast-1:123456789012:resource-907;resource-907;;;aws;ap-southeast-1;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.167930;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-ap-southeast-2-4cade1f2;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;MANUAL;Resource resource-908 check result: MANUAL;False;ecr;;low;ecr;arn:aws:ecr:ap-southeast-2:123456789012:resource-908;resource-908;;;aws;ap-southeast-2;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.167938;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-northeast-1-8a85dc99;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-909 check result: PASS;False;ecs;;informational;ecs;arn:aws:ecs:ap-northeast-1:123456789012:resource-909;resource-909;;;aws;ap-northeast-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 01:17:49.167947;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-1-2c9b85ed;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-910 check result: FAIL;False;efs;;critical;efs;arn:aws:efs:us-east-1:123456789012:resource-910;resource-910;;;aws;us-east-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.167955;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-east-2-6a1e43d1;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;MANUAL;Resource resource-911 check result: MANUAL;False;eks;;high;eks;arn:aws:eks:us-east-2:123456789012:resource-911;resource-911;;;aws;us-east-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.167963;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-1-14529ddc;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-912 check result: PASS;False;elasticache;;medium;elasticache;arn:aws:elasticache:us-west-1:123456789012:resource-912;resource-912;;;aws;us-west-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.167972;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-us-west-2-011576f7;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;FAIL;Resource resource-913 check result: FAIL;False;elb;;low;elb;arn:aws:elb:us-west-2:123456789012:resource-913;resource-913;;;aws;us-west-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.167982;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-1-77b592ae;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-914 check result: MANUAL;False;emr;;informational;emr;arn:aws:emr:eu-west-1:123456789012:resource-914;resource-914;;;aws;eu-west-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.167990;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-west-2-875f6f44;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-915 check result: PASS;False;guardduty;;critical;guardduty;arn:aws:guardduty:eu-west-2:123456789012:resource-915;resource-915;;;aws;eu-west-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.167999;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-eu-central-1-4dabd069;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-916 check result: FAIL;False;iam;;high;iam;arn:aws:iam:eu-central-1:123456789012:resource-916;resource-916;;;aws;eu-central-1;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.168007;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-1-42a59eaa;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-917 check result: MANUAL;False;kms;;medium;kms;arn:aws:kms:ap-southeast-1:123456789012:resource-917;resource-917;;;aws;ap-southeast-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.168015;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-ap-southeast-2-a45a3408;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;PASS;Resource resource-918 check result: PASS;False;lambda;;low;lambda;arn:aws:lambda:ap-southeast-2:123456789012:resource-918;resource-918;;;aws;ap-southeast-2;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.168025;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-ap-northeast-1-5b4d38f1;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-919 check result: FAIL;False;rds;;informational;rds;arn:aws:rds:ap-northeast-1:123456789012:resource-919;resource-919;;;aws;ap-northeast-1;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.168033;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-1-532edffb;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-920 check result: MANUAL;False;redshift;;critical;redshift;arn:aws:redshift:us-east-1:123456789012:resource-920;resource-920;;;aws;us-east-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.168041;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-us-east-2-7f7185f9;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-921 check result: PASS;False;s3;;high;s3;arn:aws:s3:us-east-2:123456789012:resource-921;resource-921;;;aws;us-east-2;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.168050;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-1-52587c99;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-922 check result: FAIL;False;secretsmanager;;medium;secretsmanager;arn:aws:secretsmanager:us-west-1:123456789012:resource-922;resource-922;;;aws;us-west-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.168058;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-2-7c612a54;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-923 check result: MANUAL;False;sns;;low;sns;arn:aws:sns:us-west-2:123456789012:resource-923;resource-923;;;aws;us-west-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.168066;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-1-958fde89;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-924 check result: PASS;False;sqs;;informational;sqs;arn:aws:sqs:eu-west-1:123456789012:resource-924;resource-924;;;aws;eu-west-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 10:17:49.168074;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-2-d98ff9cc;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-925 check result: FAIL;False;ssm;;critical;ssm;arn:aws:ssm:eu-west-2:123456789012:resource-925;resource-925;;;aws;eu-west-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.168082;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-eu-central-1-721c5c70;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-926 check result: MANUAL;False;vpc;;high;vpc;arn:aws:vpc:eu-central-1:123456789012:resource-926;resource-926;;;aws;eu-central-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.168090;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-1-de8b9e03;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-927 check result: PASS;False;waf;;medium;waf;arn:aws:waf:ap-southeast-1:123456789012:resource-927;resource-927;;;aws;ap-southeast-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.168098;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-ap-southeast-2-16d798a4;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;FAIL;Resource resource-928 check result: FAIL;False;accessanalyzer;;low;accessanalyzer;arn:aws:accessanalyzer:ap-southeast-2:123456789012:resource-928;resource-928;;;aws;ap-southeast-2;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.168106;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-northeast-1-219582fb;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;MANUAL;Resource resource-929 check result: MANUAL;False;acm;;informational;acm;arn:aws:acm:ap-northeast-1:123456789012:resource-929;resource-929;;;aws;ap-northeast-1;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.168115;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-east-1-ab8d4791;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;PASS;Resource resource-930 check result: PASS;False;apigateway;;critical;apigateway;arn:aws:apigateway:us-east-1:123456789012:resource-930;resource-930;;;aws;us-east-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.168124;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-east-2-c510c37c;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;FAIL;Resource resource-931 check result: FAIL;False;cloudfront;;high;cloudfront;arn:aws:cloudfront:us-east-2:123456789012:resource-931;resource-931;;;aws;us-east-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.168132;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-west-1-8d83151d;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;MANUAL;Resource resource-932 check result: MANUAL;False;cloudtrail;;medium;cloudtrail;arn:aws:cloudtrail:us-west-1:123456789012:resource-932;resource-932;;;aws;us-west-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.168140;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-2-a1c80d29;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-933 check result: PASS;False;cloudwatch;;low;cloudwatch;arn:aws:cloudwatch:us-west-2:123456789012:resource-933;resource-933;;;aws;us-west-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.168149;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-1-fb34558c;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-934 check result: FAIL;False;config;;informational;config;arn:aws:config:eu-west-1:123456789012:resource-934;resource-934;;;aws;eu-west-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.168157;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-eu-west-2-f1334e96;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;MANUAL;Resource resource-935 check result: MANUAL;False;dynamodb;;critical;dynamodb;arn:aws:dynamodb:eu-west-2:123456789012:resource-935;resource-935;;;aws;eu-west-2;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.168165;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-eu-central-1-818680fb;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-936 check result: PASS;False;ec2;;high;ec2;arn:aws:ec2:eu-central-1:123456789012:resource-936;resource-936;;;aws;eu-central-1;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.168174;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-southeast-1-cb4bdf02;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;FAIL;Resource resource-937 check result: FAIL;False;ecr;;medium;ecr;arn:aws:ecr:ap-southeast-1:123456789012:resource-937;resource-937;;;aws;ap-southeast-1;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.168183;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-2-a3c70c6a;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-938 check result: MANUAL;False;ecs;;low;ecs;arn:aws:ecs:ap-southeast-2:123456789012:resource-938;resource-938;;;aws;ap-southeast-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.168191;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-northeast-1-8f2b2e53;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-939 check result: PASS;False;efs;;informational;efs;arn:aws:efs:ap-northeast-1:123456789012:resource-939;resource-939;;;aws;ap-northeast-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 19:17:49.168200;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-us-east-1-c1aaa6e9;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;FAIL;Resource resource-940 check result: FAIL;False;eks;;critical;eks;arn:aws:eks:us-east-1:123456789012:resource-940;resource-940;;;aws;us-east-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.168207;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-2-7bf9b0c8;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-941 check result: MANUAL;False;elasticache;;high;elasticache;arn:aws:elasticache:us-east-2:123456789012:resource-941;resource-941;;;aws;us-east-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.168216;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-us-west-1-2117011a;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;PASS;Resource resource-942 check result: PASS;False;elb;;medium;elb;arn:aws:elb:us-west-1:123456789012:resource-942;resource-942;;;aws;us-west-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.168224;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-2-a30bf71a;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-943 check result: FAIL;False;emr;;low;emr;arn:aws:emr:us-west-2:123456789012:resource-943;resource-943;;;aws;us-west-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.168232;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-west-1-4dfc0638;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-944 check result: MANUAL;False;guardduty;;informational;guardduty;arn:aws:guardduty:eu-west-1:123456789012:resource-944;resource-944;;;aws;eu-west-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.168240;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-eu-west-2-3fa13092;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-945 check result: PASS;False;iam;;critical;iam;arn:aws:iam:eu-west-2:123456789012:resource-945;resource-945;;;aws;eu-west-2;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.168248;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-central-1-b9fb8f31;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-946 check result: FAIL;False;kms;;high;kms;arn:aws:kms:eu-central-1:123456789012:resource-946;resource-946;;;aws;eu-central-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.168256;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-southeast-1-f68e7677;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;MANUAL;Resource resource-947 check result: MANUAL;False;lambda;;medium;lambda;arn:aws:lambda:ap-southeast-1:123456789012:resource-947;resource-947;;;aws;ap-southeast-1;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.168264;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-ap-southeast-2-9f50c168;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-948 check result: PASS;False;rds;;low;rds;arn:aws:rds:ap-southeast-2:123456789012:resource-948;resource-948;;;aws;ap-southeast-2;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.168272;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-ap-northeast-1-bd921aa4;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-949 check result: FAIL;False;redshift;;informational;redshift;arn:aws:redshift:ap-northeast-1:123456789012:resource-949;resource-949;;;aws;ap-northeast-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.168280;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-us-east-1-f99fa69e;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-950 check result: MANUAL;False;s3;;critical;s3;arn:aws:s3:us-east-1:123456789012:resource-950;resource-950;;;aws;us-east-1;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.168288;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-2-aa925593;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-951 check result: PASS;False;secretsmanager;;high;secretsmanager;arn:aws:secretsmanager:us-east-2:123456789012:resource-951;resource-951;;;aws;us-east-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.168297;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-1-81de03d5;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-952 check result: FAIL;False;sns;;medium;sns;arn:aws:sns:us-west-1:123456789012:resource-952;resource-952;;;aws;us-west-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.168305;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-2-0d8112c3;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-953 check result: MANUAL;False;sqs;;low;sqs;arn:aws:sqs:us-west-2:123456789012:resource-953;resource-953;;;aws;us-west-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.168312;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-1-15759d80;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-954 check result: PASS;False;ssm;;informational;ssm;arn:aws:ssm:eu-west-1:123456789012:resource-954;resource-954;;;aws;eu-west-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 04:17:49.168321;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-2-cdc49777;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-955 check result: FAIL;False;vpc;;critical;vpc;arn:aws:vpc:eu-west-2:123456789012:resource-955;resource-955;;;aws;eu-west-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.168328;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-central-1-c751c359;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-956 check result: MANUAL;False;waf;;high;waf;arn:aws:waf:eu-central-1:123456789012:resource-956;resource-956;;;aws;eu-central-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.168336;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-ap-southeast-1-effb1030;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;PASS;Resource resource-957 check result: PASS;False;accessanalyzer;;medium;accessanalyzer;arn:aws:accessanalyzer:ap-southeast-1:123456789012:resource-957;resource-957;;;aws;ap-southeast-1;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.168344;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-ap-southeast-2-1e126884;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;FAIL;Resource resource-958 check result: FAIL;False;acm;;low;acm;arn:aws:acm:ap-southeast-2:123456789012:resource-958;resource-958;;;aws;ap-southeast-2;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.168352;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-northeast-1-773b7397;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;MANUAL;Resource resource-959 check result: MANUAL;False;apigateway;;informational;apigateway;arn:aws:apigateway:ap-northeast-1:123456789012:resource-959;resource-959;;;aws;ap-northeast-1;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.168360;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-east-1-32fb7b59;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;PASS;Resource resource-960 check result: PASS;False;cloudfront;;critical;cloudfront;arn:aws:cloudfront:us-east-1:123456789012:resource-960;resource-960;;;aws;us-east-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.168368;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-east-2-561c6df9;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;FAIL;Resource resource-961 check result: FAIL;False;cloudtrail;;high;cloudtrail;arn:aws:cloudtrail:us-east-2:123456789012:resource-961;resource-961;;;aws;us-east-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.168376;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-1-1dc82a37;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-962 check result: MANUAL;False;cloudwatch;;medium;cloudwatch;arn:aws:cloudwatch:us-west-1:123456789012:resource-962;resource-962;;;aws;us-west-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.168385;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-2-9245365f;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-963 check result: PASS;False;config;;low;config;arn:aws:config:us-west-2:123456789012:resource-963;resource-963;;;aws;us-west-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.168394;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-west-1-2ac41790;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;FAIL;Resource resource-964 check result: FAIL;False;dynamodb;;informational;dynamodb;arn:aws:dynamodb:eu-west-1:123456789012:resource-964;resource-964;;;aws;eu-west-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.168402;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-eu-west-2-9985cdba;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-965 check result: MANUAL;False;ec2;;critical;ec2;arn:aws:ec2:eu-west-2:123456789012:resource-965;resource-965;;;aws;eu-west-2;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.168411;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-central-1-3977c7af;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;PASS;Resource resource-966 check result: PASS;False;ecr;;high;ecr;arn:aws:ecr:eu-central-1:123456789012:resource-966;resource-966;;;aws;eu-central-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.168419;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-1-37fc693f;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-967 check result: FAIL;False;ecs;;medium;ecs;arn:aws:ecs:ap-southeast-1:123456789012:resource-967;resource-967;;;aws;ap-southeast-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.168428;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-2-e1ed9599;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-968 check result: MANUAL;False;efs;;low;efs;arn:aws:efs:ap-southeast-2:123456789012:resource-968;resource-968;;;aws;ap-southeast-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.168436;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-northeast-1-0697c65f;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;PASS;Resource resource-969 check result: PASS;False;eks;;informational;eks;arn:aws:eks:ap-northeast-1:123456789012:resource-969;resource-969;;;aws;ap-northeast-1;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 13:17:49.168445;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-1-f6375d5e;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-970 check result: FAIL;False;elasticache;;critical;elasticache;arn:aws:elasticache:us-east-1:123456789012:resource-970;resource-970;;;aws;us-east-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.168453;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-us-east-2-a4393a63;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;MANUAL;Resource resource-971 check result: MANUAL;False;elb;;high;elb;arn:aws:elb:us-east-2:123456789012:resource-971;resource-971;;;aws;us-east-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.168462;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-1-c359bc1f;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-972 check result: PASS;False;emr;;medium;emr;arn:aws:emr:us-west-1:123456789012:resource-972;resource-972;;;aws;us-west-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.168471;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-west-2-2f3f2e7b;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-973 check result: FAIL;False;guardduty;;low;guardduty;arn:aws:guardduty:us-west-2:123456789012:resource-973;resource-973;;;aws;us-west-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.168479;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-eu-west-1-28bda0ab;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-974 check result: MANUAL;False;iam;;informational;iam;arn:aws:iam:eu-west-1:123456789012:resource-974;resource-974;;;aws;eu-west-1;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.168487;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-2-70584757;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-975 check result: PASS;False;kms;;critical;kms;arn:aws:kms:eu-west-2:123456789012:resource-975;resource-975;;;aws;eu-west-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.168496;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-eu-central-1-f1454b2e;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;FAIL;Resource resource-976 check result: FAIL;False;lambda;;high;lambda;arn:aws:lambda:eu-central-1:123456789012:resource-976;resource-976;;;aws;eu-central-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.168504;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-ap-southeast-1-7734012c;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-977 check result: MANUAL;False;rds;;medium;rds;arn:aws:rds:ap-southeast-1:123456789012:resource-977;resource-977;;;aws;ap-southeast-1;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.168512;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-2-d6786cff;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-978 check result: PASS;False;redshift;;low;redshift;arn:aws:redshift:ap-southeast-2:123456789012:resource-978;resource-978;;;aws;ap-southeast-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.168521;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-ap-northeast-1-8488c64a;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-979 check result: FAIL;False;s3;;informational;s3;arn:aws:s3:ap-northeast-1:123456789012:resource-979;resource-979;;;aws;ap-northeast-1;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.168529;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-1-276cc04d;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-980 check result: MANUAL;False;secretsmanager;;critical;secretsmanager;arn:aws:secretsmanager:us-east-1:123456789012:resource-980;resource-980;;;aws;us-east-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.168538;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-2-51c4fd15;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-981 check result: PASS;False;sns;;high;sns;arn:aws:sns:us-east-2:123456789012:resource-981;resource-981;;;aws;us-east-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.168546;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-1-a760bc4a;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-982 check result: FAIL;False;sqs;;medium;sqs;arn:aws:sqs:us-west-1:123456789012:resource-982;resource-982;;;aws;us-west-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.168555;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-2-c171ad71;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-983 check result: MANUAL;False;ssm;;low;ssm;arn:aws:ssm:us-west-2:123456789012:resource-983;resource-983;;;aws;us-west-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.168563;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-1-aeba2a10;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-984 check result: PASS;False;vpc;;informational;vpc;arn:aws:vpc:eu-west-1:123456789012:resource-984;resource-984;;;aws;eu-west-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 22:17:49.168572;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-2-c12a78ce;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-985 check result: FAIL;False;waf;;critical;waf;arn:aws:waf:eu-west-2:123456789012:resource-985;resource-985;;;aws;eu-west-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.168580;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-eu-central-1-cee66971;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;MANUAL;Resource resource-986 check result: MANUAL;False;accessanalyzer;;high;accessanalyzer;arn:aws:accessanalyzer:eu-central-1:123456789012:resource-986;resource-986;;;aws;eu-central-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.168588;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-southeast-1-4b4d4670;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;PASS;Resource resource-987 check result: PASS;False;acm;;medium;acm;arn:aws:acm:ap-southeast-1:123456789012:resource-987;resource-987;;;aws;ap-southeast-1;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.168598;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-ap-southeast-2-54378616;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;FAIL;Resource resource-988 check result: FAIL;False;apigateway;;low;apigateway;arn:aws:apigateway:ap-southeast-2:123456789012:resource-988;resource-988;;;aws;ap-southeast-2;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.168606;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-northeast-1-2189f757;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;MANUAL;Resource resource-989 check result: MANUAL;False;cloudfront;;informational;cloudfront;arn:aws:cloudfront:ap-northeast-1:123456789012:resource-989;resource-989;;;aws;ap-northeast-1;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.168615;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-east-1-a4b03720;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;PASS;Resource resource-990 check result: PASS;False;cloudtrail;;critical;cloudtrail;arn:aws:cloudtrail:us-east-1:123456789012:resource-990;resource-990;;;aws;us-east-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.168624;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-2-a65b94be;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-991 check result: FAIL;False;cloudwatch;;high;cloudwatch;arn:aws:cloudwatch:us-east-2:123456789012:resource-991;resource-991;;;aws;us-east-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.168632;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-1-e73193e9;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-992 check result: MANUAL;False;config;;medium;config;arn:aws:config:us-west-1:123456789012:resource-992;resource-992;;;aws;us-west-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.168641;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-west-2-ad8ac040;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;PASS;Resource resource-993 check result: PASS;False;dynamodb;;low;dynamodb;arn:aws:dynamodb:us-west-2:123456789012:resource-993;resource-993;;;aws;us-west-2;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.168650;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-eu-west-1-42f25258;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-994 check result: FAIL;False;ec2;;informational;ec2;arn:aws:ec2:eu-west-1:123456789012:resource-994;resource-994;;;aws;eu-west-1;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.168658;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-eu-west-2-e3d72c25;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;MANUAL;Resource resource-995 check result: MANUAL;False;ecr;;critical;ecr;arn:aws:ecr:eu-west-2:123456789012:resource-995;resource-995;;;aws;eu-west-2;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.168666;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-central-1-e5450ed8;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-996 check result: PASS;False;ecs;;high;ecs;arn:aws:ecs:eu-central-1:123456789012:resource-996;resource-996;;;aws;eu-central-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.168674;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-1-a2c3abdf;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-997 check result: FAIL;False;efs;;medium;efs;arn:aws:efs:ap-southeast-1:123456789012:resource-997;resource-997;;;aws;ap-southeast-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.168682;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-ap-southeast-2-7a30df3b;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;MANUAL;Resource resource-998 check result: MANUAL;False;eks;;low;eks;arn:aws:eks:ap-southeast-2:123456789012:resource-998;resource-998;;;aws;ap-southeast-2;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.168690;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-northeast-1-a18552cf;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-999 check result: PASS;False;elasticache;;informational;elasticache;arn:aws:elasticache:ap-northeast-1:123456789012:resource-999;resource-999;;;aws;ap-northeast-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 07:17:49.168700;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-us-east-1-366604be;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;FAIL;Resource resource-1000 check result: FAIL;False;elb;;critical;elb;arn:aws:elb:us-east-1:123456789012:resource-1000;resource-1000;;;aws;us-east-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.168708;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-2-8ccc37e9;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-1001 check result: MANUAL;False;emr;;high;emr;arn:aws:emr:us-east-2:123456789012:resource-1001;resource-1001;;;aws;us-east-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.168716;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-west-1-1aadc273;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-1002 check result: PASS;False;guardduty;;medium;guardduty;arn:aws:guardduty:us-west-1:123456789012:resource-1002;resource-1002;;;aws;us-west-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.168725;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-us-west-2-cb12a898;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-1003 check result: FAIL;False;iam;;low;iam;arn:aws:iam:us-west-2:123456789012:resource-1003;resource-1003;;;aws;us-west-2;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.168734;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-1-77777dd5;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-1004 check result: MANUAL;False;kms;;informational;kms;arn:aws:kms:eu-west-1:123456789012:resource-1004;resource-1004;;;aws;eu-west-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.168742;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-eu-west-2-9ae8f4a0;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;PASS;Resource resource-1005 check result: PASS;False;lambda;;critical;lambda;arn:aws:lambda:eu-west-2:123456789012:resource-1005;resource-1005;;;aws;eu-west-2;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.168751;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-eu-central-1-4a104c53;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-1006 check result: FAIL;False;rds;;high;rds;arn:aws:rds:eu-central-1:123456789012:resource-1006;resource-1006;;;aws;eu-central-1;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.168760;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-1-724f5157;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-1007 check result: MANUAL;False;redshift;;medium;redshift;arn:aws:redshift:ap-southeast-1:123456789012:resource-1007;resource-1007;;;aws;ap-southeast-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.168768;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-ap-southeast-2-650349d6;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-1008 check result: PASS;False;s3;;low;s3;arn:aws:s3:ap-southeast-2:123456789012:resource-1008;resource-1008;;;aws;ap-southeast-2;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.168777;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-northeast-1-de3d185b;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-1009 check result: FAIL;False;secretsmanager;;informational;secretsmanager;arn:aws:secretsmanager:ap-northeast-1:123456789012:resource-1009;resource-1009;;;aws;ap-northeast-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.168785;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-1-9892f8db;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-1010 check result: MANUAL;False;sns;;critical;sns;arn:aws:sns:us-east-1:123456789012:resource-1010;resource-1010;;;aws;us-east-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.168793;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-2-b0c5c13d;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-1011 check result: PASS;False;sqs;;high;sqs;arn:aws:sqs:us-east-2:123456789012:resource-1011;resource-1011;;;aws;us-east-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.168801;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-1-3dc7b1bc;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-1012 check result: FAIL;False;ssm;;medium;ssm;arn:aws:ssm:us-west-1:123456789012:resource-1012;resource-1012;;;aws;us-west-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.168809;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-2-8db1764c;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-1013 check result: MANUAL;False;vpc;;low;vpc;arn:aws:vpc:us-west-2:123456789012:resource-1013;resource-1013;;;aws;us-west-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.168816;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-1-86bde1ae;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-1014 check result: PASS;False;waf;;informational;waf;arn:aws:waf:eu-west-1:123456789012:resource-1014;resource-1014;;;aws;eu-west-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 16:17:49.168825;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-eu-west-2-6f9585dd;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;FAIL;Resource resource-1015 check result: FAIL;False;accessanalyzer;;critical;accessanalyzer;arn:aws:accessanalyzer:eu-west-2:123456789012:resource-1015;resource-1015;;;aws;eu-west-2;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.168833;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-eu-central-1-ba26d060;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;MANUAL;Resource resource-1016 check result: MANUAL;False;acm;;high;acm;arn:aws:acm:eu-central-1:123456789012:resource-1016;resource-1016;;;aws;eu-central-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.168841;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-southeast-1-938785b8;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;PASS;Resource resource-1017 check result: PASS;False;apigateway;;medium;apigateway;arn:aws:apigateway:ap-southeast-1:123456789012:resource-1017;resource-1017;;;aws;ap-southeast-1;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.168849;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-ap-southeast-2-e77d7471;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;FAIL;Resource resource-1018 check result: FAIL;False;cloudfront;;low;cloudfront;arn:aws:cloudfront:ap-southeast-2:123456789012:resource-1018;resource-1018;;;aws;ap-southeast-2;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.168857;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-northeast-1-97370027;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;MANUAL;Resource resource-1019 check result: MANUAL;False;cloudtrail;;informational;cloudtrail;arn:aws:cloudtrail:ap-northeast-1:123456789012:resource-1019;resource-1019;;;aws;ap-northeast-1;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.168865;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-1-d6785a4b;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-1020 check result: PASS;False;cloudwatch;;critical;cloudwatch;arn:aws:cloudwatch:us-east-1:123456789012:resource-1020;resource-1020;;;aws;us-east-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.168874;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-2-99940696;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-1021 check result: FAIL;False;config;;high;config;arn:aws:config:us-east-2:123456789012:resource-1021;resource-1021;;;aws;us-east-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.168882;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-west-1-ce242f4f;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;MANUAL;Resource resource-1022 check result: MANUAL;False;dynamodb;;medium;dynamodb;arn:aws:dynamodb:us-west-1:123456789012:resource-1022;resource-1022;;;aws;us-west-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.168890;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-us-west-2-5b7e0975;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-1023 check result: PASS;False;ec2;;low;ec2;arn:aws:ec2:us-west-2:123456789012:resource-1023;resource-1023;;;aws;us-west-2;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.168899;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-west-1-4a09606a;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;FAIL;Resource resource-1024 check result: FAIL;False;ecr;;informational;ecr;arn:aws:ecr:eu-west-1:123456789012:resource-1024;resource-1024;;;aws;eu-west-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.168907;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-2-ee38340a;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-1025 check result: MANUAL;False;ecs;;critical;ecs;arn:aws:ecs:eu-west-2:123456789012:resource-1025;resource-1025;;;aws;eu-west-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.168915;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-central-1-ea66d3e9;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-1026 check result: PASS;False;efs;;high;efs;arn:aws:efs:eu-central-1:123456789012:resource-1026;resource-1026;;;aws;eu-central-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.168924;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-southeast-1-1f03a558;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;FAIL;Resource resource-1027 check result: FAIL;False;eks;;medium;eks;arn:aws:eks:ap-southeast-1:123456789012:resource-1027;resource-1027;;;aws;ap-southeast-1;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.168931;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-2-f2fe86c4;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-1028 check result: MANUAL;False;elasticache;;low;elasticache;arn:aws:elasticache:ap-southeast-2:123456789012:resource-1028;resource-1028;;;aws;ap-southeast-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.168939;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-ap-northeast-1-fa89efab;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;PASS;Resource resource-1029 check result: PASS;False;elb;;informational;elb;arn:aws:elb:ap-northeast-1:123456789012:resource-1029;resource-1029;;;aws;ap-northeast-1;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 01:17:49.168948;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-1-12a61034;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-1030 check result: FAIL;False;emr;;critical;emr;arn:aws:emr:us-east-1:123456789012:resource-1030;resource-1030;;;aws;us-east-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.168956;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-east-2-0ac7db65;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-1031 check result: MANUAL;False;guardduty;;high;guardduty;arn:aws:guardduty:us-east-2:123456789012:resource-1031;resource-1031;;;aws;us-east-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.168963;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-us-west-1-0460a4dd;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-1032 check result: PASS;False;iam;;medium;iam;arn:aws:iam:us-west-1:123456789012:resource-1032;resource-1032;;;aws;us-west-1;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.168972;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-2-3da6fed8;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-1033 check result: FAIL;False;kms;;low;kms;arn:aws:kms:us-west-2:123456789012:resource-1033;resource-1033;;;aws;us-west-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.168979;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-eu-west-1-d7a4f757;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;MANUAL;Resource resource-1034 check result: MANUAL;False;lambda;;informational;lambda;arn:aws:lambda:eu-west-1:123456789012:resource-1034;resource-1034;;;aws;eu-west-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.168987;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-eu-west-2-dca11c06;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-1035 check result: PASS;False;rds;;critical;rds;arn:aws:rds:eu-west-2:123456789012:resource-1035;resource-1035;;;aws;eu-west-2;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.168995;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-eu-central-1-f21bafdc;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-1036 check result: FAIL;False;redshift;;high;redshift;arn:aws:redshift:eu-central-1:123456789012:resource-1036;resource-1036;;;aws;eu-central-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.169003;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-ap-southeast-1-3b654e8e;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-1037 check result: MANUAL;False;s3;;medium;s3;arn:aws:s3:ap-southeast-1:123456789012:resource-1037;resource-1037;;;aws;ap-southeast-1;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.169011;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-2-cf947673;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-1038 check result: PASS;False;secretsmanager;;low;secretsmanager;arn:aws:secretsmanager:ap-southeast-2:123456789012:resource-1038;resource-1038;;;aws;ap-southeast-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.169019;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-northeast-1-2bfe6d3d;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-1039 check result: FAIL;False;sns;;informational;sns;arn:aws:sns:ap-northeast-1:123456789012:resource-1039;resource-1039;;;aws;ap-northeast-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.169027;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-1-a382f49e;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-1040 check result: MANUAL;False;sqs;;critical;sqs;arn:aws:sqs:us-east-1:123456789012:resource-1040;resource-1040;;;aws;us-east-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.169035;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-2-cb9b7f30;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-1041 check result: PASS;False;ssm;;high;ssm;arn:aws:ssm:us-east-2:123456789012:resource-1041;resource-1041;;;aws;us-east-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.169043;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-1-70452752;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-1042 check result: FAIL;False;vpc;;medium;vpc;arn:aws:vpc:us-west-1:123456789012:resource-1042;resource-1042;;;aws;us-west-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.169051;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-2-466613ce;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-1043 check result: MANUAL;False;waf;;low;waf;arn:aws:waf:us-west-2:123456789012:resource-1043;resource-1043;;;aws;us-west-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.169059;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-eu-west-1-240d83bd;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;PASS;Resource resource-1044 check result: PASS;False;accessanalyzer;;informational;accessanalyzer;arn:aws:accessanalyzer:eu-west-1:123456789012:resource-1044;resource-1044;;;aws;eu-west-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 10:17:49.169067;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-eu-west-2-2dbe028d;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;FAIL;Resource resource-1045 check result: FAIL;False;acm;;critical;acm;arn:aws:acm:eu-west-2:123456789012:resource-1045;resource-1045;;;aws;eu-west-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.169075;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-central-1-9ff83913;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;MANUAL;Resource resource-1046 check result: MANUAL;False;apigateway;;high;apigateway;arn:aws:apigateway:eu-central-1:123456789012:resource-1046;resource-1046;;;aws;eu-central-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.169083;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-southeast-1-5d683d75;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;PASS;Resource resource-1047 check result: PASS;False;cloudfront;;medium;cloudfront;arn:aws:cloudfront:ap-southeast-1:123456789012:resource-1047;resource-1047;;;aws;ap-southeast-1;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.169092;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-ap-southeast-2-548f5d4c;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;FAIL;Resource resource-1048 check result: FAIL;False;cloudtrail;;low;cloudtrail;arn:aws:cloudtrail:ap-southeast-2:123456789012:resource-1048;resource-1048;;;aws;ap-southeast-2;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.169101;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-northeast-1-f858a212;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-1049 check result: MANUAL;False;cloudwatch;;informational;cloudwatch;arn:aws:cloudwatch:ap-northeast-1:123456789012:resource-1049;resource-1049;;;aws;ap-northeast-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.169109;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-1-385c4ac5;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-1050 check result: PASS;False;config;;critical;config;arn:aws:config:us-east-1:123456789012:resource-1050;resource-1050;;;aws;us-east-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.169119;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-east-2-96843f78;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;FAIL;Resource resource-1051 check result: FAIL;False;dynamodb;;high;dynamodb;arn:aws:dynamodb:us-east-2:123456789012:resource-1051;resource-1051;;;aws;us-east-2;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.169126;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-us-west-1-badec380;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-1052 check result: MANUAL;False;ec2;;medium;ec2;arn:aws:ec2:us-west-1:123456789012:resource-1052;resource-1052;;;aws;us-west-1;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.169134;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-west-2-5e8cba22;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;PASS;Resource resource-1053 check result: PASS;False;ecr;;low;ecr;arn:aws:ecr:us-west-2:123456789012:resource-1053;resource-1053;;;aws;us-west-2;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.169143;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-1-562278ab;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-1054 check result: FAIL;False;ecs;;informational;ecs;arn:aws:ecs:eu-west-1:123456789012:resource-1054;resource-1054;;;aws;eu-west-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.169150;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-2-a4a1784a;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-1055 check result: MANUAL;False;efs;;critical;efs;arn:aws:efs:eu-west-2:123456789012:resource-1055;resource-1055;;;aws;eu-west-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.169158;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-eu-central-1-a9caaa98;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;PASS;Resource resource-1056 check result: PASS;False;eks;;high;eks;arn:aws:eks:eu-central-1:123456789012:resource-1056;resource-1056;;;aws;eu-central-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.169167;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-1-2cbea130;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-1057 check result: FAIL;False;elasticache;;medium;elasticache;arn:aws:elasticache:ap-southeast-1:123456789012:resource-1057;resource-1057;;;aws;ap-southeast-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.169175;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-ap-southeast-2-40591e97;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;MANUAL;Resource resource-1058 check result: MANUAL;False;elb;;low;elb;arn:aws:elb:ap-southeast-2:123456789012:resource-1058;resource-1058;;;aws;ap-southeast-2;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.169183;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-northeast-1-0985ed04;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-1059 check result: PASS;False;emr;;informational;emr;arn:aws:emr:ap-northeast-1:123456789012:resource-1059;resource-1059;;;aws;ap-northeast-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 19:17:49.169191;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-east-1-97a61f47;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-1060 check result: FAIL;False;guardduty;;critical;guardduty;arn:aws:guardduty:us-east-1:123456789012:resource-1060;resource-1060;;;aws;us-east-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.169199;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-us-east-2-4013dbb5;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-1061 check result: MANUAL;False;iam;;high;iam;arn:aws:iam:us-east-2:123456789012:resource-1061;resource-1061;;;aws;us-east-2;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.169208;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-1-986aae81;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-1062 check result: PASS;False;kms;;medium;kms;arn:aws:kms:us-west-1:123456789012:resource-1062;resource-1062;;;aws;us-west-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.169217;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-west-2-516c083e;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;FAIL;Resource resource-1063 check result: FAIL;False;lambda;;low;lambda;arn:aws:lambda:us-west-2:123456789012:resource-1063;resource-1063;;;aws;us-west-2;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.169225;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-eu-west-1-bfc1900b;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-1064 check result: MANUAL;False;rds;;informational;rds;arn:aws:rds:eu-west-1:123456789012:resource-1064;resource-1064;;;aws;eu-west-1;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.169233;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-2-a80f3156;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-1065 check result: PASS;False;redshift;;critical;redshift;arn:aws:redshift:eu-west-2:123456789012:resource-1065;resource-1065;;;aws;eu-west-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.169243;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-eu-central-1-cbffee94;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-1066 check result: FAIL;False;s3;;high;s3;arn:aws:s3:eu-central-1:123456789012:resource-1066;resource-1066;;;aws;eu-central-1;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.169251;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-1-f1656bf0;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-1067 check result: MANUAL;False;secretsmanager;;medium;secretsmanager;arn:aws:secretsmanager:ap-southeast-1:123456789012:resource-1067;resource-1067;;;aws;ap-southeast-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.169259;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-2-7181af46;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-1068 check result: PASS;False;sns;;low;sns;arn:aws:sns:ap-southeast-2:123456789012:resource-1068;resource-1068;;;aws;ap-southeast-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.169268;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-northeast-1-152ccb00;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-1069 check result: FAIL;False;sqs;;informational;sqs;arn:aws:sqs:ap-northeast-1:123456789012:resource-1069;resource-1069;;;aws;ap-northeast-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.169275;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-1-0695e754;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-1070 check result: MANUAL;False;ssm;;critical;ssm;arn:aws:ssm:us-east-1:123456789012:resource-1070;resource-1070;;;aws;us-east-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.169283;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-2-f680dc22;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-1071 check result: PASS;False;vpc;;high;vpc;arn:aws:vpc:us-east-2:123456789012:resource-1071;resource-1071;;;aws;us-east-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.169291;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-1-f8bed35c;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-1072 check result: FAIL;False;waf;;medium;waf;arn:aws:waf:us-west-1:123456789012:resource-1072;resource-1072;;;aws;us-west-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.169299;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-us-west-2-e3367ff9;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;MANUAL;Resource resource-1073 check result: MANUAL;False;accessanalyzer;;low;accessanalyzer;arn:aws:accessanalyzer:us-west-2:123456789012:resource-1073;resource-1073;;;aws;us-west-2;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.169307;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-eu-west-1-62298a87;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;PASS;Resource resource-1074 check result: PASS;False;acm;;informational;acm;arn:aws:acm:eu-west-1:123456789012:resource-1074;resource-1074;;;aws;eu-west-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 04:17:49.169315;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-eu-west-2-d06dee32;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;FAIL;Resource resource-1075 check result: FAIL;False;apigateway;;critical;apigateway;arn:aws:apigateway:eu-west-2:123456789012:resource-1075;resource-1075;;;aws;eu-west-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.169323;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-central-1-55f5e56b;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;MANUAL;Resource resource-1076 check result: MANUAL;False;cloudfront;;high;cloudfront;arn:aws:cloudfront:eu-central-1:123456789012:resource-1076;resource-1076;;;aws;eu-central-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.169331;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-southeast-1-6b0b0283;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;PASS;Resource resource-1077 check result: PASS;False;cloudtrail;;medium;cloudtrail;arn:aws:cloudtrail:ap-southeast-1:123456789012:resource-1077;resource-1077;;;aws;ap-southeast-1;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.169339;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-2-2790b119;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-1078 check result: FAIL;False;cloudwatch;;low;cloudwatch;arn:aws:cloudwatch:ap-southeast-2:123456789012:resource-1078;resource-1078;;;aws;ap-southeast-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.169348;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-northeast-1-a4a86942;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-1079 check result: MANUAL;False;config;;informational;config;arn:aws:config:ap-northeast-1:123456789012:resource-1079;resource-1079;;;aws;ap-northeast-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.169356;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-east-1-473a693a;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;PASS;Resource resource-1080 check result: PASS;False;dynamodb;;critical;dynamodb;arn:aws:dynamodb:us-east-1:123456789012:resource-1080;resource-1080;;;aws;us-east-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.169364;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-us-east-2-c18e3d62;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-1081 check result: FAIL;False;ec2;;high;ec2;arn:aws:ec2:us-east-2:123456789012:resource-1081;resource-1081;;;aws;us-east-2;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.169372;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-west-1-125cac73;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;MANUAL;Resource resource-1082 check result: MANUAL;False;ecr;;medium;ecr;arn:aws:ecr:us-west-1:123456789012:resource-1082;resource-1082;;;aws;us-west-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.169380;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-2-c8c6ace5;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-1083 check result: PASS;False;ecs;;low;ecs;arn:aws:ecs:us-west-2:123456789012:resource-1083;resource-1083;;;aws;us-west-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.169389;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-1-900f6c66;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-1084 check result: FAIL;False;efs;;informational;efs;arn:aws:efs:eu-west-1:123456789012:resource-1084;resource-1084;;;aws;eu-west-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.169396;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-eu-west-2-b11b32dd;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;MANUAL;Resource resource-1085 check result: MANUAL;False;eks;;critical;eks;arn:aws:eks:eu-west-2:123456789012:resource-1085;resource-1085;;;aws;eu-west-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.169404;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-central-1-b30b79c7;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-1086 check result: PASS;False;elasticache;;high;elasticache;arn:aws:elasticache:eu-central-1:123456789012:resource-1086;resource-1086;;;aws;eu-central-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.169419;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-ap-southeast-1-478d8604;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;FAIL;Resource resource-1087 check result: FAIL;False;elb;;medium;elb;arn:aws:elb:ap-southeast-1:123456789012:resource-1087;resource-1087;;;aws;ap-southeast-1;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.169427;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-2-86586bc3;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-1088 check result: MANUAL;False;emr;;low;emr;arn:aws:emr:ap-southeast-2:123456789012:resource-1088;resource-1088;;;aws;ap-southeast-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.169435;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-ap-northeast-1-a11ed45c;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-1089 check result: PASS;False;guardduty;;informational;guardduty;arn:aws:guardduty:ap-northeast-1:123456789012:resource-1089;resource-1089;;;aws;ap-northeast-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 13:17:49.169443;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-us-east-1-463f06eb;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-1090 check result: FAIL;False;iam;;critical;iam;arn:aws:iam:us-east-1:123456789012:resource-1090;resource-1090;;;aws;us-east-1;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.169451;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-2-05205532;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-1091 check result: MANUAL;False;kms;;high;kms;arn:aws:kms:us-east-2:123456789012:resource-1091;resource-1091;;;aws;us-east-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.169458;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-us-west-1-a01167df;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;PASS;Resource resource-1092 check result: PASS;False;lambda;;medium;lambda;arn:aws:lambda:us-west-1:123456789012:resource-1092;resource-1092;;;aws;us-west-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.169467;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-us-west-2-2eb3e4c3;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-1093 check result: FAIL;False;rds;;low;rds;arn:aws:rds:us-west-2:123456789012:resource-1093;resource-1093;;;aws;us-west-2;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.169475;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-1-0cafd710;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-1094 check result: MANUAL;False;redshift;;informational;redshift;arn:aws:redshift:eu-west-1:123456789012:resource-1094;resource-1094;;;aws;eu-west-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.169483;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-eu-west-2-53f9f15f;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-1095 check result: PASS;False;s3;;critical;s3;arn:aws:s3:eu-west-2:123456789012:resource-1095;resource-1095;;;aws;eu-west-2;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.169492;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-central-1-4e22f783;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-1096 check result: FAIL;False;secretsmanager;;high;secretsmanager;arn:aws:secretsmanager:eu-central-1:123456789012:resource-1096;resource-1096;;;aws;eu-central-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.169499;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-1-2347a820;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-1097 check result: MANUAL;False;sns;;medium;sns;arn:aws:sns:ap-southeast-1:123456789012:resource-1097;resource-1097;;;aws;ap-southeast-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.169507;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-2-afc0bd71;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-1098 check result: PASS;False;sqs;;low;sqs;arn:aws:sqs:ap-southeast-2:123456789012:resource-1098;resource-1098;;;aws;ap-southeast-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.169516;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-ap-northeast-1-b9075858;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-1099 check result: FAIL;False;ssm;;informational;ssm;arn:aws:ssm:ap-northeast-1:123456789012:resource-1099;resource-1099;;;aws;ap-northeast-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.169523;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-1-99f8136e;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-1100 check result: MANUAL;False;vpc;;critical;vpc;arn:aws:vpc:us-east-1:123456789012:resource-1100;resource-1100;;;aws;us-east-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.169531;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-2-7ffe8bb7;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-1101 check result: PASS;False;waf;;high;waf;arn:aws:waf:us-east-2:123456789012:resource-1101;resource-1101;;;aws;us-east-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.169539;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-us-west-1-33dcc0de;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;FAIL;Resource resource-1102 check result: FAIL;False;accessanalyzer;;medium;accessanalyzer;arn:aws:accessanalyzer:us-west-1:123456789012:resource-1102;resource-1102;;;aws;us-west-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.169547;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-west-2-3ca8edc9;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;MANUAL;Resource resource-1103 check result: MANUAL;False;acm;;low;acm;arn:aws:acm:us-west-2:123456789012:resource-1103;resource-1103;;;aws;us-west-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.169555;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-west-1-50141911;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;PASS;Resource resource-1104 check result: PASS;False;apigateway;;informational;apigateway;arn:aws:apigateway:eu-west-1:123456789012:resource-1104;resource-1104;;;aws;eu-west-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 22:17:49.169563;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-eu-west-2-7ee505f6;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;FAIL;Resource resource-1105 check result: FAIL;False;cloudfront;;critical;cloudfront;arn:aws:cloudfront:eu-west-2:123456789012:resource-1105;resource-1105;;;aws;eu-west-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.169571;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-central-1-91d6abd0;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;MANUAL;Resource resource-1106 check result: MANUAL;False;cloudtrail;;high;cloudtrail;arn:aws:cloudtrail:eu-central-1:123456789012:resource-1106;resource-1106;;;aws;eu-central-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.169579;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-1-cc8620d7;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-1107 check result: PASS;False;cloudwatch;;medium;cloudwatch;arn:aws:cloudwatch:ap-southeast-1:123456789012:resource-1107;resource-1107;;;aws;ap-southeast-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.169588;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-2-78f51e70;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-1108 check result: FAIL;False;config;;low;config;arn:aws:config:ap-southeast-2:123456789012:resource-1108;resource-1108;;;aws;ap-southeast-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.169596;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-northeast-1-96b1c7e2;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;MANUAL;Resource resource-1109 check result: MANUAL;False;dynamodb;;informational;dynamodb;arn:aws:dynamodb:ap-northeast-1:123456789012:resource-1109;resource-1109;;;aws;ap-northeast-1;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.169604;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-us-east-1-70bb6433;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-1110 check result: PASS;False;ec2;;critical;ec2;arn:aws:ec2:us-east-1:123456789012:resource-1110;resource-1110;;;aws;us-east-1;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.169613;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-east-2-0ec140ea;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;FAIL;Resource resource-1111 check result: FAIL;False;ecr;;high;ecr;arn:aws:ecr:us-east-2:123456789012:resource-1111;resource-1111;;;aws;us-east-2;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.169620;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-1-680025ae;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-1112 check result: MANUAL;False;ecs;;medium;ecs;arn:aws:ecs:us-west-1:123456789012:resource-1112;resource-1112;;;aws;us-west-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.169628;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-2-b28a2a6b;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-1113 check result: PASS;False;efs;;low;efs;arn:aws:efs:us-west-2:123456789012:resource-1113;resource-1113;;;aws;us-west-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.169636;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-eu-west-1-1154a360;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;FAIL;Resource resource-1114 check result: FAIL;False;eks;;informational;eks;arn:aws:eks:eu-west-1:123456789012:resource-1114;resource-1114;;;aws;eu-west-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.169644;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-2-ccb2b05f;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-1115 check result: MANUAL;False;elasticache;;critical;elasticache;arn:aws:elasticache:eu-west-2:123456789012:resource-1115;resource-1115;;;aws;eu-west-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.169652;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-eu-central-1-b298eba9;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;PASS;Resource resource-1116 check result: PASS;False;elb;;high;elb;arn:aws:elb:eu-central-1:123456789012:resource-1116;resource-1116;;;aws;eu-central-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.169661;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-1-f143f677;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-1117 check result: FAIL;False;emr;;medium;emr;arn:aws:emr:ap-southeast-1:123456789012:resource-1117;resource-1117;;;aws;ap-southeast-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.169669;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-2-0cf06478;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-1118 check result: MANUAL;False;guardduty;;low;guardduty;arn:aws:guardduty:ap-southeast-2:123456789012:resource-1118;resource-1118;;;aws;ap-southeast-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.169676;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-ap-northeast-1-20522bc8;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-1119 check result: PASS;False;iam;;informational;iam;arn:aws:iam:ap-northeast-1:123456789012:resource-1119;resource-1119;;;aws;ap-northeast-1;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 07:17:49.169685;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-1-9a2fee55;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-1120 check result: FAIL;False;kms;;critical;kms;arn:aws:kms:us-east-1:123456789012:resource-1120;resource-1120;;;aws;us-east-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.169692;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-east-2-8134d353;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;MANUAL;Resource resource-1121 check result: MANUAL;False;lambda;;high;lambda;arn:aws:lambda:us-east-2:123456789012:resource-1121;resource-1121;;;aws;us-east-2;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.169700;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-us-west-1-7e904318;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-1122 check result: PASS;False;rds;;medium;rds;arn:aws:rds:us-west-1:123456789012:resource-1122;resource-1122;;;aws;us-west-1;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.169709;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-2-5cb799da;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-1123 check result: FAIL;False;redshift;;low;redshift;arn:aws:redshift:us-west-2:123456789012:resource-1123;resource-1123;;;aws;us-west-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.169716;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-eu-west-1-93450e2b;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-1124 check result: MANUAL;False;s3;;informational;s3;arn:aws:s3:eu-west-1:123456789012:resource-1124;resource-1124;;;aws;eu-west-1;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.169724;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-2-242594d9;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-1125 check result: PASS;False;secretsmanager;;critical;secretsmanager;arn:aws:secretsmanager:eu-west-2:123456789012:resource-1125;resource-1125;;;aws;eu-west-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.169733;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-central-1-f4a5c82e;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-1126 check result: FAIL;False;sns;;high;sns;arn:aws:sns:eu-central-1:123456789012:resource-1126;resource-1126;;;aws;eu-central-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.169741;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-1-3ae61ab2;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-1127 check result: MANUAL;False;sqs;;medium;sqs;arn:aws:sqs:ap-southeast-1:123456789012:resource-1127;resource-1127;;;aws;ap-southeast-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.169748;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-2-49bbc87c;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-1128 check result: PASS;False;ssm;;low;ssm;arn:aws:ssm:ap-southeast-2:123456789012:resource-1128;resource-1128;;;aws;ap-southeast-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.169757;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-northeast-1-a13fe90c;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-1129 check result: FAIL;False;vpc;;informational;vpc;arn:aws:vpc:ap-northeast-1:123456789012:resource-1129;resource-1129;;;aws;ap-northeast-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.169764;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-1-d0ad58be;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-1130 check result: MANUAL;False;waf;;critical;waf;arn:aws:waf:us-east-1:123456789012:resource-1130;resource-1130;;;aws;us-east-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.169772;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-us-east-2-cced178c;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;PASS;Resource resource-1131 check result: PASS;False;accessanalyzer;;high;accessanalyzer;arn:aws:accessanalyzer:us-east-2:123456789012:resource-1131;resource-1131;;;aws;us-east-2;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.169781;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-us-west-1-3a861d21;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;FAIL;Resource resource-1132 check result: FAIL;False;acm;;medium;acm;arn:aws:acm:us-west-1:123456789012:resource-1132;resource-1132;;;aws;us-west-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.169788;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-west-2-46a4b0be;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;MANUAL;Resource resource-1133 check result: MANUAL;False;apigateway;;low;apigateway;arn:aws:apigateway:us-west-2:123456789012:resource-1133;resource-1133;;;aws;us-west-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.169796;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-west-1-62c6ce40;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;PASS;Resource resource-1134 check result: PASS;False;cloudfront;;informational;cloudfront;arn:aws:cloudfront:eu-west-1:123456789012:resource-1134;resource-1134;;;aws;eu-west-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 16:17:49.169805;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-eu-west-2-789c77cf;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;FAIL;Resource resource-1135 check result: FAIL;False;cloudtrail;;critical;cloudtrail;arn:aws:cloudtrail:eu-west-2:123456789012:resource-1135;resource-1135;;;aws;eu-west-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.169812;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-central-1-1d289fad;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-1136 check result: MANUAL;False;cloudwatch;;high;cloudwatch;arn:aws:cloudwatch:eu-central-1:123456789012:resource-1136;resource-1136;;;aws;eu-central-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.169822;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-1-e0803f14;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-1137 check result: PASS;False;config;;medium;config;arn:aws:config:ap-southeast-1:123456789012:resource-1137;resource-1137;;;aws;ap-southeast-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.169831;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-ap-southeast-2-7f4d6fb0;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;FAIL;Resource resource-1138 check result: FAIL;False;dynamodb;;low;dynamodb;arn:aws:dynamodb:ap-southeast-2:123456789012:resource-1138;resource-1138;;;aws;ap-southeast-2;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.169839;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-ap-northeast-1-b0b25ee5;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-1139 check result: MANUAL;False;ec2;;informational;ec2;arn:aws:ec2:ap-northeast-1:123456789012:resource-1139;resource-1139;;;aws;ap-northeast-1;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.169847;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-east-1-71a93544;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;PASS;Resource resource-1140 check result: PASS;False;ecr;;critical;ecr;arn:aws:ecr:us-east-1:123456789012:resource-1140;resource-1140;;;aws;us-east-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.169855;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-2-e8a5be1d;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-1141 check result: FAIL;False;ecs;;high;ecs;arn:aws:ecs:us-east-2:123456789012:resource-1141;resource-1141;;;aws;us-east-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.169863;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-1-9999edb2;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-1142 check result: MANUAL;False;efs;;medium;efs;arn:aws:efs:us-west-1:123456789012:resource-1142;resource-1142;;;aws;us-west-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.169871;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-west-2-6705ae04;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;PASS;Resource resource-1143 check result: PASS;False;eks;;low;eks;arn:aws:eks:us-west-2:123456789012:resource-1143;resource-1143;;;aws;us-west-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.169880;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-1-2c37dfa2;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-1144 check result: FAIL;False;elasticache;;informational;elasticache;arn:aws:elasticache:eu-west-1:123456789012:resource-1144;resource-1144;;;aws;eu-west-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.169888;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-eu-west-2-cc5bfd00;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;MANUAL;Resource resource-1145 check result: MANUAL;False;elb;;critical;elb;arn:aws:elb:eu-west-2:123456789012:resource-1145;resource-1145;;;aws;eu-west-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.169896;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-central-1-68f69491;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-1146 check result: PASS;False;emr;;high;emr;arn:aws:emr:eu-central-1:123456789012:resource-1146;resource-1146;;;aws;eu-central-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.169905;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-1-088bd10c;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-1147 check result: FAIL;False;guardduty;;medium;guardduty;arn:aws:guardduty:ap-southeast-1:123456789012:resource-1147;resource-1147;;;aws;ap-southeast-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.169914;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-ap-southeast-2-76cff6ef;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-1148 check result: MANUAL;False;iam;;low;iam;arn:aws:iam:ap-southeast-2:123456789012:resource-1148;resource-1148;;;aws;ap-southeast-2;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.169922;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-northeast-1-059ddfea;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-1149 check result: PASS;False;kms;;informational;kms;arn:aws:kms:ap-northeast-1:123456789012:resource-1149;resource-1149;;;aws;ap-northeast-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 01:17:49.169930;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-us-east-1-8e2f0f66;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;FAIL;Resource resource-1150 check result: FAIL;False;lambda;;critical;lambda;arn:aws:lambda:us-east-1:123456789012:resource-1150;resource-1150;;;aws;us-east-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.169938;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-us-east-2-0d055e16;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-1151 check result: MANUAL;False;rds;;high;rds;arn:aws:rds:us-east-2:123456789012:resource-1151;resource-1151;;;aws;us-east-2;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.169946;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-1-2ee077a9;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-1152 check result: PASS;False;redshift;;medium;redshift;arn:aws:redshift:us-west-1:123456789012:resource-1152;resource-1152;;;aws;us-west-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.169955;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-us-west-2-4cca2063;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-1153 check result: FAIL;False;s3;;low;s3;arn:aws:s3:us-west-2:123456789012:resource-1153;resource-1153;;;aws;us-west-2;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.169962;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-1-51fb684b;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-1154 check result: MANUAL;False;secretsmanager;;informational;secretsmanager;arn:aws:secretsmanager:eu-west-1:123456789012:resource-1154;resource-1154;;;aws;eu-west-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.169970;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-2-0c204a5e;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-1155 check result: PASS;False;sns;;critical;sns;arn:aws:sns:eu-west-2:123456789012:resource-1155;resource-1155;;;aws;eu-west-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.169979;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-central-1-e83c803d;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-1156 check result: FAIL;False;sqs;;high;sqs;arn:aws:sqs:eu-central-1:123456789012:resource-1156;resource-1156;;;aws;eu-central-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.169987;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-1-5ffe4c9d;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-1157 check result: MANUAL;False;ssm;;medium;ssm;arn:aws:ssm:ap-southeast-1:123456789012:resource-1157;resource-1157;;;aws;ap-southeast-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.169994;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-2-8b5623f1;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-1158 check result: PASS;False;vpc;;low;vpc;arn:aws:vpc:ap-southeast-2:123456789012:resource-1158;resource-1158;;;aws;ap-southeast-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.170003;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-northeast-1-597ec6ae;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-1159 check result: FAIL;False;waf;;informational;waf;arn:aws:waf:ap-northeast-1:123456789012:resource-1159;resource-1159;;;aws;ap-northeast-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.170010;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-us-east-1-5e070715;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;MANUAL;Resource resource-1160 check result: MANUAL;False;accessanalyzer;;critical;accessanalyzer;arn:aws:accessanalyzer:us-east-1:123456789012:resource-1160;resource-1160;;;aws;us-east-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.170018;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-east-2-0813a37d;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;PASS;Resource resource-1161 check result: PASS;False;acm;;high;acm;arn:aws:acm:us-east-2:123456789012:resource-1161;resource-1161;;;aws;us-east-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.170027;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-west-1-eacae8a9;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;FAIL;Resource resource-1162 check result: FAIL;False;apigateway;;medium;apigateway;arn:aws:apigateway:us-west-1:123456789012:resource-1162;resource-1162;;;aws;us-west-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.170035;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-west-2-50d4f419;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;MANUAL;Resource resource-1163 check result: MANUAL;False;cloudfront;;low;cloudfront;arn:aws:cloudfront:us-west-2:123456789012:resource-1163;resource-1163;;;aws;us-west-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.170043;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-west-1-6d408ea7;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;PASS;Resource resource-1164 check result: PASS;False;cloudtrail;;informational;cloudtrail;arn:aws:cloudtrail:eu-west-1:123456789012:resource-1164;resource-1164;;;aws;eu-west-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 10:17:49.170051;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-2-e7351aa6;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-1165 check result: FAIL;False;cloudwatch;;critical;cloudwatch;arn:aws:cloudwatch:eu-west-2:123456789012:resource-1165;resource-1165;;;aws;eu-west-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.170059;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-central-1-9340e3d6;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-1166 check result: MANUAL;False;config;;high;config;arn:aws:config:eu-central-1:123456789012:resource-1166;resource-1166;;;aws;eu-central-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.170067;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-southeast-1-671642f3;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;PASS;Resource resource-1167 check result: PASS;False;dynamodb;;medium;dynamodb;arn:aws:dynamodb:ap-southeast-1:123456789012:resource-1167;resource-1167;;;aws;ap-southeast-1;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.170076;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-ap-southeast-2-80f26cb2;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-1168 check result: FAIL;False;ec2;;low;ec2;arn:aws:ec2:ap-southeast-2:123456789012:resource-1168;resource-1168;;;aws;ap-southeast-2;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.170084;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-northeast-1-72dc30cb;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;MANUAL;Resource resource-1169 check result: MANUAL;False;ecr;;informational;ecr;arn:aws:ecr:ap-northeast-1:123456789012:resource-1169;resource-1169;;;aws;ap-northeast-1;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.170091;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-1-634de9d9;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-1170 check result: PASS;False;ecs;;critical;ecs;arn:aws:ecs:us-east-1:123456789012:resource-1170;resource-1170;;;aws;us-east-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.170101;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-2-c7ef55cc;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-1171 check result: FAIL;False;efs;;high;efs;arn:aws:efs:us-east-2:123456789012:resource-1171;resource-1171;;;aws;us-east-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.170109;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-us-west-1-01e876e0;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;MANUAL;Resource resource-1172 check result: MANUAL;False;eks;;medium;eks;arn:aws:eks:us-west-1:123456789012:resource-1172;resource-1172;;;aws;us-west-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.170117;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-2-24f960f8;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-1173 check result: PASS;False;elasticache;;low;elasticache;arn:aws:elasticache:us-west-2:123456789012:resource-1173;resource-1173;;;aws;us-west-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.170126;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-eu-west-1-377822d7;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;FAIL;Resource resource-1174 check result: FAIL;False;elb;;informational;elb;arn:aws:elb:eu-west-1:123456789012:resource-1174;resource-1174;;;aws;eu-west-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.170133;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-2-48e0739b;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-1175 check result: MANUAL;False;emr;;critical;emr;arn:aws:emr:eu-west-2:123456789012:resource-1175;resource-1175;;;aws;eu-west-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.170141;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-central-1-66156c1d;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-1176 check result: PASS;False;guardduty;;high;guardduty;arn:aws:guardduty:eu-central-1:123456789012:resource-1176;resource-1176;;;aws;eu-central-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.170150;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-ap-southeast-1-7ce7c352;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-1177 check result: FAIL;False;iam;;medium;iam;arn:aws:iam:ap-southeast-1:123456789012:resource-1177;resource-1177;;;aws;ap-southeast-1;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.170158;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-2-15c109c7;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-1178 check result: MANUAL;False;kms;;low;kms;arn:aws:kms:ap-southeast-2:123456789012:resource-1178;resource-1178;;;aws;ap-southeast-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.170166;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-northeast-1-d18289ae;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;PASS;Resource resource-1179 check result: PASS;False;lambda;;informational;lambda;arn:aws:lambda:ap-northeast-1:123456789012:resource-1179;resource-1179;;;aws;ap-northeast-1;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 19:17:49.170174;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-us-east-1-2b702b76;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-1180 check result: FAIL;False;rds;;critical;rds;arn:aws:rds:us-east-1:123456789012:resource-1180;resource-1180;;;aws;us-east-1;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.170182;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-2-d8f64f95;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-1181 check result: MANUAL;False;redshift;;high;redshift;arn:aws:redshift:us-east-2:123456789012:resource-1181;resource-1181;;;aws;us-east-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.170190;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-us-west-1-f58b7b72;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-1182 check result: PASS;False;s3;;medium;s3;arn:aws:s3:us-west-1:123456789012:resource-1182;resource-1182;;;aws;us-west-1;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.170198;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-2-45298ef1;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-1183 check result: FAIL;False;secretsmanager;;low;secretsmanager;arn:aws:secretsmanager:us-west-2:123456789012:resource-1183;resource-1183;;;aws;us-west-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.170206;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-1-6b1428f2;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-1184 check result: MANUAL;False;sns;;informational;sns;arn:aws:sns:eu-west-1:123456789012:resource-1184;resource-1184;;;aws;eu-west-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.170214;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-2-c10d61bb;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-1185 check result: PASS;False;sqs;;critical;sqs;arn:aws:sqs:eu-west-2:123456789012:resource-1185;resource-1185;;;aws;eu-west-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.170222;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-central-1-0de27823;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-1186 check result: FAIL;False;ssm;;high;ssm;arn:aws:ssm:eu-central-1:123456789012:resource-1186;resource-1186;;;aws;eu-central-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.170230;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-1-5f92974b;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-1187 check result: MANUAL;False;vpc;;medium;vpc;arn:aws:vpc:ap-southeast-1:123456789012:resource-1187;resource-1187;;;aws;ap-southeast-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.170238;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-2-a4505fee;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-1188 check result: PASS;False;waf;;low;waf;arn:aws:waf:ap-southeast-2:123456789012:resource-1188;resource-1188;;;aws;ap-southeast-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.170246;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-ap-northeast-1-c8acf759;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;FAIL;Resource resource-1189 check result: FAIL;False;accessanalyzer;;informational;accessanalyzer;arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-1189;resource-1189;;;aws;ap-northeast-1;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.170254;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-us-east-1-05468595;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;MANUAL;Resource resource-1190 check result: MANUAL;False;acm;;critical;acm;arn:aws:acm:us-east-1:123456789012:resource-1190;resource-1190;;;aws;us-east-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.170262;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-east-2-cec40ea4;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;PASS;Resource resource-1191 check result: PASS;False;apigateway;;high;apigateway;arn:aws:apigateway:us-east-2:123456789012:resource-1191;resource-1191;;;aws;us-east-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.170270;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-west-1-6f6a353d;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;FAIL;Resource resource-1192 check result: FAIL;False;cloudfront;;medium;cloudfront;arn:aws:cloudfront:us-west-1:123456789012:resource-1192;resource-1192;;;aws;us-west-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.170278;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-west-2-4273c0bd;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;MANUAL;Resource resource-1193 check result: MANUAL;False;cloudtrail;;low;cloudtrail;arn:aws:cloudtrail:us-west-2:123456789012:resource-1193;resource-1193;;;aws;us-west-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.170286;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-1-f49ade1e;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-1194 check result: PASS;False;cloudwatch;;informational;cloudwatch;arn:aws:cloudwatch:eu-west-1:123456789012:resource-1194;resource-1194;;;aws;eu-west-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 04:17:49.170295;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-2-f9453ccb;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-1195 check result: FAIL;False;config;;critical;config;arn:aws:config:eu-west-2:123456789012:resource-1195;resource-1195;;;aws;eu-west-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.170303;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-central-1-43764da3;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;MANUAL;Resource resource-1196 check result: MANUAL;False;dynamodb;;high;dynamodb;arn:aws:dynamodb:eu-central-1:123456789012:resource-1196;resource-1196;;;aws;eu-central-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.170311;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-ap-southeast-1-642460b6;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-1197 check result: PASS;False;ec2;;medium;ec2;arn:aws:ec2:ap-southeast-1:123456789012:resource-1197;resource-1197;;;aws;ap-southeast-1;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.170319;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-ap-southeast-2-5f61d0ac;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;FAIL;Resource resource-1198 check result: FAIL;False;ecr;;low;ecr;arn:aws:ecr:ap-southeast-2:123456789012:resource-1198;resource-1198;;;aws;ap-southeast-2;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.170327;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-northeast-1-66c4505a;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-1199 check result: MANUAL;False;ecs;;informational;ecs;arn:aws:ecs:ap-northeast-1:123456789012:resource-1199;resource-1199;;;aws;ap-northeast-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.170335;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-1-87fd22fb;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-1200 check result: PASS;False;efs;;critical;efs;arn:aws:efs:us-east-1:123456789012:resource-1200;resource-1200;;;aws;us-east-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.170343;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-east-2-642834ba;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;FAIL;Resource resource-1201 check result: FAIL;False;eks;;high;eks;arn:aws:eks:us-east-2:123456789012:resource-1201;resource-1201;;;aws;us-east-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.170350;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-1-a0b9a8b9;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-1202 check result: MANUAL;False;elasticache;;medium;elasticache;arn:aws:elasticache:us-west-1:123456789012:resource-1202;resource-1202;;;aws;us-west-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.170360;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-us-west-2-1d69fe71;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;PASS;Resource resource-1203 check result: PASS;False;elb;;low;elb;arn:aws:elb:us-west-2:123456789012:resource-1203;resource-1203;;;aws;us-west-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.170370;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-1-6a50ebc8;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-1204 check result: FAIL;False;emr;;informational;emr;arn:aws:emr:eu-west-1:123456789012:resource-1204;resource-1204;;;aws;eu-west-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.170377;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-west-2-a1b507f1;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-1205 check result: MANUAL;False;guardduty;;critical;guardduty;arn:aws:guardduty:eu-west-2:123456789012:resource-1205;resource-1205;;;aws;eu-west-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.170385;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-eu-central-1-513c0181;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-1206 check result: PASS;False;iam;;high;iam;arn:aws:iam:eu-central-1:123456789012:resource-1206;resource-1206;;;aws;eu-central-1;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.170394;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-1-6c728dd6;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-1207 check result: FAIL;False;kms;;medium;kms;arn:aws:kms:ap-southeast-1:123456789012:resource-1207;resource-1207;;;aws;ap-southeast-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.170402;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-ap-southeast-2-0787d0b4;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;MANUAL;Resource resource-1208 check result: MANUAL;False;lambda;;low;lambda;arn:aws:lambda:ap-southeast-2:123456789012:resource-1208;resource-1208;;;aws;ap-southeast-2;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.170409;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-ap-northeast-1-a8361fb9;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-1209 check result: PASS;False;rds;;informational;rds;arn:aws:rds:ap-northeast-1:123456789012:resource-1209;resource-1209;;;aws;ap-northeast-1;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 13:17:49.170418;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-1-bcf3504b;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-1210 check result: FAIL;False;redshift;;critical;redshift;arn:aws:redshift:us-east-1:123456789012:resource-1210;resource-1210;;;aws;us-east-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.170425;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-us-east-2-4ea11683;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-1211 check result: MANUAL;False;s3;;high;s3;arn:aws:s3:us-east-2:123456789012:resource-1211;resource-1211;;;aws;us-east-2;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.170434;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-1-7cca07ad;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-1212 check result: PASS;False;secretsmanager;;medium;secretsmanager;arn:aws:secretsmanager:us-west-1:123456789012:resource-1212;resource-1212;;;aws;us-west-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.170443;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-2-df700662;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-1213 check result: FAIL;False;sns;;low;sns;arn:aws:sns:us-west-2:123456789012:resource-1213;resource-1213;;;aws;us-west-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.170451;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-1-27bee990;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-1214 check result: MANUAL;False;sqs;;informational;sqs;arn:aws:sqs:eu-west-1:123456789012:resource-1214;resource-1214;;;aws;eu-west-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.170458;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-2-797bda03;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-1215 check result: PASS;False;ssm;;critical;ssm;arn:aws:ssm:eu-west-2:123456789012:resource-1215;resource-1215;;;aws;eu-west-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.170467;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-eu-central-1-f28e9f15;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-1216 check result: FAIL;False;vpc;;high;vpc;arn:aws:vpc:eu-central-1:123456789012:resource-1216;resource-1216;;;aws;eu-central-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.170475;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-1-0ec968f8;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-1217 check result: MANUAL;False;waf;;medium;waf;arn:aws:waf:ap-southeast-1:123456789012:resource-1217;resource-1217;;;aws;ap-southeast-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.170482;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-ap-southeast-2-1c6b88f9;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;PASS;Resource resource-1218 check result: PASS;False;accessanalyzer;;low;accessanalyzer;arn:aws:accessanalyzer:ap-southeast-2:123456789012:resource-1218;resource-1218;;;aws;ap-southeast-2;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.170492;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-northeast-1-d8b78a79;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;FAIL;Resource resource-1219 check result: FAIL;False;acm;;informational;acm;arn:aws:acm:ap-northeast-1:123456789012:resource-1219;resource-1219;;;aws;ap-northeast-1;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.170500;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-east-1-0a1399be;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;MANUAL;Resource resource-1220 check result: MANUAL;False;apigateway;;critical;apigateway;arn:aws:apigateway:us-east-1:123456789012:resource-1220;resource-1220;;;aws;us-east-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.170508;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-east-2-42799934;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;PASS;Resource resource-1221 check result: PASS;False;cloudfront;;high;cloudfront;arn:aws:cloudfront:us-east-2:123456789012:resource-1221;resource-1221;;;aws;us-east-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.170517;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-west-1-991eb799;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;FAIL;Resource resource-1222 check result: FAIL;False;cloudtrail;;medium;cloudtrail;arn:aws:cloudtrail:us-west-1:123456789012:resource-1222;resource-1222;;;aws;us-west-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.170524;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-2-53de9188;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-1223 check result: MANUAL;False;cloudwatch;;low;cloudwatch;arn:aws:cloudwatch:us-west-2:123456789012:resource-1223;resource-1223;;;aws;us-west-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.170532;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-1-6a620a4c;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-1224 check result: PASS;False;config;;informational;config;arn:aws:config:eu-west-1:123456789012:resource-1224;resource-1224;;;aws;eu-west-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 22:17:49.170541;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-eu-west-2-64db610a;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;FAIL;Resource resource-1225 check result: FAIL;False;dynamodb;;critical;dynamodb;arn:aws:dynamodb:eu-west-2:123456789012:resource-1225;resource-1225;;;aws;eu-west-2;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.170549;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-eu-central-1-33c272d3;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-1226 check result: MANUAL;False;ec2;;high;ec2;arn:aws:ec2:eu-central-1:123456789012:resource-1226;resource-1226;;;aws;eu-central-1;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.170557;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-southeast-1-ea779e73;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;PASS;Resource resource-1227 check result: PASS;False;ecr;;medium;ecr;arn:aws:ecr:ap-southeast-1:123456789012:resource-1227;resource-1227;;;aws;ap-southeast-1;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.170565;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-2-9aafa5ad;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-1228 check result: FAIL;False;ecs;;low;ecs;arn:aws:ecs:ap-southeast-2:123456789012:resource-1228;resource-1228;;;aws;ap-southeast-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.170573;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-northeast-1-d4f6e87e;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-1229 check result: MANUAL;False;efs;;informational;efs;arn:aws:efs:ap-northeast-1:123456789012:resource-1229;resource-1229;;;aws;ap-northeast-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.170581;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-us-east-1-08d8b079;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;PASS;Resource resource-1230 check result: PASS;False;eks;;critical;eks;arn:aws:eks:us-east-1:123456789012:resource-1230;resource-1230;;;aws;us-east-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.170590;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-2-bf842ee9;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-1231 check result: FAIL;False;elasticache;;high;elasticache;arn:aws:elasticache:us-east-2:123456789012:resource-1231;resource-1231;;;aws;us-east-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.170598;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-us-west-1-0ee1e09e;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;MANUAL;Resource resource-1232 check result: MANUAL;False;elb;;medium;elb;arn:aws:elb:us-west-1:123456789012:resource-1232;resource-1232;;;aws;us-west-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.170606;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-2-3fbec7f8;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-1233 check result: PASS;False;emr;;low;emr;arn:aws:emr:us-west-2:123456789012:resource-1233;resource-1233;;;aws;us-west-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.170615;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-west-1-fd3500eb;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-1234 check result: FAIL;False;guardduty;;informational;guardduty;arn:aws:guardduty:eu-west-1:123456789012:resource-1234;resource-1234;;;aws;eu-west-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.170623;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-eu-west-2-0716fb00;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-1235 check result: MANUAL;False;iam;;critical;iam;arn:aws:iam:eu-west-2:123456789012:resource-1235;resource-1235;;;aws;eu-west-2;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.170630;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-central-1-862955c6;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-1236 check result: PASS;False;kms;;high;kms;arn:aws:kms:eu-central-1:123456789012:resource-1236;resource-1236;;;aws;eu-central-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.170638;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-southeast-1-9084cd35;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;FAIL;Resource resource-1237 check result: FAIL;False;lambda;;medium;lambda;arn:aws:lambda:ap-southeast-1:123456789012:resource-1237;resource-1237;;;aws;ap-southeast-1;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.170646;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-ap-southeast-2-b2e8ba20;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-1238 check result: MANUAL;False;rds;;low;rds;arn:aws:rds:ap-southeast-2:123456789012:resource-1238;resource-1238;;;aws;ap-southeast-2;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.170654;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-ap-northeast-1-3f85eef7;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-1239 check result: PASS;False;redshift;;informational;redshift;arn:aws:redshift:ap-northeast-1:123456789012:resource-1239;resource-1239;;;aws;ap-northeast-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 07:17:49.170663;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-us-east-1-909eda3b;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-1240 check result: FAIL;False;s3;;critical;s3;arn:aws:s3:us-east-1:123456789012:resource-1240;resource-1240;;;aws;us-east-1;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.170671;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-2-4e90e7b5;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-1241 check result: MANUAL;False;secretsmanager;;high;secretsmanager;arn:aws:secretsmanager:us-east-2:123456789012:resource-1241;resource-1241;;;aws;us-east-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.170679;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-1-778eab15;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-1242 check result: PASS;False;sns;;medium;sns;arn:aws:sns:us-west-1:123456789012:resource-1242;resource-1242;;;aws;us-west-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.170687;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-2-cd99156d;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-1243 check result: FAIL;False;sqs;;low;sqs;arn:aws:sqs:us-west-2:123456789012:resource-1243;resource-1243;;;aws;us-west-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.170696;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-1-89d4bd64;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-1244 check result: MANUAL;False;ssm;;informational;ssm;arn:aws:ssm:eu-west-1:123456789012:resource-1244;resource-1244;;;aws;eu-west-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.170704;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-2-e6d0f20f;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-1245 check result: PASS;False;vpc;;critical;vpc;arn:aws:vpc:eu-west-2:123456789012:resource-1245;resource-1245;;;aws;eu-west-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.170712;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-central-1-e359e2c9;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-1246 check result: FAIL;False;waf;;high;waf;arn:aws:waf:eu-central-1:123456789012:resource-1246;resource-1246;;;aws;eu-central-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.170720;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-ap-southeast-1-a69836e7;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;MANUAL;Resource resource-1247 check result: MANUAL;False;accessanalyzer;;medium;accessanalyzer;arn:aws:accessanalyzer:ap-southeast-1:123456789012:resource-1247;resource-1247;;;aws;ap-southeast-1;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.170728;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-ap-southeast-2-4c3b45ed;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;PASS;Resource resource-1248 check result: PASS;False;acm;;low;acm;arn:aws:acm:ap-southeast-2:123456789012:resource-1248;resource-1248;;;aws;ap-southeast-2;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.170736;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-northeast-1-a78a29b5;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;FAIL;Resource resource-1249 check result: FAIL;False;apigateway;;informational;apigateway;arn:aws:apigateway:ap-northeast-1:123456789012:resource-1249;resource-1249;;;aws;ap-northeast-1;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.170744;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-east-1-4aef8a06;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;MANUAL;Resource resource-1250 check result: MANUAL;False;cloudfront;;critical;cloudfront;arn:aws:cloudfront:us-east-1:123456789012:resource-1250;resource-1250;;;aws;us-east-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.170752;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-east-2-c6e39317;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;PASS;Resource resource-1251 check result: PASS;False;cloudtrail;;high;cloudtrail;arn:aws:cloudtrail:us-east-2:123456789012:resource-1251;resource-1251;;;aws;us-east-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.170761;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-1-7b6fb0ac;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-1252 check result: FAIL;False;cloudwatch;;medium;cloudwatch;arn:aws:cloudwatch:us-west-1:123456789012:resource-1252;resource-1252;;;aws;us-west-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.170769;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-2-a89a286d;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-1253 check result: MANUAL;False;config;;low;config;arn:aws:config:us-west-2:123456789012:resource-1253;resource-1253;;;aws;us-west-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.170777;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-west-1-14323aac;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;PASS;Resource resource-1254 check result: PASS;False;dynamodb;;informational;dynamodb;arn:aws:dynamodb:eu-west-1:123456789012:resource-1254;resource-1254;;;aws;eu-west-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 16:17:49.170786;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-eu-west-2-fd0d8a25;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-1255 check result: FAIL;False;ec2;;critical;ec2;arn:aws:ec2:eu-west-2:123456789012:resource-1255;resource-1255;;;aws;eu-west-2;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.170793;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-central-1-66c245ba;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;MANUAL;Resource resource-1256 check result: MANUAL;False;ecr;;high;ecr;arn:aws:ecr:eu-central-1:123456789012:resource-1256;resource-1256;;;aws;eu-central-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.170801;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-1-302460ec;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-1257 check result: PASS;False;ecs;;medium;ecs;arn:aws:ecs:ap-southeast-1:123456789012:resource-1257;resource-1257;;;aws;ap-southeast-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.170810;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-2-498417af;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-1258 check result: FAIL;False;efs;;low;efs;arn:aws:efs:ap-southeast-2:123456789012:resource-1258;resource-1258;;;aws;ap-southeast-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.170817;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-northeast-1-2b6b9739;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;MANUAL;Resource resource-1259 check result: MANUAL;False;eks;;informational;eks;arn:aws:eks:ap-northeast-1:123456789012:resource-1259;resource-1259;;;aws;ap-northeast-1;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.170825;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-1-eafd26e5;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-1260 check result: PASS;False;elasticache;;critical;elasticache;arn:aws:elasticache:us-east-1:123456789012:resource-1260;resource-1260;;;aws;us-east-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.170834;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-us-east-2-0ef86973;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;FAIL;Resource resource-1261 check result: FAIL;False;elb;;high;elb;arn:aws:elb:us-east-2:123456789012:resource-1261;resource-1261;;;aws;us-east-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.170842;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-1-425dc2f5;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-1262 check result: MANUAL;False;emr;;medium;emr;arn:aws:emr:us-west-1:123456789012:resource-1262;resource-1262;;;aws;us-west-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.170850;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-west-2-a80f31c8;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-1263 check result: PASS;False;guardduty;;low;guardduty;arn:aws:guardduty:us-west-2:123456789012:resource-1263;resource-1263;;;aws;us-west-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.170858;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-eu-west-1-9b4e52d3;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-1264 check result: FAIL;False;iam;;informational;iam;arn:aws:iam:eu-west-1:123456789012:resource-1264;resource-1264;;;aws;eu-west-1;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.170866;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-2-6a94a074;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-1265 check result: MANUAL;False;kms;;critical;kms;arn:aws:kms:eu-west-2:123456789012:resource-1265;resource-1265;;;aws;eu-west-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.170874;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-eu-central-1-46167984;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;PASS;Resource resource-1266 check result: PASS;False;lambda;;high;lambda;arn:aws:lambda:eu-central-1:123456789012:resource-1266;resource-1266;;;aws;eu-central-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.170883;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-ap-southeast-1-64e5813a;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-1267 check result: FAIL;False;rds;;medium;rds;arn:aws:rds:ap-southeast-1:123456789012:resource-1267;resource-1267;;;aws;ap-southeast-1;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.170890;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-2-cead3f98;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-1268 check result: MANUAL;False;redshift;;low;redshift;arn:aws:redshift:ap-southeast-2:123456789012:resource-1268;resource-1268;;;aws;ap-southeast-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.170898;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-ap-northeast-1-671d8c0d;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-1269 check result: PASS;False;s3;;informational;s3;arn:aws:s3:ap-northeast-1:123456789012:resource-1269;resource-1269;;;aws;ap-northeast-1;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 01:17:49.170907;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-1-961c542c;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-1270 check result: FAIL;False;secretsmanager;;critical;secretsmanager;arn:aws:secretsmanager:us-east-1:123456789012:resource-1270;resource-1270;;;aws;us-east-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.170915;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-2-e7789465;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-1271 check result: MANUAL;False;sns;;high;sns;arn:aws:sns:us-east-2:123456789012:resource-1271;resource-1271;;;aws;us-east-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.170923;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-1-79c9a112;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-1272 check result: PASS;False;sqs;;medium;sqs;arn:aws:sqs:us-west-1:123456789012:resource-1272;resource-1272;;;aws;us-west-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.170933;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-2-3c831808;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-1273 check result: FAIL;False;ssm;;low;ssm;arn:aws:ssm:us-west-2:123456789012:resource-1273;resource-1273;;;aws;us-west-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.170941;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-1-76ed7de4;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-1274 check result: MANUAL;False;vpc;;informational;vpc;arn:aws:vpc:eu-west-1:123456789012:resource-1274;resource-1274;;;aws;eu-west-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.170948;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-2-7934ea2c;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-1275 check result: PASS;False;waf;;critical;waf;arn:aws:waf:eu-west-2:123456789012:resource-1275;resource-1275;;;aws;eu-west-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.170957;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-eu-central-1-53373150;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;FAIL;Resource resource-1276 check result: FAIL;False;accessanalyzer;;high;accessanalyzer;arn:aws:accessanalyzer:eu-central-1:123456789012:resource-1276;resource-1276;;;aws;eu-central-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.170965;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-southeast-1-25c58dcf;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;MANUAL;Resource resource-1277 check result: MANUAL;False;acm;;medium;acm;arn:aws:acm:ap-southeast-1:123456789012:resource-1277;resource-1277;;;aws;ap-southeast-1;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.170972;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-ap-southeast-2-f8fddc25;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;PASS;Resource resource-1278 check result: PASS;False;apigateway;;low;apigateway;arn:aws:apigateway:ap-southeast-2:123456789012:resource-1278;resource-1278;;;aws;ap-southeast-2;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.170981;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-northeast-1-3f0befb2;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;FAIL;Resource resource-1279 check result: FAIL;False;cloudfront;;informational;cloudfront;arn:aws:cloudfront:ap-northeast-1:123456789012:resource-1279;resource-1279;;;aws;ap-northeast-1;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.170990;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-east-1-e9e3829d;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;MANUAL;Resource resource-1280 check result: MANUAL;False;cloudtrail;;critical;cloudtrail;arn:aws:cloudtrail:us-east-1:123456789012:resource-1280;resource-1280;;;aws;us-east-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.170998;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-2-b444d744;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-1281 check result: PASS;False;cloudwatch;;high;cloudwatch;arn:aws:cloudwatch:us-east-2:123456789012:resource-1281;resource-1281;;;aws;us-east-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.171006;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-1-77cdee50;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-1282 check result: FAIL;False;config;;medium;config;arn:aws:config:us-west-1:123456789012:resource-1282;resource-1282;;;aws;us-west-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.171014;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-west-2-a6acc601;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;MANUAL;Resource resource-1283 check result: MANUAL;False;dynamodb;;low;dynamodb;arn:aws:dynamodb:us-west-2:123456789012:resource-1283;resource-1283;;;aws;us-west-2;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.171022;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-eu-west-1-018934fa;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-1284 check result: PASS;False;ec2;;informational;ec2;arn:aws:ec2:eu-west-1:123456789012:resource-1284;resource-1284;;;aws;eu-west-1;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 10:17:49.171031;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-eu-west-2-042babc2;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;FAIL;Resource resource-1285 check result: FAIL;False;ecr;;critical;ecr;arn:aws:ecr:eu-west-2:123456789012:resource-1285;resource-1285;;;aws;eu-west-2;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.171038;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-central-1-675f60c0;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-1286 check result: MANUAL;False;ecs;;high;ecs;arn:aws:ecs:eu-central-1:123456789012:resource-1286;resource-1286;;;aws;eu-central-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.171048;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-1-26d123bf;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-1287 check result: PASS;False;efs;;medium;efs;arn:aws:efs:ap-southeast-1:123456789012:resource-1287;resource-1287;;;aws;ap-southeast-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.171056;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-ap-southeast-2-29aa11f8;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;FAIL;Resource resource-1288 check result: FAIL;False;eks;;low;eks;arn:aws:eks:ap-southeast-2:123456789012:resource-1288;resource-1288;;;aws;ap-southeast-2;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.171064;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-northeast-1-dc7ae3f5;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-1289 check result: MANUAL;False;elasticache;;informational;elasticache;arn:aws:elasticache:ap-northeast-1:123456789012:resource-1289;resource-1289;;;aws;ap-northeast-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.171072;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-us-east-1-76b0a0c2;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;PASS;Resource resource-1290 check result: PASS;False;elb;;critical;elb;arn:aws:elb:us-east-1:123456789012:resource-1290;resource-1290;;;aws;us-east-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.171081;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-2-306df76e;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-1291 check result: FAIL;False;emr;;high;emr;arn:aws:emr:us-east-2:123456789012:resource-1291;resource-1291;;;aws;us-east-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.171090;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-west-1-54eb20ce;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-1292 check result: MANUAL;False;guardduty;;medium;guardduty;arn:aws:guardduty:us-west-1:123456789012:resource-1292;resource-1292;;;aws;us-west-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.171099;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-us-west-2-58c5ff0d;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-1293 check result: PASS;False;iam;;low;iam;arn:aws:iam:us-west-2:123456789012:resource-1293;resource-1293;;;aws;us-west-2;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.171107;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-1-5b1a82de;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-1294 check result: FAIL;False;kms;;informational;kms;arn:aws:kms:eu-west-1:123456789012:resource-1294;resource-1294;;;aws;eu-west-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.171115;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-eu-west-2-7dd89c2f;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;MANUAL;Resource resource-1295 check result: MANUAL;False;lambda;;critical;lambda;arn:aws:lambda:eu-west-2:123456789012:resource-1295;resource-1295;;;aws;eu-west-2;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.171123;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-eu-central-1-7f35dffb;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-1296 check result: PASS;False;rds;;high;rds;arn:aws:rds:eu-central-1:123456789012:resource-1296;resource-1296;;;aws;eu-central-1;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.171131;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-1-c9b949d0;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-1297 check result: FAIL;False;redshift;;medium;redshift;arn:aws:redshift:ap-southeast-1:123456789012:resource-1297;resource-1297;;;aws;ap-southeast-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.171139;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-ap-southeast-2-6f997d3a;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-1298 check result: MANUAL;False;s3;;low;s3;arn:aws:s3:ap-southeast-2:123456789012:resource-1298;resource-1298;;;aws;ap-southeast-2;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.171147;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-northeast-1-a1f78b9c;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-1299 check result: PASS;False;secretsmanager;;informational;secretsmanager;arn:aws:secretsmanager:ap-northeast-1:123456789012:resource-1299;resource-1299;;;aws;ap-northeast-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 19:17:49.171156;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-1-956cbf58;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-1300 check result: FAIL;False;sns;;critical;sns;arn:aws:sns:us-east-1:123456789012:resource-1300;resource-1300;;;aws;us-east-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.171163;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-2-e525e30a;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-1301 check result: MANUAL;False;sqs;;high;sqs;arn:aws:sqs:us-east-2:123456789012:resource-1301;resource-1301;;;aws;us-east-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.171172;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-1-826b9b3c;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-1302 check result: PASS;False;ssm;;medium;ssm;arn:aws:ssm:us-west-1:123456789012:resource-1302;resource-1302;;;aws;us-west-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.171181;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-2-fe51faea;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-1303 check result: FAIL;False;vpc;;low;vpc;arn:aws:vpc:us-west-2:123456789012:resource-1303;resource-1303;;;aws;us-west-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.171189;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-1-9b69c31a;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-1304 check result: MANUAL;False;waf;;informational;waf;arn:aws:waf:eu-west-1:123456789012:resource-1304;resource-1304;;;aws;eu-west-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.171196;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-eu-west-2-5508718b;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;PASS;Resource resource-1305 check result: PASS;False;accessanalyzer;;critical;accessanalyzer;arn:aws:accessanalyzer:eu-west-2:123456789012:resource-1305;resource-1305;;;aws;eu-west-2;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.171205;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-eu-central-1-78970d7e;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;FAIL;Resource resource-1306 check result: FAIL;False;acm;;high;acm;arn:aws:acm:eu-central-1:123456789012:resource-1306;resource-1306;;;aws;eu-central-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.171213;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-southeast-1-d7f2e299;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;MANUAL;Resource resource-1307 check result: MANUAL;False;apigateway;;medium;apigateway;arn:aws:apigateway:ap-southeast-1:123456789012:resource-1307;resource-1307;;;aws;ap-southeast-1;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.171220;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-ap-southeast-2-ca1af493;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;PASS;Resource resource-1308 check result: PASS;False;cloudfront;;low;cloudfront;arn:aws:cloudfront:ap-southeast-2:123456789012:resource-1308;resource-1308;;;aws;ap-southeast-2;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.171229;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-northeast-1-ab4f3ea2;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;FAIL;Resource resource-1309 check result: FAIL;False;cloudtrail;;informational;cloudtrail;arn:aws:cloudtrail:ap-northeast-1:123456789012:resource-1309;resource-1309;;;aws;ap-northeast-1;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.171237;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-1-bd745ad0;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-1310 check result: MANUAL;False;cloudwatch;;critical;cloudwatch;arn:aws:cloudwatch:us-east-1:123456789012:resource-1310;resource-1310;;;aws;us-east-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.171245;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-2-0a4b74a8;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-1311 check result: PASS;False;config;;high;config;arn:aws:config:us-east-2:123456789012:resource-1311;resource-1311;;;aws;us-east-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.171253;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-west-1-2ed5f3cd;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;FAIL;Resource resource-1312 check result: FAIL;False;dynamodb;;medium;dynamodb;arn:aws:dynamodb:us-west-1:123456789012:resource-1312;resource-1312;;;aws;us-west-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.171261;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-us-west-2-fe9dc538;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-1313 check result: MANUAL;False;ec2;;low;ec2;arn:aws:ec2:us-west-2:123456789012:resource-1313;resource-1313;;;aws;us-west-2;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.171269;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-west-1-6e38900a;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;PASS;Resource resource-1314 check result: PASS;False;ecr;;informational;ecr;arn:aws:ecr:eu-west-1:123456789012:resource-1314;resource-1314;;;aws;eu-west-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 04:17:49.171278;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-2-c6f3ee4a;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-1315 check result: FAIL;False;ecs;;critical;ecs;arn:aws:ecs:eu-west-2:123456789012:resource-1315;resource-1315;;;aws;eu-west-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.171286;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-central-1-cf999cef;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-1316 check result: MANUAL;False;efs;;high;efs;arn:aws:efs:eu-central-1:123456789012:resource-1316;resource-1316;;;aws;eu-central-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.171293;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-southeast-1-fa5372d8;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;PASS;Resource resource-1317 check result: PASS;False;eks;;medium;eks;arn:aws:eks:ap-southeast-1:123456789012:resource-1317;resource-1317;;;aws;ap-southeast-1;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.171302;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-2-3dae6200;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-1318 check result: FAIL;False;elasticache;;low;elasticache;arn:aws:elasticache:ap-southeast-2:123456789012:resource-1318;resource-1318;;;aws;ap-southeast-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.171310;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-ap-northeast-1-3b64c184;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;MANUAL;Resource resource-1319 check result: MANUAL;False;elb;;informational;elb;arn:aws:elb:ap-northeast-1:123456789012:resource-1319;resource-1319;;;aws;ap-northeast-1;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.171318;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-1-86eb93f7;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-1320 check result: PASS;False;emr;;critical;emr;arn:aws:emr:us-east-1:123456789012:resource-1320;resource-1320;;;aws;us-east-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.171326;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-east-2-cbab66bd;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-1321 check result: FAIL;False;guardduty;;high;guardduty;arn:aws:guardduty:us-east-2:123456789012:resource-1321;resource-1321;;;aws;us-east-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.171334;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-us-west-1-1c08d3ab;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-1322 check result: MANUAL;False;iam;;medium;iam;arn:aws:iam:us-west-1:123456789012:resource-1322;resource-1322;;;aws;us-west-1;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.171342;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-2-d59640ed;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-1323 check result: PASS;False;kms;;low;kms;arn:aws:kms:us-west-2:123456789012:resource-1323;resource-1323;;;aws;us-west-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.171350;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-eu-west-1-bc4aa28d;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;FAIL;Resource resource-1324 check result: FAIL;False;lambda;;informational;lambda;arn:aws:lambda:eu-west-1:123456789012:resource-1324;resource-1324;;;aws;eu-west-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.171358;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-eu-west-2-e5f34250;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-1325 check result: MANUAL;False;rds;;critical;rds;arn:aws:rds:eu-west-2:123456789012:resource-1325;resource-1325;;;aws;eu-west-2;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.171365;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-eu-central-1-a02659e2;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-1326 check result: PASS;False;redshift;;high;redshift;arn:aws:redshift:eu-central-1:123456789012:resource-1326;resource-1326;;;aws;eu-central-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.171374;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-ap-southeast-1-01501474;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-1327 check result: FAIL;False;s3;;medium;s3;arn:aws:s3:ap-southeast-1:123456789012:resource-1327;resource-1327;;;aws;ap-southeast-1;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.171382;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-2-cfb86cce;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-1328 check result: MANUAL;False;secretsmanager;;low;secretsmanager;arn:aws:secretsmanager:ap-southeast-2:123456789012:resource-1328;resource-1328;;;aws;ap-southeast-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.171390;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-northeast-1-8afdb9f4;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-1329 check result: PASS;False;sns;;informational;sns;arn:aws:sns:ap-northeast-1:123456789012:resource-1329;resource-1329;;;aws;ap-northeast-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 13:17:49.171398;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-1-39d8ffc8;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-1330 check result: FAIL;False;sqs;;critical;sqs;arn:aws:sqs:us-east-1:123456789012:resource-1330;resource-1330;;;aws;us-east-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.171406;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-2-4d1dd47d;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-1331 check result: MANUAL;False;ssm;;high;ssm;arn:aws:ssm:us-east-2:123456789012:resource-1331;resource-1331;;;aws;us-east-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.171414;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-1-3a6e284e;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-1332 check result: PASS;False;vpc;;medium;vpc;arn:aws:vpc:us-west-1:123456789012:resource-1332;resource-1332;;;aws;us-west-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.171422;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-2-5131fb6d;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-1333 check result: FAIL;False;waf;;low;waf;arn:aws:waf:us-west-2:123456789012:resource-1333;resource-1333;;;aws;us-west-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.171430;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-eu-west-1-4f8b70cf;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;MANUAL;Resource resource-1334 check result: MANUAL;False;accessanalyzer;;informational;accessanalyzer;arn:aws:accessanalyzer:eu-west-1:123456789012:resource-1334;resource-1334;;;aws;eu-west-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.171438;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-eu-west-2-275f840a;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;PASS;Resource resource-1335 check result: PASS;False;acm;;critical;acm;arn:aws:acm:eu-west-2:123456789012:resource-1335;resource-1335;;;aws;eu-west-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.171446;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-central-1-2635f3f6;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;FAIL;Resource resource-1336 check result: FAIL;False;apigateway;;high;apigateway;arn:aws:apigateway:eu-central-1:123456789012:resource-1336;resource-1336;;;aws;eu-central-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.171454;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-southeast-1-058c7f2d;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;MANUAL;Resource resource-1337 check result: MANUAL;False;cloudfront;;medium;cloudfront;arn:aws:cloudfront:ap-southeast-1:123456789012:resource-1337;resource-1337;;;aws;ap-southeast-1;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.171463;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-ap-southeast-2-5d029d95;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;PASS;Resource resource-1338 check result: PASS;False;cloudtrail;;low;cloudtrail;arn:aws:cloudtrail:ap-southeast-2:123456789012:resource-1338;resource-1338;;;aws;ap-southeast-2;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.171472;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-northeast-1-75e4102c;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-1339 check result: FAIL;False;cloudwatch;;informational;cloudwatch;arn:aws:cloudwatch:ap-northeast-1:123456789012:resource-1339;resource-1339;;;aws;ap-northeast-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.171480;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-1-aa47f5f7;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-1340 check result: MANUAL;False;config;;critical;config;arn:aws:config:us-east-1:123456789012:resource-1340;resource-1340;;;aws;us-east-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.171488;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-east-2-30d0325f;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;PASS;Resource resource-1341 check result: PASS;False;dynamodb;;high;dynamodb;arn:aws:dynamodb:us-east-2:123456789012:resource-1341;resource-1341;;;aws;us-east-2;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.171497;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-us-west-1-fb5bb3b3;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-1342 check result: FAIL;False;ec2;;medium;ec2;arn:aws:ec2:us-west-1:123456789012:resource-1342;resource-1342;;;aws;us-west-1;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.171505;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-west-2-788f70b0;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;MANUAL;Resource resource-1343 check result: MANUAL;False;ecr;;low;ecr;arn:aws:ecr:us-west-2:123456789012:resource-1343;resource-1343;;;aws;us-west-2;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.171514;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-1-6a860524;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-1344 check result: PASS;False;ecs;;informational;ecs;arn:aws:ecs:eu-west-1:123456789012:resource-1344;resource-1344;;;aws;eu-west-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 22:17:49.171524;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-2-5368a4f4;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-1345 check result: FAIL;False;efs;;critical;efs;arn:aws:efs:eu-west-2:123456789012:resource-1345;resource-1345;;;aws;eu-west-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.171532;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-eu-central-1-626b10fb;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;MANUAL;Resource resource-1346 check result: MANUAL;False;eks;;high;eks;arn:aws:eks:eu-central-1:123456789012:resource-1346;resource-1346;;;aws;eu-central-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.171540;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-1-4dca5615;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-1347 check result: PASS;False;elasticache;;medium;elasticache;arn:aws:elasticache:ap-southeast-1:123456789012:resource-1347;resource-1347;;;aws;ap-southeast-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.171549;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-ap-southeast-2-16abb462;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;FAIL;Resource resource-1348 check result: FAIL;False;elb;;low;elb;arn:aws:elb:ap-southeast-2:123456789012:resource-1348;resource-1348;;;aws;ap-southeast-2;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.171557;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-northeast-1-6d533d27;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-1349 check result: MANUAL;False;emr;;informational;emr;arn:aws:emr:ap-northeast-1:123456789012:resource-1349;resource-1349;;;aws;ap-northeast-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.171565;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-us-east-1-4773de67;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-1350 check result: PASS;False;guardduty;;critical;guardduty;arn:aws:guardduty:us-east-1:123456789012:resource-1350;resource-1350;;;aws;us-east-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.171574;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-us-east-2-75308f85;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-1351 check result: FAIL;False;iam;;high;iam;arn:aws:iam:us-east-2:123456789012:resource-1351;resource-1351;;;aws;us-east-2;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.171582;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-1-42819331;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-1352 check result: MANUAL;False;kms;;medium;kms;arn:aws:kms:us-west-1:123456789012:resource-1352;resource-1352;;;aws;us-west-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.171590;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-west-2-482363fd;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;PASS;Resource resource-1353 check result: PASS;False;lambda;;low;lambda;arn:aws:lambda:us-west-2:123456789012:resource-1353;resource-1353;;;aws;us-west-2;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.171599;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-eu-west-1-92761efa;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-1354 check result: FAIL;False;rds;;informational;rds;arn:aws:rds:eu-west-1:123456789012:resource-1354;resource-1354;;;aws;eu-west-1;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.171608;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-2-2da477d8;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-1355 check result: MANUAL;False;redshift;;critical;redshift;arn:aws:redshift:eu-west-2:123456789012:resource-1355;resource-1355;;;aws;eu-west-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.171616;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-eu-central-1-b6a88044;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-1356 check result: PASS;False;s3;;high;s3;arn:aws:s3:eu-central-1:123456789012:resource-1356;resource-1356;;;aws;eu-central-1;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.171625;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-1-68a91bce;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-1357 check result: FAIL;False;secretsmanager;;medium;secretsmanager;arn:aws:secretsmanager:ap-southeast-1:123456789012:resource-1357;resource-1357;;;aws;ap-southeast-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.171633;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-2-b7841681;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-1358 check result: MANUAL;False;sns;;low;sns;arn:aws:sns:ap-southeast-2:123456789012:resource-1358;resource-1358;;;aws;ap-southeast-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.171641;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-northeast-1-61c59e94;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-1359 check result: PASS;False;sqs;;informational;sqs;arn:aws:sqs:ap-northeast-1:123456789012:resource-1359;resource-1359;;;aws;ap-northeast-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 07:17:49.171651;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-1-7ab225db;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-1360 check result: FAIL;False;ssm;;critical;ssm;arn:aws:ssm:us-east-1:123456789012:resource-1360;resource-1360;;;aws;us-east-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.171661;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-2-04d4b88c;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-1361 check result: MANUAL;False;vpc;;high;vpc;arn:aws:vpc:us-east-2:123456789012:resource-1361;resource-1361;;;aws;us-east-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.171669;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-1-ecdccf7d;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-1362 check result: PASS;False;waf;;medium;waf;arn:aws:waf:us-west-1:123456789012:resource-1362;resource-1362;;;aws;us-west-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.171678;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-us-west-2-b7cfa022;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;FAIL;Resource resource-1363 check result: FAIL;False;accessanalyzer;;low;accessanalyzer;arn:aws:accessanalyzer:us-west-2:123456789012:resource-1363;resource-1363;;;aws;us-west-2;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.171686;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-eu-west-1-dd3f2b40;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;MANUAL;Resource resource-1364 check result: MANUAL;False;acm;;informational;acm;arn:aws:acm:eu-west-1:123456789012:resource-1364;resource-1364;;;aws;eu-west-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.171694;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-eu-west-2-04e25e12;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;PASS;Resource resource-1365 check result: PASS;False;apigateway;;critical;apigateway;arn:aws:apigateway:eu-west-2:123456789012:resource-1365;resource-1365;;;aws;eu-west-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.171703;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-central-1-c609defd;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;FAIL;Resource resource-1366 check result: FAIL;False;cloudfront;;high;cloudfront;arn:aws:cloudfront:eu-central-1:123456789012:resource-1366;resource-1366;;;aws;eu-central-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.171711;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-southeast-1-d082008c;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;MANUAL;Resource resource-1367 check result: MANUAL;False;cloudtrail;;medium;cloudtrail;arn:aws:cloudtrail:ap-southeast-1:123456789012:resource-1367;resource-1367;;;aws;ap-southeast-1;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.171720;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-2-0e3d363e;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-1368 check result: PASS;False;cloudwatch;;low;cloudwatch;arn:aws:cloudwatch:ap-southeast-2:123456789012:resource-1368;resource-1368;;;aws;ap-southeast-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.171729;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-northeast-1-7020b1f2;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-1369 check result: FAIL;False;config;;informational;config;arn:aws:config:ap-northeast-1:123456789012:resource-1369;resource-1369;;;aws;ap-northeast-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.171737;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-east-1-fcde21d7;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;MANUAL;Resource resource-1370 check result: MANUAL;False;dynamodb;;critical;dynamodb;arn:aws:dynamodb:us-east-1:123456789012:resource-1370;resource-1370;;;aws;us-east-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.171747;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-us-east-2-46f1e175;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-1371 check result: PASS;False;ec2;;high;ec2;arn:aws:ec2:us-east-2:123456789012:resource-1371;resource-1371;;;aws;us-east-2;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.171756;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-west-1-6b9e8941;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;FAIL;Resource resource-1372 check result: FAIL;False;ecr;;medium;ecr;arn:aws:ecr:us-west-1:123456789012:resource-1372;resource-1372;;;aws;us-west-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.171764;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-2-0b10caba;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-1373 check result: MANUAL;False;ecs;;low;ecs;arn:aws:ecs:us-west-2:123456789012:resource-1373;resource-1373;;;aws;us-west-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.171772;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-1-4feaf741;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-1374 check result: PASS;False;efs;;informational;efs;arn:aws:efs:eu-west-1:123456789012:resource-1374;resource-1374;;;aws;eu-west-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 16:17:49.171781;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-eu-west-2-5256ec94;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;FAIL;Resource resource-1375 check result: FAIL;False;eks;;critical;eks;arn:aws:eks:eu-west-2:123456789012:resource-1375;resource-1375;;;aws;eu-west-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.171789;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-central-1-d66f4a62;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-1376 check result: MANUAL;False;elasticache;;high;elasticache;arn:aws:elasticache:eu-central-1:123456789012:resource-1376;resource-1376;;;aws;eu-central-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.171797;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-ap-southeast-1-a07d253f;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;PASS;Resource resource-1377 check result: PASS;False;elb;;medium;elb;arn:aws:elb:ap-southeast-1:123456789012:resource-1377;resource-1377;;;aws;ap-southeast-1;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.171806;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-2-1005f6c0;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-1378 check result: FAIL;False;emr;;low;emr;arn:aws:emr:ap-southeast-2:123456789012:resource-1378;resource-1378;;;aws;ap-southeast-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.171814;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-ap-northeast-1-d3923620;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-1379 check result: MANUAL;False;guardduty;;informational;guardduty;arn:aws:guardduty:ap-northeast-1:123456789012:resource-1379;resource-1379;;;aws;ap-northeast-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.171822;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-us-east-1-5d1fa6ea;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-1380 check result: PASS;False;iam;;critical;iam;arn:aws:iam:us-east-1:123456789012:resource-1380;resource-1380;;;aws;us-east-1;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.171831;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-2-6d1e6ea4;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-1381 check result: FAIL;False;kms;;high;kms;arn:aws:kms:us-east-2:123456789012:resource-1381;resource-1381;;;aws;us-east-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.171840;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-us-west-1-2fba5bd9;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;MANUAL;Resource resource-1382 check result: MANUAL;False;lambda;;medium;lambda;arn:aws:lambda:us-west-1:123456789012:resource-1382;resource-1382;;;aws;us-west-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.171848;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-us-west-2-44d1afda;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-1383 check result: PASS;False;rds;;low;rds;arn:aws:rds:us-west-2:123456789012:resource-1383;resource-1383;;;aws;us-west-2;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.171856;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-1-979ee21f;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-1384 check result: FAIL;False;redshift;;informational;redshift;arn:aws:redshift:eu-west-1:123456789012:resource-1384;resource-1384;;;aws;eu-west-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.171865;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-eu-west-2-09121232;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-1385 check result: MANUAL;False;s3;;critical;s3;arn:aws:s3:eu-west-2:123456789012:resource-1385;resource-1385;;;aws;eu-west-2;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.171873;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-central-1-373dd7e1;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-1386 check result: PASS;False;secretsmanager;;high;secretsmanager;arn:aws:secretsmanager:eu-central-1:123456789012:resource-1386;resource-1386;;;aws;eu-central-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.171882;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-1-70a4a21b;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-1387 check result: FAIL;False;sns;;medium;sns;arn:aws:sns:ap-southeast-1:123456789012:resource-1387;resource-1387;;;aws;ap-southeast-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.171890;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-2-6aa169e1;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-1388 check result: MANUAL;False;sqs;;low;sqs;arn:aws:sqs:ap-southeast-2:123456789012:resource-1388;resource-1388;;;aws;ap-southeast-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.171898;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-ap-northeast-1-bc8fbd39;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-1389 check result: PASS;False;ssm;;informational;ssm;arn:aws:ssm:ap-northeast-1:123456789012:resource-1389;resource-1389;;;aws;ap-northeast-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 01:17:49.171907;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-1-aac2e77f;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-1390 check result: FAIL;False;vpc;;critical;vpc;arn:aws:vpc:us-east-1:123456789012:resource-1390;resource-1390;;;aws;us-east-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.171915;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-2-33cafdca;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-1391 check result: MANUAL;False;waf;;high;waf;arn:aws:waf:us-east-2:123456789012:resource-1391;resource-1391;;;aws;us-east-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.171923;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-us-west-1-fd3e0235;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;PASS;Resource resource-1392 check result: PASS;False;accessanalyzer;;medium;accessanalyzer;arn:aws:accessanalyzer:us-west-1:123456789012:resource-1392;resource-1392;;;aws;us-west-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.171932;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-west-2-a3ff02a0;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;FAIL;Resource resource-1393 check result: FAIL;False;acm;;low;acm;arn:aws:acm:us-west-2:123456789012:resource-1393;resource-1393;;;aws;us-west-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.171940;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-west-1-811ea242;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;MANUAL;Resource resource-1394 check result: MANUAL;False;apigateway;;informational;apigateway;arn:aws:apigateway:eu-west-1:123456789012:resource-1394;resource-1394;;;aws;eu-west-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.171948;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-eu-west-2-f38faaec;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;PASS;Resource resource-1395 check result: PASS;False;cloudfront;;critical;cloudfront;arn:aws:cloudfront:eu-west-2:123456789012:resource-1395;resource-1395;;;aws;eu-west-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.171959;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-central-1-2415afb4;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;FAIL;Resource resource-1396 check result: FAIL;False;cloudtrail;;high;cloudtrail;arn:aws:cloudtrail:eu-central-1:123456789012:resource-1396;resource-1396;;;aws;eu-central-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.171967;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-1-812d0f4b;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-1397 check result: MANUAL;False;cloudwatch;;medium;cloudwatch;arn:aws:cloudwatch:ap-southeast-1:123456789012:resource-1397;resource-1397;;;aws;ap-southeast-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.171975;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-2-f3d7256f;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-1398 check result: PASS;False;config;;low;config;arn:aws:config:ap-southeast-2:123456789012:resource-1398;resource-1398;;;aws;ap-southeast-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.171984;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-northeast-1-01025e0a;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;FAIL;Resource resource-1399 check result: FAIL;False;dynamodb;;informational;dynamodb;arn:aws:dynamodb:ap-northeast-1:123456789012:resource-1399;resource-1399;;;aws;ap-northeast-1;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.171992;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-us-east-1-c58698d8;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-1400 check result: MANUAL;False;ec2;;critical;ec2;arn:aws:ec2:us-east-1:123456789012:resource-1400;resource-1400;;;aws;us-east-1;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.172001;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-east-2-79fca36e;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;PASS;Resource resource-1401 check result: PASS;False;ecr;;high;ecr;arn:aws:ecr:us-east-2:123456789012:resource-1401;resource-1401;;;aws;us-east-2;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.172010;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-1-7254d281;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-1402 check result: FAIL;False;ecs;;medium;ecs;arn:aws:ecs:us-west-1:123456789012:resource-1402;resource-1402;;;aws;us-west-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.172052;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-2-d3ed7dac;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-1403 check result: MANUAL;False;efs;;low;efs;arn:aws:efs:us-west-2:123456789012:resource-1403;resource-1403;;;aws;us-west-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.172071;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-eu-west-1-e0dbd99b;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;PASS;Resource resource-1404 check result: PASS;False;eks;;informational;eks;arn:aws:eks:eu-west-1:123456789012:resource-1404;resource-1404;;;aws;eu-west-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 10:17:49.172082;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-2-8dc007c8;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-1405 check result: FAIL;False;elasticache;;critical;elasticache;arn:aws:elasticache:eu-west-2:123456789012:resource-1405;resource-1405;;;aws;eu-west-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.172093;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-eu-central-1-9650dc8e;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;MANUAL;Resource resource-1406 check result: MANUAL;False;elb;;high;elb;arn:aws:elb:eu-central-1:123456789012:resource-1406;resource-1406;;;aws;eu-central-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.172102;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-1-4b14ad75;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-1407 check result: PASS;False;emr;;medium;emr;arn:aws:emr:ap-southeast-1:123456789012:resource-1407;resource-1407;;;aws;ap-southeast-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.172112;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-2-b5fa2562;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-1408 check result: FAIL;False;guardduty;;low;guardduty;arn:aws:guardduty:ap-southeast-2:123456789012:resource-1408;resource-1408;;;aws;ap-southeast-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.172121;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-ap-northeast-1-a25f5f08;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-1409 check result: MANUAL;False;iam;;informational;iam;arn:aws:iam:ap-northeast-1:123456789012:resource-1409;resource-1409;;;aws;ap-northeast-1;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.172130;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-1-6d0567d9;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-1410 check result: PASS;False;kms;;critical;kms;arn:aws:kms:us-east-1:123456789012:resource-1410;resource-1410;;;aws;us-east-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.172139;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-east-2-cffe19fa;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;FAIL;Resource resource-1411 check result: FAIL;False;lambda;;high;lambda;arn:aws:lambda:us-east-2:123456789012:resource-1411;resource-1411;;;aws;us-east-2;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.172149;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-us-west-1-bb426b51;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-1412 check result: MANUAL;False;rds;;medium;rds;arn:aws:rds:us-west-1:123456789012:resource-1412;resource-1412;;;aws;us-west-1;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.172157;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-2-19ed7d6b;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;PASS;Resource resource-1413 check result: PASS;False;redshift;;low;redshift;arn:aws:redshift:us-west-2:123456789012:resource-1413;resource-1413;;;aws;us-west-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.172167;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_default_encryption-123456789012-eu-west-1-274c8798;aws;s3_bucket_default_encryption;S3 S3 Bucket Default Encryption;S3;FAIL;Resource resource-1414 check result: FAIL;False;s3;;informational;s3;arn:aws:s3:eu-west-1:123456789012:resource-1414;resource-1414;;;aws;eu-west-1;Check s3_bucket_default_encryption for s3;Risk details for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_default_encryption;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.172176;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-2-f0ce11f7;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;MANUAL;Resource resource-1415 check result: MANUAL;False;secretsmanager;;critical;secretsmanager;arn:aws:secretsmanager:eu-west-2:123456789012:resource-1415;resource-1415;;;aws;eu-west-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.172185;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-central-1-7ec671aa;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;PASS;Resource resource-1416 check result: PASS;False;sns;;high;sns;arn:aws:sns:eu-central-1:123456789012:resource-1416;resource-1416;;;aws;eu-central-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.172194;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-1-07a67a29;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;FAIL;Resource resource-1417 check result: FAIL;False;sqs;;medium;sqs;arn:aws:sqs:ap-southeast-1:123456789012:resource-1417;resource-1417;;;aws;ap-southeast-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.172203;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-2-d02b7816;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;MANUAL;Resource resource-1418 check result: MANUAL;False;ssm;;low;ssm;arn:aws:ssm:ap-southeast-2:123456789012:resource-1418;resource-1418;;;aws;ap-southeast-2;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.172212;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-northeast-1-686c0d38;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;PASS;Resource resource-1419 check result: PASS;False;vpc;;informational;vpc;arn:aws:vpc:ap-northeast-1:123456789012:resource-1419;resource-1419;;;aws;ap-northeast-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 19:17:49.172221;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-1-15779a96;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;FAIL;Resource resource-1420 check result: FAIL;False;waf;;critical;waf;arn:aws:waf:us-east-1:123456789012:resource-1420;resource-1420;;;aws;us-east-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.172229;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-us-east-2-a869b5e9;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;MANUAL;Resource resource-1421 check result: MANUAL;False;accessanalyzer;;high;accessanalyzer;arn:aws:accessanalyzer:us-east-2:123456789012:resource-1421;resource-1421;;;aws;us-east-2;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.172238;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-us-west-1-c65d0e0e;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;PASS;Resource resource-1422 check result: PASS;False;acm;;medium;acm;arn:aws:acm:us-west-1:123456789012:resource-1422;resource-1422;;;aws;us-west-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.172247;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-west-2-e40406a4;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;FAIL;Resource resource-1423 check result: FAIL;False;apigateway;;low;apigateway;arn:aws:apigateway:us-west-2:123456789012:resource-1423;resource-1423;;;aws;us-west-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.172279;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-west-1-db6b98d1;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;MANUAL;Resource resource-1424 check result: MANUAL;False;cloudfront;;informational;cloudfront;arn:aws:cloudfront:eu-west-1:123456789012:resource-1424;resource-1424;;;aws;eu-west-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.172299;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-eu-west-2-dc05ebf9;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;PASS;Resource resource-1425 check result: PASS;False;cloudtrail;;critical;cloudtrail;arn:aws:cloudtrail:eu-west-2:123456789012:resource-1425;resource-1425;;;aws;eu-west-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.172314;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-central-1-5b45cde1;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;FAIL;Resource resource-1426 check result: FAIL;False;cloudwatch;;high;cloudwatch;arn:aws:cloudwatch:eu-central-1:123456789012:resource-1426;resource-1426;;;aws;eu-central-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.172324;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-1-e9030e61;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;MANUAL;Resource resource-1427 check result: MANUAL;False;config;;medium;config;arn:aws:config:ap-southeast-1:123456789012:resource-1427;resource-1427;;;aws;ap-southeast-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.172335;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-ap-southeast-2-9d9c3f6f;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;PASS;Resource resource-1428 check result: PASS;False;dynamodb;;low;dynamodb;arn:aws:dynamodb:ap-southeast-2:123456789012:resource-1428;resource-1428;;;aws;ap-southeast-2;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.172345;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_public_ip-123456789012-ap-northeast-1-84756865;aws;ec2_instance_public_ip;EC2 Ec2 Instance Public Ip;EC2;FAIL;Resource resource-1429 check result: FAIL;False;ec2;;informational;ec2;arn:aws:ec2:ap-northeast-1:123456789012:resource-1429;resource-1429;;;aws;ap-northeast-1;Check ec2_instance_public_ip for ec2;Risk details for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_public_ip;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.172355;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-east-1-6cdc66a6;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;MANUAL;Resource resource-1430 check result: MANUAL;False;ecr;;critical;ecr;arn:aws:ecr:us-east-1:123456789012:resource-1430;resource-1430;;;aws;us-east-1;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.172364;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-2-30fb1371;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;PASS;Resource resource-1431 check result: PASS;False;ecs;;high;ecs;arn:aws:ecs:us-east-2:123456789012:resource-1431;resource-1431;;;aws;us-east-2;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 07:17:49.172374;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-1-57303682;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;FAIL;Resource resource-1432 check result: FAIL;False;efs;;medium;efs;arn:aws:efs:us-west-1:123456789012:resource-1432;resource-1432;;;aws;us-west-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.172383;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-west-2-d0bf6c66;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;MANUAL;Resource resource-1433 check result: MANUAL;False;eks;;low;eks;arn:aws:eks:us-west-2:123456789012:resource-1433;resource-1433;;;aws;us-west-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.172392;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-1-773f59fd;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;PASS;Resource resource-1434 check result: PASS;False;elasticache;;informational;elasticache;arn:aws:elasticache:eu-west-1:123456789012:resource-1434;resource-1434;;;aws;eu-west-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 04:17:49.172403;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-eu-west-2-0ef2f3df;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;FAIL;Resource resource-1435 check result: FAIL;False;elb;;critical;elb;arn:aws:elb:eu-west-2:123456789012:resource-1435;resource-1435;;;aws;eu-west-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.172412;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-central-1-ddc1dd4b;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;MANUAL;Resource resource-1436 check result: MANUAL;False;emr;;high;emr;arn:aws:emr:eu-central-1:123456789012:resource-1436;resource-1436;;;aws;eu-central-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.172420;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-1-e817f066;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;PASS;Resource resource-1437 check result: PASS;False;guardduty;;medium;guardduty;arn:aws:guardduty:ap-southeast-1:123456789012:resource-1437;resource-1437;;;aws;ap-southeast-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.172430;123456789012;Test AWS Account;;;;;prowler-aws-iam_user_mfa_enabled_console_access-123456789012-ap-southeast-2-6ecc72a1;aws;iam_user_mfa_enabled_console_access;IAM Iam User Mfa Enabled Console Access;IAM;FAIL;Resource resource-1438 check result: FAIL;False;iam;;low;iam;arn:aws:iam:ap-southeast-2:123456789012:resource-1438;resource-1438;;;aws;ap-southeast-2;Check iam_user_mfa_enabled_console_access for iam;Risk details for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;Remediation for iam_user_mfa_enabled_console_access;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.172439;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-northeast-1-b4647776;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;MANUAL;Resource resource-1439 check result: MANUAL;False;kms;;informational;kms;arn:aws:kms:ap-northeast-1:123456789012:resource-1439;resource-1439;;;aws;ap-northeast-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.172448;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-us-east-1-b3763103;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;PASS;Resource resource-1440 check result: PASS;False;lambda;;critical;lambda;arn:aws:lambda:us-east-1:123456789012:resource-1440;resource-1440;;;aws;us-east-1;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 22:17:49.172457;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_multi_az-123456789012-us-east-2-c5341b90;aws;rds_instance_multi_az;RDS Rds Instance Multi Az;RDS;FAIL;Resource resource-1441 check result: FAIL;False;rds;;high;rds;arn:aws:rds:us-east-2:123456789012:resource-1441;resource-1441;;;aws;us-east-2;Check rds_instance_multi_az for rds;Risk details for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_multi_az;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.172466;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-1-6df17b62;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;MANUAL;Resource resource-1442 check result: MANUAL;False;redshift;;medium;redshift;arn:aws:redshift:us-west-1:123456789012:resource-1442;resource-1442;;;aws;us-west-1;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.172475;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_public_access_block_enabled-123456789012-us-west-2-267354ec;aws;s3_bucket_public_access_block_enabled;S3 S3 Bucket Public Access Block Enabled;S3;PASS;Resource resource-1443 check result: PASS;False;s3;;low;s3;arn:aws:s3:us-west-2:123456789012:resource-1443;resource-1443;;;aws;us-west-2;Check s3_bucket_public_access_block_enabled for s3;Risk details for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_public_access_block_enabled;https://docs.aws.amazon.com/s3/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.172484;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-1-fef52d91;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;FAIL;Resource resource-1444 check result: FAIL;False;secretsmanager;;informational;secretsmanager;arn:aws:secretsmanager:eu-west-1:123456789012:resource-1444;resource-1444;;;aws;eu-west-1;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.172493;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-2-517a9ae9;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;MANUAL;Resource resource-1445 check result: MANUAL;False;sns;;critical;sns;arn:aws:sns:eu-west-2:123456789012:resource-1445;resource-1445;;;aws;eu-west-2;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.172502;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-central-1-6deae288;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;PASS;Resource resource-1446 check result: PASS;False;sqs;;high;sqs;arn:aws:sqs:eu-central-1:123456789012:resource-1446;resource-1446;;;aws;eu-central-1;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 16:17:49.172511;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-1-1e0216ef;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;FAIL;Resource resource-1447 check result: FAIL;False;ssm;;medium;ssm;arn:aws:ssm:ap-southeast-1:123456789012:resource-1447;resource-1447;;;aws;ap-southeast-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.172520;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-2-c3944f4f;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;MANUAL;Resource resource-1448 check result: MANUAL;False;vpc;;low;vpc;arn:aws:vpc:ap-southeast-2:123456789012:resource-1448;resource-1448;;;aws;ap-southeast-2;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.172528;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-northeast-1-7916b7fd;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;PASS;Resource resource-1449 check result: PASS;False;waf;;informational;waf;arn:aws:waf:ap-northeast-1:123456789012:resource-1449;resource-1449;;;aws;ap-northeast-1;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 13:17:49.172538;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_enabled-123456789012-us-east-1-de8fe702;aws;accessanalyzer_enabled;ACCESSANALYZER Accessanalyzer Enabled;ACCESSANALYZER;FAIL;Resource resource-1450 check result: FAIL;False;accessanalyzer;;critical;accessanalyzer;arn:aws:accessanalyzer:us-east-1:123456789012:resource-1450;resource-1450;;;aws;us-east-1;Check accessanalyzer_enabled for accessanalyzer;Risk details for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_enabled;https://docs.aws.amazon.com/accessanalyzer/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.172546;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-east-2-daef572f;aws;acm_certificates_transparency_logs_enabled;ACM Acm Certificates Transparency Logs Enabled;ACM;MANUAL;Resource resource-1451 check result: MANUAL;False;acm;;high;acm;arn:aws:acm:us-east-2:123456789012:resource-1451;resource-1451;;;aws;us-east-2;Check acm_certificates_transparency_logs_enabled for acm;Risk details for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_transparency_logs_enabled;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.172555;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-west-1-3b191dfe;aws;apigateway_restapi_logging_enabled;APIGATEWAY Apigateway Restapi Logging Enabled;APIGATEWAY;PASS;Resource resource-1452 check result: PASS;False;apigateway;;medium;apigateway;arn:aws:apigateway:us-west-1:123456789012:resource-1452;resource-1452;;;aws;us-west-1;Check apigateway_restapi_logging_enabled for apigateway;Risk details for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_logging_enabled;https://docs.aws.amazon.com/apigateway/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 10:17:49.172621;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-west-2-f7be2446;aws;cloudfront_distributions_logging_enabled;CLOUDFRONT Cloudfront Distributions Logging Enabled;CLOUDFRONT;FAIL;Resource resource-1453 check result: FAIL;False;cloudfront;;low;cloudfront;arn:aws:cloudfront:us-west-2:123456789012:resource-1453;resource-1453;;;aws;us-west-2;Check cloudfront_distributions_logging_enabled for cloudfront;Risk details for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_logging_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.172638;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-west-1-6a663710;aws;cloudtrail_multi_region_enabled;CLOUDTRAIL Cloudtrail Multi Region Enabled;CLOUDTRAIL;MANUAL;Resource resource-1454 check result: MANUAL;False;cloudtrail;;informational;cloudtrail;arn:aws:cloudtrail:eu-west-1:123456789012:resource-1454;resource-1454;;;aws;eu-west-1;Check cloudtrail_multi_region_enabled for cloudtrail;Risk details for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_multi_region_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.172647;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-2-536ee6f5;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;PASS;Resource resource-1455 check result: PASS;False;cloudwatch;;critical;cloudwatch;arn:aws:cloudwatch:eu-west-2:123456789012:resource-1455;resource-1455;;;aws;eu-west-2;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 07:17:49.172657;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-central-1-da38411a;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;FAIL;Resource resource-1456 check result: FAIL;False;config;;high;config;arn:aws:config:eu-central-1:123456789012:resource-1456;resource-1456;;;aws;eu-central-1;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.172666;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-southeast-1-2067ecb0;aws;dynamodb_tables_kms_cmk_encryption_enabled;DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled;DYNAMODB;MANUAL;Resource resource-1457 check result: MANUAL;False;dynamodb;;medium;dynamodb;arn:aws:dynamodb:ap-southeast-1:123456789012:resource-1457;resource-1457;;;aws;ap-southeast-1;Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb;Risk details for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_kms_cmk_encryption_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.172674;123456789012;Test AWS Account;;;;;prowler-aws-ec2_instance_imdsv2_enabled-123456789012-ap-southeast-2-f8a38dca;aws;ec2_instance_imdsv2_enabled;EC2 Ec2 Instance Imdsv2 Enabled;EC2;PASS;Resource resource-1458 check result: PASS;False;ec2;;low;ec2;arn:aws:ec2:ap-southeast-2:123456789012:resource-1458;resource-1458;;;aws;ap-southeast-2;Check ec2_instance_imdsv2_enabled for ec2;Risk details for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;Remediation for ec2_instance_imdsv2_enabled;https://docs.aws.amazon.com/ec2/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 04:17:49.172683;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-northeast-1-307b344b;aws;ecr_repositories_lifecycle_policy_enabled;ECR Ecr Repositories Lifecycle Policy Enabled;ECR;FAIL;Resource resource-1459 check result: FAIL;False;ecr;;informational;ecr;arn:aws:ecr:ap-northeast-1:123456789012:resource-1459;resource-1459;;;aws;ap-northeast-1;Check ecr_repositories_lifecycle_policy_enabled for ecr;Risk details for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_lifecycle_policy_enabled;https://docs.aws.amazon.com/ecr/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.172692;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-1-ae24045f;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;MANUAL;Resource resource-1460 check result: MANUAL;False;ecs;;critical;ecs;arn:aws:ecs:us-east-1:123456789012:resource-1460;resource-1460;;;aws;us-east-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.172700;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-2-a0332168;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;PASS;Resource resource-1461 check result: PASS;False;efs;;high;efs;arn:aws:efs:us-east-2:123456789012:resource-1461;resource-1461;;;aws;us-east-2;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 01:17:49.172709;123456789012;Test AWS Account;;;;;prowler-aws-eks_cluster_logging_enabled-123456789012-us-west-1-dd65c975;aws;eks_cluster_logging_enabled;EKS Eks Cluster Logging Enabled;EKS;FAIL;Resource resource-1462 check result: FAIL;False;eks;;medium;eks;arn:aws:eks:us-west-1:123456789012:resource-1462;resource-1462;;;aws;us-west-1;Check eks_cluster_logging_enabled for eks;Risk details for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;Remediation for eks_cluster_logging_enabled;https://docs.aws.amazon.com/eks/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.172717;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-2-227edca4;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;MANUAL;Resource resource-1463 check result: MANUAL;False;elasticache;;low;elasticache;arn:aws:elasticache:us-west-2:123456789012:resource-1463;resource-1463;;;aws;us-west-2;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.172725;123456789012;Test AWS Account;;;;;prowler-aws-elb_logging_enabled-123456789012-eu-west-1-65f1d62b;aws;elb_logging_enabled;ELB Elb Logging Enabled;ELB;PASS;Resource resource-1464 check result: PASS;False;elb;;informational;elb;arn:aws:elb:eu-west-1:123456789012:resource-1464;resource-1464;;;aws;eu-west-1;Check elb_logging_enabled for elb;Risk details for elb_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elb_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 22:17:49.172734;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-2-dde70946;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;FAIL;Resource resource-1465 check result: FAIL;False;emr;;critical;emr;arn:aws:emr:eu-west-2:123456789012:resource-1465;resource-1465;;;aws;eu-west-2;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.172742;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-central-1-480d5c92;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;MANUAL;Resource resource-1466 check result: MANUAL;False;guardduty;;high;guardduty;arn:aws:guardduty:eu-central-1:123456789012:resource-1466;resource-1466;;;aws;eu-central-1;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.172750;123456789012;Test AWS Account;;;;;prowler-aws-iam_root_hardware_mfa_enabled-123456789012-ap-southeast-1-75b3d587;aws;iam_root_hardware_mfa_enabled;IAM Iam Root Hardware Mfa Enabled;IAM;PASS;Resource resource-1467 check result: PASS;False;iam;;medium;iam;arn:aws:iam:ap-southeast-1:123456789012:resource-1467;resource-1467;;;aws;ap-southeast-1;Check iam_root_hardware_mfa_enabled for iam;Risk details for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;Remediation for iam_root_hardware_mfa_enabled;https://docs.aws.amazon.com/iam/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 19:17:49.172760;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-2-014da1ca;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;FAIL;Resource resource-1468 check result: FAIL;False;kms;;low;kms;arn:aws:kms:ap-southeast-2:123456789012:resource-1468;resource-1468;;;aws;ap-southeast-2;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.172773;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-northeast-1-4c073ec3;aws;awslambda_function_using_supported_runtimes;LAMBDA Awslambda Function Using Supported Runtimes;LAMBDA;MANUAL;Resource resource-1469 check result: MANUAL;False;lambda;;informational;lambda;arn:aws:lambda:ap-northeast-1:123456789012:resource-1469;resource-1469;;;aws;ap-northeast-1;Check awslambda_function_using_supported_runtimes for lambda;Risk details for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_using_supported_runtimes;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.172783;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_storage_encrypted-123456789012-us-east-1-31d55646;aws;rds_instance_storage_encrypted;RDS Rds Instance Storage Encrypted;RDS;PASS;Resource resource-1470 check result: PASS;False;rds;;critical;rds;arn:aws:rds:us-east-1:123456789012:resource-1470;resource-1470;;;aws;us-east-1;Check rds_instance_storage_encrypted for rds;Risk details for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_storage_encrypted;https://docs.aws.amazon.com/rds/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 16:17:49.172791;123456789012;Test AWS Account;;;;;prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-2-415147d4;aws;redshift_cluster_audit_logging;REDSHIFT Redshift Cluster Audit Logging;REDSHIFT;FAIL;Resource resource-1471 check result: FAIL;False;redshift;;high;redshift;arn:aws:redshift:us-east-2:123456789012:resource-1471;resource-1471;;;aws;us-east-2;Check redshift_cluster_audit_logging for redshift;Risk details for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;Remediation for redshift_cluster_audit_logging;https://docs.aws.amazon.com/redshift/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.172800;123456789012;Test AWS Account;;;;;prowler-aws-s3_bucket_versioning_enabled-123456789012-us-west-1-d8ffc1c7;aws;s3_bucket_versioning_enabled;S3 S3 Bucket Versioning Enabled;S3;MANUAL;Resource resource-1472 check result: MANUAL;False;s3;;medium;s3;arn:aws:s3:us-west-1:123456789012:resource-1472;resource-1472;;;aws;us-west-1;Check s3_bucket_versioning_enabled for s3;Risk details for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;Remediation for s3_bucket_versioning_enabled;https://docs.aws.amazon.com/s3/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.172808;123456789012;Test AWS Account;;;;;prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-2-65619c60;aws;secretsmanager_automatic_rotation_enabled;SECRETSMANAGER Secretsmanager Automatic Rotation Enabled;SECRETSMANAGER;PASS;Resource resource-1473 check result: PASS;False;secretsmanager;;low;secretsmanager;arn:aws:secretsmanager:us-west-2:123456789012:resource-1473;resource-1473;;;aws;us-west-2;Check secretsmanager_automatic_rotation_enabled for secretsmanager;Risk details for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;Remediation for secretsmanager_automatic_rotation_enabled;https://docs.aws.amazon.com/secretsmanager/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 13:17:49.172817;123456789012;Test AWS Account;;;;;prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-1-3a7db388;aws;sns_topics_kms_encryption_at_rest_enabled;SNS Sns Topics Kms Encryption At Rest Enabled;SNS;FAIL;Resource resource-1474 check result: FAIL;False;sns;;informational;sns;arn:aws:sns:eu-west-1:123456789012:resource-1474;resource-1474;;;aws;eu-west-1;Check sns_topics_kms_encryption_at_rest_enabled for sns;Risk details for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;Remediation for sns_topics_kms_encryption_at_rest_enabled;https://docs.aws.amazon.com/sns/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.172825;123456789012;Test AWS Account;;;;;prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-2-70dc2cce;aws;sqs_queues_server_side_encryption_enabled;SQS Sqs Queues Server Side Encryption Enabled;SQS;MANUAL;Resource resource-1475 check result: MANUAL;False;sqs;;critical;sqs;arn:aws:sqs:eu-west-2:123456789012:resource-1475;resource-1475;;;aws;eu-west-2;Check sqs_queues_server_side_encryption_enabled for sqs;Risk details for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;Remediation for sqs_queues_server_side_encryption_enabled;https://docs.aws.amazon.com/sqs/;;;;;;;;;;5.0.0; +profile;2025-12-30 11:17:49.172833;123456789012;Test AWS Account;;;;;prowler-aws-ssm_managed_compliant_patching-123456789012-eu-central-1-51038df8;aws;ssm_managed_compliant_patching;SSM Ssm Managed Compliant Patching;SSM;PASS;Resource resource-1476 check result: PASS;False;ssm;;high;ssm;arn:aws:ssm:eu-central-1:123456789012:resource-1476;resource-1476;;;aws;eu-central-1;Check ssm_managed_compliant_patching for ssm;Risk details for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;Remediation for ssm_managed_compliant_patching;https://docs.aws.amazon.com/ssm/;;;;;CIS-1.4: 2.2 | CIS-2.0: 2.2 | CIS-3.0: 2.2 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 10:17:49.172842;123456789012;Test AWS Account;;;;;prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-1-8a4a6b02;aws;vpc_flow_logs_enabled;VPC Vpc Flow Logs Enabled;VPC;FAIL;Resource resource-1477 check result: FAIL;False;vpc;;medium;vpc;arn:aws:vpc:ap-southeast-1:123456789012:resource-1477;resource-1477;;;aws;ap-southeast-1;Check vpc_flow_logs_enabled for vpc;Risk details for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;Remediation for vpc_flow_logs_enabled;https://docs.aws.amazon.com/vpc/;;;;;;;;;;5.0.0; +profile;2025-12-30 09:17:49.172851;123456789012;Test AWS Account;;;;;prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-2-6817ae3e;aws;wafv2_webacl_logging_enabled;WAF Wafv2 Webacl Logging Enabled;WAF;MANUAL;Resource resource-1478 check result: MANUAL;False;waf;;low;waf;arn:aws:waf:ap-southeast-2:123456789012:resource-1478;resource-1478;;;aws;ap-southeast-2;Check wafv2_webacl_logging_enabled for waf;Risk details for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;Remediation for wafv2_webacl_logging_enabled;https://docs.aws.amazon.com/waf/;;;;;;;;;;5.0.0; +profile;2025-12-30 08:17:49.172859;123456789012;Test AWS Account;;;;;prowler-aws-accessanalyzer_findings-123456789012-ap-northeast-1-207d312f;aws;accessanalyzer_findings;ACCESSANALYZER Accessanalyzer Findings;ACCESSANALYZER;PASS;Resource resource-1479 check result: PASS;False;accessanalyzer;;informational;accessanalyzer;arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-1479;resource-1479;;;aws;ap-northeast-1;Check accessanalyzer_findings for accessanalyzer;Risk details for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;Remediation for accessanalyzer_findings;https://docs.aws.amazon.com/accessanalyzer/;;;;;CIS-1.4: 5.1 | CIS-2.0: 5.1 | CIS-3.0: 5.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 07:17:49.172868;123456789012;Test AWS Account;;;;;prowler-aws-acm_certificates_expiration_check-123456789012-us-east-1-cb486598;aws;acm_certificates_expiration_check;ACM Acm Certificates Expiration Check;ACM;FAIL;Resource resource-1480 check result: FAIL;False;acm;;critical;acm;arn:aws:acm:us-east-1:123456789012:resource-1480;resource-1480;;;aws;us-east-1;Check acm_certificates_expiration_check for acm;Risk details for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;Remediation for acm_certificates_expiration_check;https://docs.aws.amazon.com/acm/;;;;;;;;;;5.0.0; +profile;2025-12-30 06:17:49.172878;123456789012;Test AWS Account;;;;;prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-east-2-692f99a7;aws;apigateway_restapi_authorizers_enabled;APIGATEWAY Apigateway Restapi Authorizers Enabled;APIGATEWAY;MANUAL;Resource resource-1481 check result: MANUAL;False;apigateway;;high;apigateway;arn:aws:apigateway:us-east-2:123456789012:resource-1481;resource-1481;;;aws;us-east-2;Check apigateway_restapi_authorizers_enabled for apigateway;Risk details for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;Remediation for apigateway_restapi_authorizers_enabled;https://docs.aws.amazon.com/apigateway/;;;;;;;;;;5.0.0; +profile;2025-12-30 05:17:49.172886;123456789012;Test AWS Account;;;;;prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-west-1-46db2472;aws;cloudfront_distributions_https_enabled;CLOUDFRONT Cloudfront Distributions Https Enabled;CLOUDFRONT;PASS;Resource resource-1482 check result: PASS;False;cloudfront;;medium;cloudfront;arn:aws:cloudfront:us-west-1:123456789012:resource-1482;resource-1482;;;aws;us-west-1;Check cloudfront_distributions_https_enabled for cloudfront;Risk details for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;Remediation for cloudfront_distributions_https_enabled;https://docs.aws.amazon.com/cloudfront/;;;;;CIS-1.4: 1.3 | CIS-2.0: 1.3 | CIS-3.0: 1.3 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 04:17:49.172895;123456789012;Test AWS Account;;;;;prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-west-2-8e36ffad;aws;cloudtrail_log_file_validation_enabled;CLOUDTRAIL Cloudtrail Log File Validation Enabled;CLOUDTRAIL;FAIL;Resource resource-1483 check result: FAIL;False;cloudtrail;;low;cloudtrail;arn:aws:cloudtrail:us-west-2:123456789012:resource-1483;resource-1483;;;aws;us-west-2;Check cloudtrail_log_file_validation_enabled for cloudtrail;Risk details for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;Remediation for cloudtrail_log_file_validation_enabled;https://docs.aws.amazon.com/cloudtrail/;;;;;;;;;;5.0.0; +profile;2025-12-30 03:17:49.172903;123456789012;Test AWS Account;;;;;prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-1-ee29b5a5;aws;cloudwatch_log_group_retention_policy_specific_days_enabled;CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled;CLOUDWATCH;MANUAL;Resource resource-1484 check result: MANUAL;False;cloudwatch;;informational;cloudwatch;arn:aws:cloudwatch:eu-west-1:123456789012:resource-1484;resource-1484;;;aws;eu-west-1;Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch;Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled;https://docs.aws.amazon.com/cloudwatch/;;;;;;;;;;5.0.0; +profile;2025-12-30 02:17:49.172912;123456789012;Test AWS Account;;;;;prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-2-488d3387;aws;config_recorder_all_regions_enabled;CONFIG Config Recorder All Regions Enabled;CONFIG;PASS;Resource resource-1485 check result: PASS;False;config;;critical;config;arn:aws:config:eu-west-2:123456789012:resource-1485;resource-1485;;;aws;eu-west-2;Check config_recorder_all_regions_enabled for config;Risk details for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;Remediation for config_recorder_all_regions_enabled;https://docs.aws.amazon.com/config/;;;;;CIS-1.4: 3.1 | CIS-2.0: 3.1 | CIS-3.0: 3.1 | PCI-DSS-3.2.1: 1.2.1 | SOC2: CC6.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-2;;;;;5.0.0; +profile;2025-12-30 01:17:49.172920;123456789012;Test AWS Account;;;;;prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-central-1-bda4c281;aws;dynamodb_tables_pitr_enabled;DYNAMODB Dynamodb Tables Pitr Enabled;DYNAMODB;FAIL;Resource resource-1486 check result: FAIL;False;dynamodb;;high;dynamodb;arn:aws:dynamodb:eu-central-1:123456789012:resource-1486;resource-1486;;;aws;eu-central-1;Check dynamodb_tables_pitr_enabled for dynamodb;Risk details for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;Remediation for dynamodb_tables_pitr_enabled;https://docs.aws.amazon.com/dynamodb/;;;;;;;;;;5.0.0; +profile;2025-12-30 00:17:49.172929;123456789012;Test AWS Account;;;;;prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-ap-southeast-1-09390678;aws;ec2_securitygroup_default_restrict_traffic;EC2 Ec2 Securitygroup Default Restrict Traffic;EC2;MANUAL;Resource resource-1487 check result: MANUAL;False;ec2;;medium;ec2;arn:aws:ec2:ap-southeast-1:123456789012:resource-1487;resource-1487;;;aws;ap-southeast-1;Check ec2_securitygroup_default_restrict_traffic for ec2;Risk details for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;Remediation for ec2_securitygroup_default_restrict_traffic;https://docs.aws.amazon.com/ec2/;;;;;;;;;;5.0.0; +profile;2025-12-30 23:17:49.172937;123456789012;Test AWS Account;;;;;prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-ap-southeast-2-9e8c654b;aws;ecr_repositories_scan_images_on_push_enabled;ECR Ecr Repositories Scan Images On Push Enabled;ECR;PASS;Resource resource-1488 check result: PASS;False;ecr;;low;ecr;arn:aws:ecr:ap-southeast-2:123456789012:resource-1488;resource-1488;;;aws;ap-southeast-2;Check ecr_repositories_scan_images_on_push_enabled for ecr;Risk details for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;Remediation for ecr_repositories_scan_images_on_push_enabled;https://docs.aws.amazon.com/ecr/;;;;;CIS-1.4: 1.1 | CIS-2.0: 1.1 | CIS-3.0: 1.1 | PCI-DSS-3.2.1: 3.4 | SOC2: CC7.1 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-3;;;;;5.0.0; +profile;2025-12-30 22:17:49.172946;123456789012;Test AWS Account;;;;;prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-northeast-1-fe47071f;aws;ecs_task_definitions_no_environment_secrets;ECS Ecs Task Definitions No Environment Secrets;ECS;FAIL;Resource resource-1489 check result: FAIL;False;ecs;;informational;ecs;arn:aws:ecs:ap-northeast-1:123456789012:resource-1489;resource-1489;;;aws;ap-northeast-1;Check ecs_task_definitions_no_environment_secrets for ecs;Risk details for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;Remediation for ecs_task_definitions_no_environment_secrets;https://docs.aws.amazon.com/ecs/;;;;;;;;;;5.0.0; +profile;2025-12-30 21:17:49.172954;123456789012;Test AWS Account;;;;;prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-1-54690fca;aws;efs_encryption_at_rest_enabled;EFS Efs Encryption At Rest Enabled;EFS;MANUAL;Resource resource-1490 check result: MANUAL;False;efs;;critical;efs;arn:aws:efs:us-east-1:123456789012:resource-1490;resource-1490;;;aws;us-east-1;Check efs_encryption_at_rest_enabled for efs;Risk details for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;Remediation for efs_encryption_at_rest_enabled;https://docs.aws.amazon.com/efs/;;;;;;;;;;5.0.0; +profile;2025-12-30 20:17:49.172962;123456789012;Test AWS Account;;;;;prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-east-2-566624c5;aws;eks_endpoints_not_publicly_accessible;EKS Eks Endpoints Not Publicly Accessible;EKS;PASS;Resource resource-1491 check result: PASS;False;eks;;high;eks;arn:aws:eks:us-east-2:123456789012:resource-1491;resource-1491;;;aws;us-east-2;Check eks_endpoints_not_publicly_accessible for eks;Risk details for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;Remediation for eks_endpoints_not_publicly_accessible;https://docs.aws.amazon.com/eks/;;;;;CIS-1.4: 2.1 | CIS-2.0: 2.1 | CIS-3.0: 2.1 | PCI-DSS-3.2.1: 1.3.1 | SOC2: CC6.6 | HIPAA: 164.312(a)(1) | NIST-800-53: AC-3;;;;;5.0.0; +profile;2025-12-30 19:17:49.172971;123456789012;Test AWS Account;;;;;prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-1-13ea40d1;aws;elasticache_redis_cluster_automatic_backup_enabled;ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled;ELASTICACHE;FAIL;Resource resource-1492 check result: FAIL;False;elasticache;;medium;elasticache;arn:aws:elasticache:us-west-1:123456789012:resource-1492;resource-1492;;;aws;us-west-1;Check elasticache_redis_cluster_automatic_backup_enabled for elasticache;Risk details for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;Remediation for elasticache_redis_cluster_automatic_backup_enabled;https://docs.aws.amazon.com/elasticache/;;;;;;;;;;5.0.0; +profile;2025-12-30 18:17:49.172979;123456789012;Test AWS Account;;;;;prowler-aws-elbv2_logging_enabled-123456789012-us-west-2-2c52d0c6;aws;elbv2_logging_enabled;ELB Elbv2 Logging Enabled;ELB;MANUAL;Resource resource-1493 check result: MANUAL;False;elb;;low;elb;arn:aws:elb:us-west-2:123456789012:resource-1493;resource-1493;;;aws;us-west-2;Check elbv2_logging_enabled for elb;Risk details for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;Remediation for elbv2_logging_enabled;https://docs.aws.amazon.com/elb/;;;;;;;;;;5.0.0; +profile;2025-12-30 17:17:49.172988;123456789012;Test AWS Account;;;;;prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-1-aa5b5f3d;aws;emr_cluster_master_nodes_no_public_ip;EMR Emr Cluster Master Nodes No Public Ip;EMR;PASS;Resource resource-1494 check result: PASS;False;emr;;informational;emr;arn:aws:emr:eu-west-1:123456789012:resource-1494;resource-1494;;;aws;eu-west-1;Check emr_cluster_master_nodes_no_public_ip for emr;Risk details for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;Remediation for emr_cluster_master_nodes_no_public_ip;https://docs.aws.amazon.com/emr/;;;;;CIS-1.4: 4.1 | CIS-2.0: 4.1 | CIS-3.0: 4.1 | PCI-DSS-3.2.1: 8.2.1 | SOC2: CC7.2 | HIPAA: 164.312(a)(1) | NIST-800-53: CM-6;;;;;5.0.0; +profile;2025-12-30 16:17:49.172996;123456789012;Test AWS Account;;;;;prowler-aws-guardduty_is_enabled-123456789012-eu-west-2-6011e088;aws;guardduty_is_enabled;GUARDDUTY Guardduty Is Enabled;GUARDDUTY;FAIL;Resource resource-1495 check result: FAIL;False;guardduty;;critical;guardduty;arn:aws:guardduty:eu-west-2:123456789012:resource-1495;resource-1495;;;aws;eu-west-2;Check guardduty_is_enabled for guardduty;Risk details for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;Remediation for guardduty_is_enabled;https://docs.aws.amazon.com/guardduty/;;;;;;;;;;5.0.0; +profile;2025-12-30 15:17:49.173060;123456789012;Test AWS Account;;;;;prowler-aws-iam_password_policy_minimum_length_14-123456789012-eu-central-1-fc45d901;aws;iam_password_policy_minimum_length_14;IAM Iam Password Policy Minimum Length 14;IAM;MANUAL;Resource resource-1496 check result: MANUAL;False;iam;;high;iam;arn:aws:iam:eu-central-1:123456789012:resource-1496;resource-1496;;;aws;eu-central-1;Check iam_password_policy_minimum_length_14 for iam;Risk details for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;Remediation for iam_password_policy_minimum_length_14;https://docs.aws.amazon.com/iam/;;;;;;;;;;5.0.0; +profile;2025-12-30 14:17:49.173074;123456789012;Test AWS Account;;;;;prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-1-93cda10f;aws;kms_cmk_rotation_enabled;KMS Kms Cmk Rotation Enabled;KMS;PASS;Resource resource-1497 check result: PASS;False;kms;;medium;kms;arn:aws:kms:ap-southeast-1:123456789012:resource-1497;resource-1497;;;aws;ap-southeast-1;Check kms_cmk_rotation_enabled for kms;Risk details for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;Remediation for kms_cmk_rotation_enabled;https://docs.aws.amazon.com/kms/;;;;;CIS-1.4: 1.2 | CIS-2.0: 1.2 | CIS-3.0: 1.2 | PCI-DSS-3.2.1: 2.2.1 | SOC2: CC6.7 | HIPAA: 164.312(a)(1) | NIST-800-53: AU-2;;;;;5.0.0; +profile;2025-12-30 13:17:49.173086;123456789012;Test AWS Account;;;;;prowler-aws-awslambda_function_url_public-123456789012-ap-southeast-2-b2fb1ab9;aws;awslambda_function_url_public;LAMBDA Awslambda Function Url Public;LAMBDA;FAIL;Resource resource-1498 check result: FAIL;False;lambda;;low;lambda;arn:aws:lambda:ap-southeast-2:123456789012:resource-1498;resource-1498;;;aws;ap-southeast-2;Check awslambda_function_url_public for lambda;Risk details for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;Remediation for awslambda_function_url_public;https://docs.aws.amazon.com/lambda/;;;;;;;;;;5.0.0; +profile;2025-12-30 12:17:49.173096;123456789012;Test AWS Account;;;;;prowler-aws-rds_instance_backup_enabled-123456789012-ap-northeast-1-fd7c0ff9;aws;rds_instance_backup_enabled;RDS Rds Instance Backup Enabled;RDS;MANUAL;Resource resource-1499 check result: MANUAL;False;rds;;informational;rds;arn:aws:rds:ap-northeast-1:123456789012:resource-1499;resource-1499;;;aws;ap-northeast-1;Check rds_instance_backup_enabled for rds;Risk details for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;Remediation for rds_instance_backup_enabled;https://docs.aws.amazon.com/rds/;;;;;;;;;;5.0.0; \ No newline at end of file diff --git a/api/tests/manual/test_prowler_output_large_1500.ocsf.json b/api/tests/manual/test_prowler_output_large_1500.ocsf.json new file mode 100644 index 0000000000..dbe87fe553 --- /dev/null +++ b/api/tests/manual/test_prowler_output_large_1500.ocsf.json @@ -0,0 +1 @@ +[{"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-0", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-0 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.044268", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-us-east-1-27be94f1"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-east-1:123456789012:resource-0", "name": "resource-0", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-east-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-0", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-east-1:123456789012:resource-0"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.044268", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-1", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.044303", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-east-2-9b3be548"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-east-2:123456789012:resource-1", "name": "resource-1", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-east-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1", "type": "acm", "uid": "arn:aws:acm:us-east-2:123456789012:resource-1"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.044303", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-2", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-2 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.044317", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-west-1-5a632701"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-west-1:123456789012:resource-2", "name": "resource-2", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-west-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-2", "type": "apigateway", "uid": "arn:aws:apigateway:us-west-1:123456789012:resource-2"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.044317", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-3", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-3 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.044329", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-west-2-a5b84589"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-west-2:123456789012:resource-3", "name": "resource-3", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-west-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-3", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-west-2:123456789012:resource-3"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.044329", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-4", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-4 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.044340", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-west-1-67639022"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-west-1:123456789012:resource-4", "name": "resource-4", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-west-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-4", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-west-1:123456789012:resource-4"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.044340", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-5", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-5 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.044350", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-2-fac7239a"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-west-2:123456789012:resource-5", "name": "resource-5", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-west-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-5", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-west-2:123456789012:resource-5"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.044350", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-6", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-6 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.044361", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-central-1-67598840"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-central-1:123456789012:resource-6", "name": "resource-6", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-central-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-6", "type": "config", "uid": "arn:aws:config:eu-central-1:123456789012:resource-6"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.044361", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-7", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-7 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.044371", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-southeast-1-70585581"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-southeast-1:123456789012:resource-7", "name": "resource-7", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-southeast-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-7", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-southeast-1:123456789012:resource-7"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.044371", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-8", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-8 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.044381", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-ap-southeast-2-8f6bb121"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-southeast-2:123456789012:resource-8", "name": "resource-8", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-southeast-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-8", "type": "ec2", "uid": "arn:aws:ec2:ap-southeast-2:123456789012:resource-8"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.044381", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-9", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-9 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.044391", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-northeast-1-77ca4476"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-northeast-1:123456789012:resource-9", "name": "resource-9", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-northeast-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-9", "type": "ecr", "uid": "arn:aws:ecr:ap-northeast-1:123456789012:resource-9"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.044391", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-10", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-10 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.044401", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-1-587d7db7"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-east-1:123456789012:resource-10", "name": "resource-10", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-east-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-10", "type": "ecs", "uid": "arn:aws:ecs:us-east-1:123456789012:resource-10"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.044401", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-11", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-11 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.044411", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-2-8449b372"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-east-2:123456789012:resource-11", "name": "resource-11", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-east-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-11", "type": "efs", "uid": "arn:aws:efs:us-east-2:123456789012:resource-11"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.044411", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-12", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-12 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.044421", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-us-west-1-6f203537"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-west-1:123456789012:resource-12", "name": "resource-12", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-west-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-12", "type": "eks", "uid": "arn:aws:eks:us-west-1:123456789012:resource-12"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.044421", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-13", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-13 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.044432", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-2-4c9ce4c6"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-west-2:123456789012:resource-13", "name": "resource-13", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-west-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-13", "type": "elasticache", "uid": "arn:aws:elasticache:us-west-2:123456789012:resource-13"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.044432", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-14", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-14 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.044442", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-eu-west-1-8e2b49e0"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-west-1:123456789012:resource-14", "name": "resource-14", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-west-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-14", "type": "elb", "uid": "arn:aws:elb:eu-west-1:123456789012:resource-14"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.044442", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-15", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-15 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.044452", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-2-ecadf7e2"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-west-2:123456789012:resource-15", "name": "resource-15", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-west-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-15", "type": "emr", "uid": "arn:aws:emr:eu-west-2:123456789012:resource-15"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.044452", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-16", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-16 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.044463", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-central-1-4c43826e"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-central-1:123456789012:resource-16", "name": "resource-16", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-central-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-16", "type": "guardduty", "uid": "arn:aws:guardduty:eu-central-1:123456789012:resource-16"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.044463", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-17", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-17 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.044473", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-ap-southeast-1-028a98f8"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-southeast-1:123456789012:resource-17", "name": "resource-17", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-southeast-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-17", "type": "iam", "uid": "arn:aws:iam:ap-southeast-1:123456789012:resource-17"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.044473", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-18", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-18 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.044483", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-2-412bae3b"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-southeast-2:123456789012:resource-18", "name": "resource-18", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-southeast-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-18", "type": "kms", "uid": "arn:aws:kms:ap-southeast-2:123456789012:resource-18"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.044483", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-19", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-19 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.044493", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-northeast-1-a2eb980b"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-northeast-1:123456789012:resource-19", "name": "resource-19", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-northeast-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-19", "type": "lambda", "uid": "arn:aws:lambda:ap-northeast-1:123456789012:resource-19"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.044493", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-20", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-20 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.044502", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-us-east-1-49e1978f"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-east-1:123456789012:resource-20", "name": "resource-20", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-east-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-20", "type": "rds", "uid": "arn:aws:rds:us-east-1:123456789012:resource-20"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.044502", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-21", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-21 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.044511", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-2-c14845eb"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-east-2:123456789012:resource-21", "name": "resource-21", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-east-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-21", "type": "redshift", "uid": "arn:aws:redshift:us-east-2:123456789012:resource-21"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.044511", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-22", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-22 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.044521", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-us-west-1-30ce7176"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-west-1:123456789012:resource-22", "name": "resource-22", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-west-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-22", "type": "s3", "uid": "arn:aws:s3:us-west-1:123456789012:resource-22"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.044521", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-23", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-23 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.044530", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-2-7d73634b"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-west-2:123456789012:resource-23", "name": "resource-23", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-west-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-23", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-west-2:123456789012:resource-23"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.044530", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-24", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-24 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.044540", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-1-040fd8bc"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-west-1:123456789012:resource-24", "name": "resource-24", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-west-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-24", "type": "sns", "uid": "arn:aws:sns:eu-west-1:123456789012:resource-24"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.044540", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-25", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-25 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.044550", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-2-c497bcae"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-west-2:123456789012:resource-25", "name": "resource-25", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-west-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-25", "type": "sqs", "uid": "arn:aws:sqs:eu-west-2:123456789012:resource-25"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.044550", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-26", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-26 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.044560", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-central-1-0587a0d3"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-central-1:123456789012:resource-26", "name": "resource-26", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-central-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-26", "type": "ssm", "uid": "arn:aws:ssm:eu-central-1:123456789012:resource-26"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.044560", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-27", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-27 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.044570", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-1-93a7134c"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-southeast-1:123456789012:resource-27", "name": "resource-27", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-southeast-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-27", "type": "vpc", "uid": "arn:aws:vpc:ap-southeast-1:123456789012:resource-27"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.044570", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-28", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-28 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.044579", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-2-14490ab3"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-southeast-2:123456789012:resource-28", "name": "resource-28", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-southeast-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-28", "type": "waf", "uid": "arn:aws:waf:ap-southeast-2:123456789012:resource-28"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.044579", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-29", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-29 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.044589", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-ap-northeast-1-f0f9fc26"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-29", "name": "resource-29", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-northeast-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-29", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-29"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.044589", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-30", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-30 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.044621", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-us-east-1-6654bb16"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-east-1:123456789012:resource-30", "name": "resource-30", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-east-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-30", "type": "acm", "uid": "arn:aws:acm:us-east-1:123456789012:resource-30"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.044621", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-31", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-31 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.044633", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-east-2-d0146f52"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-east-2:123456789012:resource-31", "name": "resource-31", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-east-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-31", "type": "apigateway", "uid": "arn:aws:apigateway:us-east-2:123456789012:resource-31"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.044633", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-32", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-32 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.044643", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-west-1-55c0f511"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-west-1:123456789012:resource-32", "name": "resource-32", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-west-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-32", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-west-1:123456789012:resource-32"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.044643", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-33", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-33 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.044652", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-west-2-6a0eb62e"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-west-2:123456789012:resource-33", "name": "resource-33", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-west-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-33", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-west-2:123456789012:resource-33"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.044652", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-34", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-34 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.044662", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-1-2c341bfa"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-west-1:123456789012:resource-34", "name": "resource-34", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-west-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-34", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-west-1:123456789012:resource-34"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.044662", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-35", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-35 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.044673", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-2-4e73bdeb"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-west-2:123456789012:resource-35", "name": "resource-35", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-west-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-35", "type": "config", "uid": "arn:aws:config:eu-west-2:123456789012:resource-35"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.044673", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-36", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-36 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.044682", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-central-1-ebbf6e3f"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-central-1:123456789012:resource-36", "name": "resource-36", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-central-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-36", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-central-1:123456789012:resource-36"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.044682", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-37", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-37 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.044693", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-ap-southeast-1-6283b7bb"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-southeast-1:123456789012:resource-37", "name": "resource-37", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-southeast-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-37", "type": "ec2", "uid": "arn:aws:ec2:ap-southeast-1:123456789012:resource-37"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.044693", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-38", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-38 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.044702", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-ap-southeast-2-de271284"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-southeast-2:123456789012:resource-38", "name": "resource-38", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-southeast-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-38", "type": "ecr", "uid": "arn:aws:ecr:ap-southeast-2:123456789012:resource-38"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.044702", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-39", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-39 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.044711", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-northeast-1-9b47d2f0"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-northeast-1:123456789012:resource-39", "name": "resource-39", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-northeast-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-39", "type": "ecs", "uid": "arn:aws:ecs:ap-northeast-1:123456789012:resource-39"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.044711", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-40", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-40 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.044721", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-1-9bd820d4"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-east-1:123456789012:resource-40", "name": "resource-40", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-east-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-40", "type": "efs", "uid": "arn:aws:efs:us-east-1:123456789012:resource-40"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.044721", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-41", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-41 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.044730", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-east-2-85632b3e"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-east-2:123456789012:resource-41", "name": "resource-41", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-east-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-41", "type": "eks", "uid": "arn:aws:eks:us-east-2:123456789012:resource-41"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.044730", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-42", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-42 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.044739", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-1-9e3596bc"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-west-1:123456789012:resource-42", "name": "resource-42", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-west-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-42", "type": "elasticache", "uid": "arn:aws:elasticache:us-west-1:123456789012:resource-42"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.044739", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-43", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-43 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.044749", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-us-west-2-944d63ca"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-west-2:123456789012:resource-43", "name": "resource-43", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-west-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-43", "type": "elb", "uid": "arn:aws:elb:us-west-2:123456789012:resource-43"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.044749", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-44", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-44 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.044758", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-1-d6daf406"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-west-1:123456789012:resource-44", "name": "resource-44", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-west-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-44", "type": "emr", "uid": "arn:aws:emr:eu-west-1:123456789012:resource-44"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.044758", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-45", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-45 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.044767", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-west-2-35c21091"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-west-2:123456789012:resource-45", "name": "resource-45", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-west-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-45", "type": "guardduty", "uid": "arn:aws:guardduty:eu-west-2:123456789012:resource-45"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.044767", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-46", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-46 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.044777", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-eu-central-1-bf06565f"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-central-1:123456789012:resource-46", "name": "resource-46", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-central-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-46", "type": "iam", "uid": "arn:aws:iam:eu-central-1:123456789012:resource-46"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.044777", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-47", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-47 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.044786", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-1-47e9a89b"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-southeast-1:123456789012:resource-47", "name": "resource-47", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-southeast-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-47", "type": "kms", "uid": "arn:aws:kms:ap-southeast-1:123456789012:resource-47"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.044786", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-48", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-48 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.044795", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-ap-southeast-2-6cc59e1d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-southeast-2:123456789012:resource-48", "name": "resource-48", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-southeast-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-48", "type": "lambda", "uid": "arn:aws:lambda:ap-southeast-2:123456789012:resource-48"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.044795", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-49", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-49 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.044805", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-ap-northeast-1-f2fecefe"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-northeast-1:123456789012:resource-49", "name": "resource-49", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-northeast-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-49", "type": "rds", "uid": "arn:aws:rds:ap-northeast-1:123456789012:resource-49"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.044805", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-50", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-50 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.044813", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-1-09c615a8"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-east-1:123456789012:resource-50", "name": "resource-50", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-east-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-50", "type": "redshift", "uid": "arn:aws:redshift:us-east-1:123456789012:resource-50"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.044813", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-51", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-51 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.044822", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-us-east-2-823b8dd2"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-east-2:123456789012:resource-51", "name": "resource-51", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-east-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-51", "type": "s3", "uid": "arn:aws:s3:us-east-2:123456789012:resource-51"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.044822", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-52", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-52 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.044832", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-1-28286626"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-west-1:123456789012:resource-52", "name": "resource-52", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-west-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-52", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-west-1:123456789012:resource-52"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.044832", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-53", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-53 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.044856", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-2-ecda6a1b"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-west-2:123456789012:resource-53", "name": "resource-53", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-west-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-53", "type": "sns", "uid": "arn:aws:sns:us-west-2:123456789012:resource-53"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.044856", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-54", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-54 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.044865", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-1-80693104"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-west-1:123456789012:resource-54", "name": "resource-54", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-west-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-54", "type": "sqs", "uid": "arn:aws:sqs:eu-west-1:123456789012:resource-54"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.044865", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-55", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-55 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.044874", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-2-81098b3a"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-west-2:123456789012:resource-55", "name": "resource-55", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-west-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-55", "type": "ssm", "uid": "arn:aws:ssm:eu-west-2:123456789012:resource-55"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.044874", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-56", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-56 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.044884", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-eu-central-1-033e6c4b"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:eu-central-1:123456789012:resource-56", "name": "resource-56", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "eu-central-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-56", "type": "vpc", "uid": "arn:aws:vpc:eu-central-1:123456789012:resource-56"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.044884", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-57", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-57 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.044892", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-1-2e5c7bf6"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-southeast-1:123456789012:resource-57", "name": "resource-57", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-southeast-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-57", "type": "waf", "uid": "arn:aws:waf:ap-southeast-1:123456789012:resource-57"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.044892", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-58", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-58 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.044901", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-ap-southeast-2-cc587cfa"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-southeast-2:123456789012:resource-58", "name": "resource-58", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-southeast-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-58", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-southeast-2:123456789012:resource-58"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.044901", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-59", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-59 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.044910", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-northeast-1-24756442"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:ap-northeast-1:123456789012:resource-59", "name": "resource-59", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "ap-northeast-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-59", "type": "acm", "uid": "arn:aws:acm:ap-northeast-1:123456789012:resource-59"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.044910", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-60", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-60 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.044919", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-east-1-307115ab"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-east-1:123456789012:resource-60", "name": "resource-60", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-east-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-60", "type": "apigateway", "uid": "arn:aws:apigateway:us-east-1:123456789012:resource-60"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.044919", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-61", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-61 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.044929", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-east-2-259ce3a0"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-east-2:123456789012:resource-61", "name": "resource-61", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-east-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-61", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-east-2:123456789012:resource-61"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.044929", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-62", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-62 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.044938", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-west-1-af19600d"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-west-1:123456789012:resource-62", "name": "resource-62", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-west-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-62", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-west-1:123456789012:resource-62"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.044938", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-63", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-63 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.044947", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-2-693e63ba"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-west-2:123456789012:resource-63", "name": "resource-63", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-west-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-63", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-west-2:123456789012:resource-63"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.044947", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-64", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-64 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.044956", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-1-37c17dc6"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-west-1:123456789012:resource-64", "name": "resource-64", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-west-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-64", "type": "config", "uid": "arn:aws:config:eu-west-1:123456789012:resource-64"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.044956", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-65", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-65 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.044965", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-eu-west-2-876cec6c"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-west-2:123456789012:resource-65", "name": "resource-65", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-west-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-65", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-west-2:123456789012:resource-65"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.044965", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-66", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-66 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.044974", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-eu-central-1-d799eb24"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:eu-central-1:123456789012:resource-66", "name": "resource-66", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "eu-central-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-66", "type": "ec2", "uid": "arn:aws:ec2:eu-central-1:123456789012:resource-66"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.044974", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-67", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-67 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.044983", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-southeast-1-07a7c3ec"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-southeast-1:123456789012:resource-67", "name": "resource-67", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-southeast-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-67", "type": "ecr", "uid": "arn:aws:ecr:ap-southeast-1:123456789012:resource-67"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.044983", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-68", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-68 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.044991", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-2-3f33307e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-southeast-2:123456789012:resource-68", "name": "resource-68", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-southeast-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-68", "type": "ecs", "uid": "arn:aws:ecs:ap-southeast-2:123456789012:resource-68"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.044991", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-69", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-69 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.045000", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-northeast-1-53e08097"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:ap-northeast-1:123456789012:resource-69", "name": "resource-69", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "ap-northeast-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-69", "type": "efs", "uid": "arn:aws:efs:ap-northeast-1:123456789012:resource-69"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.045000", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-70", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-70 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.045010", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-us-east-1-421750eb"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-east-1:123456789012:resource-70", "name": "resource-70", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-east-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-70", "type": "eks", "uid": "arn:aws:eks:us-east-1:123456789012:resource-70"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.045010", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-71", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-71 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.045018", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-2-91eb5f47"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-east-2:123456789012:resource-71", "name": "resource-71", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-east-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-71", "type": "elasticache", "uid": "arn:aws:elasticache:us-east-2:123456789012:resource-71"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.045018", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-72", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-72 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.045027", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-us-west-1-820d5834"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-west-1:123456789012:resource-72", "name": "resource-72", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-west-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-72", "type": "elb", "uid": "arn:aws:elb:us-west-1:123456789012:resource-72"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.045027", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-73", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-73 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.045036", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-2-08f2ed9a"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-west-2:123456789012:resource-73", "name": "resource-73", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-west-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-73", "type": "emr", "uid": "arn:aws:emr:us-west-2:123456789012:resource-73"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.045036", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-74", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-74 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.045045", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-west-1-275f22dc"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-west-1:123456789012:resource-74", "name": "resource-74", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-west-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-74", "type": "guardduty", "uid": "arn:aws:guardduty:eu-west-1:123456789012:resource-74"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.045045", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-75", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-75 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.045054", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-eu-west-2-0b04dfde"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-west-2:123456789012:resource-75", "name": "resource-75", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-west-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-75", "type": "iam", "uid": "arn:aws:iam:eu-west-2:123456789012:resource-75"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.045054", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-76", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-76 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.045063", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-central-1-4d0fd3a6"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:eu-central-1:123456789012:resource-76", "name": "resource-76", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "eu-central-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-76", "type": "kms", "uid": "arn:aws:kms:eu-central-1:123456789012:resource-76"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.045063", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-77", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-77 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.045131", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-southeast-1-7046a65c"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-southeast-1:123456789012:resource-77", "name": "resource-77", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-southeast-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-77", "type": "lambda", "uid": "arn:aws:lambda:ap-southeast-1:123456789012:resource-77"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.045131", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-78", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-78 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.045141", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-ap-southeast-2-e1447df4"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-southeast-2:123456789012:resource-78", "name": "resource-78", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-southeast-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-78", "type": "rds", "uid": "arn:aws:rds:ap-southeast-2:123456789012:resource-78"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.045141", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-79", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-79 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.045150", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-ap-northeast-1-da454f1d"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:ap-northeast-1:123456789012:resource-79", "name": "resource-79", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "ap-northeast-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-79", "type": "redshift", "uid": "arn:aws:redshift:ap-northeast-1:123456789012:resource-79"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.045150", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-80", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-80 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.045158", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-us-east-1-b409d5b3"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-east-1:123456789012:resource-80", "name": "resource-80", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-east-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-80", "type": "s3", "uid": "arn:aws:s3:us-east-1:123456789012:resource-80"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.045158", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-81", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-81 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.045167", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-2-eb3247e5"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-east-2:123456789012:resource-81", "name": "resource-81", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-east-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-81", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-east-2:123456789012:resource-81"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.045167", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-82", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-82 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.045178", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-1-26479785"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-west-1:123456789012:resource-82", "name": "resource-82", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-west-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-82", "type": "sns", "uid": "arn:aws:sns:us-west-1:123456789012:resource-82"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.045178", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-83", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-83 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.045187", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-2-6826e285"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-west-2:123456789012:resource-83", "name": "resource-83", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-west-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-83", "type": "sqs", "uid": "arn:aws:sqs:us-west-2:123456789012:resource-83"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.045187", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-84", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-84 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.045196", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-1-6f5e014a"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-west-1:123456789012:resource-84", "name": "resource-84", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-west-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-84", "type": "ssm", "uid": "arn:aws:ssm:eu-west-1:123456789012:resource-84"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.045196", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-85", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-85 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.045205", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-2-2d1c778a"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:eu-west-2:123456789012:resource-85", "name": "resource-85", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "eu-west-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-85", "type": "vpc", "uid": "arn:aws:vpc:eu-west-2:123456789012:resource-85"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.045205", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-86", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-86 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.045213", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-central-1-975482bd"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:eu-central-1:123456789012:resource-86", "name": "resource-86", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "eu-central-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-86", "type": "waf", "uid": "arn:aws:waf:eu-central-1:123456789012:resource-86"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.045213", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-87", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-87 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.045222", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-ap-southeast-1-3570f995"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-southeast-1:123456789012:resource-87", "name": "resource-87", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-southeast-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-87", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-southeast-1:123456789012:resource-87"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.045222", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-88", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-88 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.045231", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-ap-southeast-2-49ed16df"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:ap-southeast-2:123456789012:resource-88", "name": "resource-88", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "ap-southeast-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-88", "type": "acm", "uid": "arn:aws:acm:ap-southeast-2:123456789012:resource-88"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.045231", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-89", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-89 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.045240", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-northeast-1-0c074cd4"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:ap-northeast-1:123456789012:resource-89", "name": "resource-89", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "ap-northeast-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-89", "type": "apigateway", "uid": "arn:aws:apigateway:ap-northeast-1:123456789012:resource-89"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.045240", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-90", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-90 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.045250", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-east-1-b9c20247"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-east-1:123456789012:resource-90", "name": "resource-90", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-east-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-90", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-east-1:123456789012:resource-90"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.045250", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-91", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-91 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.045260", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-east-2-95a65042"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-east-2:123456789012:resource-91", "name": "resource-91", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-east-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-91", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-east-2:123456789012:resource-91"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.045260", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-92", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-92 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.045269", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-1-4a2d8dd1"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-west-1:123456789012:resource-92", "name": "resource-92", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-west-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-92", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-west-1:123456789012:resource-92"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.045269", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-93", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-93 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.045278", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-2-ca09a59b"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-west-2:123456789012:resource-93", "name": "resource-93", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-west-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-93", "type": "config", "uid": "arn:aws:config:us-west-2:123456789012:resource-93"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.045278", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-94", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-94 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.045288", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-west-1-96c3c224"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-west-1:123456789012:resource-94", "name": "resource-94", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-west-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-94", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-west-1:123456789012:resource-94"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.045288", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-95", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-95 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.045296", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-eu-west-2-0dad5aaa"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:eu-west-2:123456789012:resource-95", "name": "resource-95", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "eu-west-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-95", "type": "ec2", "uid": "arn:aws:ec2:eu-west-2:123456789012:resource-95"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.045296", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-96", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-96 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.045305", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-central-1-13e22254"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:eu-central-1:123456789012:resource-96", "name": "resource-96", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "eu-central-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-96", "type": "ecr", "uid": "arn:aws:ecr:eu-central-1:123456789012:resource-96"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.045305", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-97", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-97 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.045315", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-1-7e704c01"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-southeast-1:123456789012:resource-97", "name": "resource-97", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-southeast-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-97", "type": "ecs", "uid": "arn:aws:ecs:ap-southeast-1:123456789012:resource-97"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.045315", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-98", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-98 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.045324", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-2-bf8ae682"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:ap-southeast-2:123456789012:resource-98", "name": "resource-98", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "ap-southeast-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-98", "type": "efs", "uid": "arn:aws:efs:ap-southeast-2:123456789012:resource-98"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.045324", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-99", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-99 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.045333", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-northeast-1-0700e2b9"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:ap-northeast-1:123456789012:resource-99", "name": "resource-99", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "ap-northeast-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-99", "type": "eks", "uid": "arn:aws:eks:ap-northeast-1:123456789012:resource-99"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.045333", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-100", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-100 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.045342", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-1-3f264dd8"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-east-1:123456789012:resource-100", "name": "resource-100", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-east-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-100", "type": "elasticache", "uid": "arn:aws:elasticache:us-east-1:123456789012:resource-100"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.045342", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-101", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-101 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.045366", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-us-east-2-f19b0e45"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-east-2:123456789012:resource-101", "name": "resource-101", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-east-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-101", "type": "elb", "uid": "arn:aws:elb:us-east-2:123456789012:resource-101"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.045366", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-102", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-102 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.045375", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-1-23834f07"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-west-1:123456789012:resource-102", "name": "resource-102", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-west-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-102", "type": "emr", "uid": "arn:aws:emr:us-west-1:123456789012:resource-102"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.045375", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-103", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-103 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.045385", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-west-2-d6d8b252"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-west-2:123456789012:resource-103", "name": "resource-103", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-west-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-103", "type": "guardduty", "uid": "arn:aws:guardduty:us-west-2:123456789012:resource-103"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.045385", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-104", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-104 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.045394", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-eu-west-1-69da0dd2"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-west-1:123456789012:resource-104", "name": "resource-104", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-west-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-104", "type": "iam", "uid": "arn:aws:iam:eu-west-1:123456789012:resource-104"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.045394", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-105", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-105 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.045402", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-2-6c2a0c0e"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:eu-west-2:123456789012:resource-105", "name": "resource-105", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "eu-west-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-105", "type": "kms", "uid": "arn:aws:kms:eu-west-2:123456789012:resource-105"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.045402", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-106", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-106 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.045412", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-eu-central-1-781b223f"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:eu-central-1:123456789012:resource-106", "name": "resource-106", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "eu-central-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-106", "type": "lambda", "uid": "arn:aws:lambda:eu-central-1:123456789012:resource-106"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.045412", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-107", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-107 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.045421", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-ap-southeast-1-85fe0c0d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-southeast-1:123456789012:resource-107", "name": "resource-107", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-southeast-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-107", "type": "rds", "uid": "arn:aws:rds:ap-southeast-1:123456789012:resource-107"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.045421", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-108", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-108 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.045429", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-2-53d9b402"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:ap-southeast-2:123456789012:resource-108", "name": "resource-108", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "ap-southeast-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-108", "type": "redshift", "uid": "arn:aws:redshift:ap-southeast-2:123456789012:resource-108"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.045429", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-109", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-109 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.045439", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-ap-northeast-1-45b683dc"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:ap-northeast-1:123456789012:resource-109", "name": "resource-109", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "ap-northeast-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-109", "type": "s3", "uid": "arn:aws:s3:ap-northeast-1:123456789012:resource-109"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.045439", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-110", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-110 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.045448", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-1-791c8d17"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-east-1:123456789012:resource-110", "name": "resource-110", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-east-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-110", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-east-1:123456789012:resource-110"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.045448", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-111", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-111 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.045457", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-2-e95655df"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-east-2:123456789012:resource-111", "name": "resource-111", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-east-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-111", "type": "sns", "uid": "arn:aws:sns:us-east-2:123456789012:resource-111"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.045457", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-112", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-112 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.045466", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-1-26f32c49"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-west-1:123456789012:resource-112", "name": "resource-112", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-west-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-112", "type": "sqs", "uid": "arn:aws:sqs:us-west-1:123456789012:resource-112"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.045466", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-113", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-113 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.045475", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-2-830980d8"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-west-2:123456789012:resource-113", "name": "resource-113", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-west-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-113", "type": "ssm", "uid": "arn:aws:ssm:us-west-2:123456789012:resource-113"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.045475", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-114", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-114 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.045484", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-1-2f92add7"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:eu-west-1:123456789012:resource-114", "name": "resource-114", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "eu-west-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-114", "type": "vpc", "uid": "arn:aws:vpc:eu-west-1:123456789012:resource-114"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.045484", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-115", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-115 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.045493", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-2-19f49039"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:eu-west-2:123456789012:resource-115", "name": "resource-115", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "eu-west-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-115", "type": "waf", "uid": "arn:aws:waf:eu-west-2:123456789012:resource-115"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.045493", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-116", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-116 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.045502", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-eu-central-1-0ed3e7e4"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:eu-central-1:123456789012:resource-116", "name": "resource-116", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "eu-central-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-116", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:eu-central-1:123456789012:resource-116"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.045502", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-117", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-117 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.045511", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-southeast-1-a7c15705"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:ap-southeast-1:123456789012:resource-117", "name": "resource-117", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "ap-southeast-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-117", "type": "acm", "uid": "arn:aws:acm:ap-southeast-1:123456789012:resource-117"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.045511", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-118", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-118 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.045520", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-ap-southeast-2-0cfbec83"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:ap-southeast-2:123456789012:resource-118", "name": "resource-118", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "ap-southeast-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-118", "type": "apigateway", "uid": "arn:aws:apigateway:ap-southeast-2:123456789012:resource-118"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.045520", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-119", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-119 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.045530", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-northeast-1-bd5d7336"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:ap-northeast-1:123456789012:resource-119", "name": "resource-119", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "ap-northeast-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-119", "type": "cloudfront", "uid": "arn:aws:cloudfront:ap-northeast-1:123456789012:resource-119"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.045530", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-120", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-120 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.045538", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-east-1-63683438"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-east-1:123456789012:resource-120", "name": "resource-120", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-east-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-120", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-east-1:123456789012:resource-120"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.045538", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-121", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-121 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.045548", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-2-bbcf1986"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-east-2:123456789012:resource-121", "name": "resource-121", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-east-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-121", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-east-2:123456789012:resource-121"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.045548", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-122", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-122 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.045557", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-1-ee7a95bc"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-west-1:123456789012:resource-122", "name": "resource-122", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-west-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-122", "type": "config", "uid": "arn:aws:config:us-west-1:123456789012:resource-122"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.045557", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-123", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-123 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.045566", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-west-2-4aed384a"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-west-2:123456789012:resource-123", "name": "resource-123", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-west-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-123", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-west-2:123456789012:resource-123"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.045566", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-124", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-124 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.045576", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-eu-west-1-bd24369d"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:eu-west-1:123456789012:resource-124", "name": "resource-124", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "eu-west-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-124", "type": "ec2", "uid": "arn:aws:ec2:eu-west-1:123456789012:resource-124"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.045576", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-125", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-125 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.045599", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-eu-west-2-a5e7820e"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:eu-west-2:123456789012:resource-125", "name": "resource-125", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "eu-west-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-125", "type": "ecr", "uid": "arn:aws:ecr:eu-west-2:123456789012:resource-125"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.045599", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-126", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-126 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.045608", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-central-1-3fb65825"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:eu-central-1:123456789012:resource-126", "name": "resource-126", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "eu-central-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-126", "type": "ecs", "uid": "arn:aws:ecs:eu-central-1:123456789012:resource-126"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.045608", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-127", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-127 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.045617", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-1-ccb70ea5"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:ap-southeast-1:123456789012:resource-127", "name": "resource-127", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "ap-southeast-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-127", "type": "efs", "uid": "arn:aws:efs:ap-southeast-1:123456789012:resource-127"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.045617", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-128", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-128 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.045626", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-ap-southeast-2-673e12a8"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:ap-southeast-2:123456789012:resource-128", "name": "resource-128", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "ap-southeast-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-128", "type": "eks", "uid": "arn:aws:eks:ap-southeast-2:123456789012:resource-128"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.045626", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-129", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-129 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.045636", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-northeast-1-b4e59875"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:ap-northeast-1:123456789012:resource-129", "name": "resource-129", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "ap-northeast-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-129", "type": "elasticache", "uid": "arn:aws:elasticache:ap-northeast-1:123456789012:resource-129"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.045636", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-130", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-130 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.045645", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-us-east-1-a771dee8"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-east-1:123456789012:resource-130", "name": "resource-130", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-east-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-130", "type": "elb", "uid": "arn:aws:elb:us-east-1:123456789012:resource-130"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.045645", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-131", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-131 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.045654", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-2-943c3a88"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-east-2:123456789012:resource-131", "name": "resource-131", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-east-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-131", "type": "emr", "uid": "arn:aws:emr:us-east-2:123456789012:resource-131"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.045654", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-132", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-132 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.045663", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-west-1-61dd39ba"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-west-1:123456789012:resource-132", "name": "resource-132", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-west-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-132", "type": "guardduty", "uid": "arn:aws:guardduty:us-west-1:123456789012:resource-132"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.045663", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-133", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-133 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.045673", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-us-west-2-e9a3841f"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-west-2:123456789012:resource-133", "name": "resource-133", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-west-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-133", "type": "iam", "uid": "arn:aws:iam:us-west-2:123456789012:resource-133"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.045673", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-134", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-134 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.045682", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-1-f99ca02e"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:eu-west-1:123456789012:resource-134", "name": "resource-134", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "eu-west-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-134", "type": "kms", "uid": "arn:aws:kms:eu-west-1:123456789012:resource-134"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.045682", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-135", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-135 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.045690", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-eu-west-2-e5ed92ca"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:eu-west-2:123456789012:resource-135", "name": "resource-135", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "eu-west-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-135", "type": "lambda", "uid": "arn:aws:lambda:eu-west-2:123456789012:resource-135"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.045690", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-136", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-136 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.045701", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-eu-central-1-9a44f88e"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:eu-central-1:123456789012:resource-136", "name": "resource-136", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "eu-central-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-136", "type": "rds", "uid": "arn:aws:rds:eu-central-1:123456789012:resource-136"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.045701", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-137", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-137 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.045711", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-1-68b00469"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:ap-southeast-1:123456789012:resource-137", "name": "resource-137", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "ap-southeast-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-137", "type": "redshift", "uid": "arn:aws:redshift:ap-southeast-1:123456789012:resource-137"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.045711", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-138", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-138 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.045719", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-ap-southeast-2-c8affb19"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:ap-southeast-2:123456789012:resource-138", "name": "resource-138", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "ap-southeast-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-138", "type": "s3", "uid": "arn:aws:s3:ap-southeast-2:123456789012:resource-138"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.045719", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-139", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-139 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.045728", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-northeast-1-82d2acbb"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:ap-northeast-1:123456789012:resource-139", "name": "resource-139", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "ap-northeast-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-139", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:ap-northeast-1:123456789012:resource-139"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.045728", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-140", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-140 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.045738", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-1-da47b747"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-east-1:123456789012:resource-140", "name": "resource-140", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-east-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-140", "type": "sns", "uid": "arn:aws:sns:us-east-1:123456789012:resource-140"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.045738", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-141", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-141 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.045746", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-2-bc442f97"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-east-2:123456789012:resource-141", "name": "resource-141", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-east-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-141", "type": "sqs", "uid": "arn:aws:sqs:us-east-2:123456789012:resource-141"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.045746", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-142", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-142 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.045755", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-1-2284df60"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-west-1:123456789012:resource-142", "name": "resource-142", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-west-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-142", "type": "ssm", "uid": "arn:aws:ssm:us-west-1:123456789012:resource-142"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.045755", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-143", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-143 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.045764", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-2-c86a16c5"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-west-2:123456789012:resource-143", "name": "resource-143", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-west-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-143", "type": "vpc", "uid": "arn:aws:vpc:us-west-2:123456789012:resource-143"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.045764", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-144", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-144 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.045773", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-1-44b8b2f1"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:eu-west-1:123456789012:resource-144", "name": "resource-144", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "eu-west-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-144", "type": "waf", "uid": "arn:aws:waf:eu-west-1:123456789012:resource-144"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.045773", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-145", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-145 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.045783", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-eu-west-2-2431bd41"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:eu-west-2:123456789012:resource-145", "name": "resource-145", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "eu-west-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-145", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:eu-west-2:123456789012:resource-145"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.045783", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-146", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-146 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.045791", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-eu-central-1-79eaf44a"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:eu-central-1:123456789012:resource-146", "name": "resource-146", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "eu-central-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-146", "type": "acm", "uid": "arn:aws:acm:eu-central-1:123456789012:resource-146"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.045791", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-147", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-147 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.045800", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-southeast-1-955a85ba"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:ap-southeast-1:123456789012:resource-147", "name": "resource-147", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "ap-southeast-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-147", "type": "apigateway", "uid": "arn:aws:apigateway:ap-southeast-1:123456789012:resource-147"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.045800", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-148", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-148 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.045809", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-ap-southeast-2-e951ae24"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:ap-southeast-2:123456789012:resource-148", "name": "resource-148", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "ap-southeast-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-148", "type": "cloudfront", "uid": "arn:aws:cloudfront:ap-southeast-2:123456789012:resource-148"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.045809", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-149", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-149 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.045832", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-northeast-1-abe600d9"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:ap-northeast-1:123456789012:resource-149", "name": "resource-149", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "ap-northeast-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-149", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:ap-northeast-1:123456789012:resource-149"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.045832", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-150", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-150 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.045841", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-1-c3c72beb"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-east-1:123456789012:resource-150", "name": "resource-150", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-east-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-150", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-east-1:123456789012:resource-150"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.045841", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-151", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-151 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.045851", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-2-4079e0b8"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-east-2:123456789012:resource-151", "name": "resource-151", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-east-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-151", "type": "config", "uid": "arn:aws:config:us-east-2:123456789012:resource-151"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.045851", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-152", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-152 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.045859", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-west-1-91d5e62b"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-west-1:123456789012:resource-152", "name": "resource-152", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-west-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-152", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-west-1:123456789012:resource-152"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.045859", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-153", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-153 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.045868", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-us-west-2-8b354465"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-west-2:123456789012:resource-153", "name": "resource-153", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-west-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-153", "type": "ec2", "uid": "arn:aws:ec2:us-west-2:123456789012:resource-153"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.045868", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-154", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-154 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.045877", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-west-1-fd7d519d"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:eu-west-1:123456789012:resource-154", "name": "resource-154", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "eu-west-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-154", "type": "ecr", "uid": "arn:aws:ecr:eu-west-1:123456789012:resource-154"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.045877", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-155", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-155 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.045886", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-2-ac21cb03"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:eu-west-2:123456789012:resource-155", "name": "resource-155", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "eu-west-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-155", "type": "ecs", "uid": "arn:aws:ecs:eu-west-2:123456789012:resource-155"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.045886", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-156", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-156 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.045895", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-central-1-837e4d0d"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:eu-central-1:123456789012:resource-156", "name": "resource-156", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "eu-central-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-156", "type": "efs", "uid": "arn:aws:efs:eu-central-1:123456789012:resource-156"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.045895", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-157", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-157 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.045904", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-southeast-1-f6dedd84"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:ap-southeast-1:123456789012:resource-157", "name": "resource-157", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "ap-southeast-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-157", "type": "eks", "uid": "arn:aws:eks:ap-southeast-1:123456789012:resource-157"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.045904", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-158", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-158 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.045912", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-2-dce60662"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:ap-southeast-2:123456789012:resource-158", "name": "resource-158", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "ap-southeast-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-158", "type": "elasticache", "uid": "arn:aws:elasticache:ap-southeast-2:123456789012:resource-158"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.045912", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-159", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-159 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.045921", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-ap-northeast-1-2d416fcf"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:ap-northeast-1:123456789012:resource-159", "name": "resource-159", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "ap-northeast-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-159", "type": "elb", "uid": "arn:aws:elb:ap-northeast-1:123456789012:resource-159"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.045921", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-160", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-160 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.045930", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-1-6238dd41"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-east-1:123456789012:resource-160", "name": "resource-160", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-east-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-160", "type": "emr", "uid": "arn:aws:emr:us-east-1:123456789012:resource-160"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.045930", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-161", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-161 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.045939", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-east-2-31825ea5"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-east-2:123456789012:resource-161", "name": "resource-161", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-east-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-161", "type": "guardduty", "uid": "arn:aws:guardduty:us-east-2:123456789012:resource-161"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.045939", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-162", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-162 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.045947", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-us-west-1-98dbaf6a"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-west-1:123456789012:resource-162", "name": "resource-162", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-west-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-162", "type": "iam", "uid": "arn:aws:iam:us-west-1:123456789012:resource-162"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.045947", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-163", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-163 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.045957", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-2-045b2639"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-west-2:123456789012:resource-163", "name": "resource-163", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-west-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-163", "type": "kms", "uid": "arn:aws:kms:us-west-2:123456789012:resource-163"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.045957", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-164", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-164 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.045965", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-eu-west-1-8cdf54d7"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:eu-west-1:123456789012:resource-164", "name": "resource-164", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "eu-west-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-164", "type": "lambda", "uid": "arn:aws:lambda:eu-west-1:123456789012:resource-164"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.045965", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-165", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-165 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.045974", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-eu-west-2-f85f28e7"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:eu-west-2:123456789012:resource-165", "name": "resource-165", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "eu-west-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-165", "type": "rds", "uid": "arn:aws:rds:eu-west-2:123456789012:resource-165"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.045974", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-166", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-166 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.045983", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-eu-central-1-3d0d9254"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:eu-central-1:123456789012:resource-166", "name": "resource-166", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "eu-central-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-166", "type": "redshift", "uid": "arn:aws:redshift:eu-central-1:123456789012:resource-166"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.045983", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-167", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-167 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.045991", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-ap-southeast-1-9798f81a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:ap-southeast-1:123456789012:resource-167", "name": "resource-167", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "ap-southeast-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-167", "type": "s3", "uid": "arn:aws:s3:ap-southeast-1:123456789012:resource-167"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.045991", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-168", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-168 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.046000", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-2-a40c2bb9"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:ap-southeast-2:123456789012:resource-168", "name": "resource-168", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "ap-southeast-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-168", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:ap-southeast-2:123456789012:resource-168"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.046000", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-169", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-169 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.046009", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-northeast-1-3a5e00e5"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:ap-northeast-1:123456789012:resource-169", "name": "resource-169", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "ap-northeast-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-169", "type": "sns", "uid": "arn:aws:sns:ap-northeast-1:123456789012:resource-169"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.046009", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-170", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-170 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.046018", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-1-028f7f93"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-east-1:123456789012:resource-170", "name": "resource-170", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-east-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-170", "type": "sqs", "uid": "arn:aws:sqs:us-east-1:123456789012:resource-170"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.046018", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-171", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-171 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.046027", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-2-b51b604d"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-east-2:123456789012:resource-171", "name": "resource-171", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-east-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-171", "type": "ssm", "uid": "arn:aws:ssm:us-east-2:123456789012:resource-171"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.046027", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-172", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-172 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.046036", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-1-03a4686c"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-west-1:123456789012:resource-172", "name": "resource-172", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-west-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-172", "type": "vpc", "uid": "arn:aws:vpc:us-west-1:123456789012:resource-172"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.046036", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-173", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-173 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.046059", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-2-911467de"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-west-2:123456789012:resource-173", "name": "resource-173", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-west-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-173", "type": "waf", "uid": "arn:aws:waf:us-west-2:123456789012:resource-173"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.046059", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-174", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-174 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.046067", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-eu-west-1-c118d975"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:eu-west-1:123456789012:resource-174", "name": "resource-174", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "eu-west-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-174", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:eu-west-1:123456789012:resource-174"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.046067", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-175", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-175 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.046077", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-eu-west-2-9fe3e273"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:eu-west-2:123456789012:resource-175", "name": "resource-175", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "eu-west-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-175", "type": "acm", "uid": "arn:aws:acm:eu-west-2:123456789012:resource-175"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.046077", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-176", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-176 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.046086", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-central-1-fa169aa8"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:eu-central-1:123456789012:resource-176", "name": "resource-176", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "eu-central-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-176", "type": "apigateway", "uid": "arn:aws:apigateway:eu-central-1:123456789012:resource-176"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.046086", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-177", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-177 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.046095", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-southeast-1-abc027af"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:ap-southeast-1:123456789012:resource-177", "name": "resource-177", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "ap-southeast-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-177", "type": "cloudfront", "uid": "arn:aws:cloudfront:ap-southeast-1:123456789012:resource-177"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.046095", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-178", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-178 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.046105", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-ap-southeast-2-5074ab4e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:ap-southeast-2:123456789012:resource-178", "name": "resource-178", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "ap-southeast-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-178", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:ap-southeast-2:123456789012:resource-178"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.046105", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-179", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-179 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.046114", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-northeast-1-3a78f890"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:ap-northeast-1:123456789012:resource-179", "name": "resource-179", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "ap-northeast-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-179", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:ap-northeast-1:123456789012:resource-179"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.046114", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-180", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-180 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.046124", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-1-b4956017"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-east-1:123456789012:resource-180", "name": "resource-180", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-east-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-180", "type": "config", "uid": "arn:aws:config:us-east-1:123456789012:resource-180"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.046124", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-181", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-181 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.046134", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-east-2-0bdb03ad"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-east-2:123456789012:resource-181", "name": "resource-181", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-east-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-181", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-east-2:123456789012:resource-181"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.046134", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-182", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-182 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.046143", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-us-west-1-72759fbf"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-west-1:123456789012:resource-182", "name": "resource-182", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-west-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-182", "type": "ec2", "uid": "arn:aws:ec2:us-west-1:123456789012:resource-182"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.046143", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-183", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-183 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.046152", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-west-2-65f205c0"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-west-2:123456789012:resource-183", "name": "resource-183", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-west-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-183", "type": "ecr", "uid": "arn:aws:ecr:us-west-2:123456789012:resource-183"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.046152", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-184", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-184 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.046162", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-1-14676e2f"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:eu-west-1:123456789012:resource-184", "name": "resource-184", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "eu-west-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-184", "type": "ecs", "uid": "arn:aws:ecs:eu-west-1:123456789012:resource-184"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.046162", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-185", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-185 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.046171", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-2-88a74fce"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:eu-west-2:123456789012:resource-185", "name": "resource-185", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "eu-west-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-185", "type": "efs", "uid": "arn:aws:efs:eu-west-2:123456789012:resource-185"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.046171", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-186", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-186 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.046179", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-eu-central-1-75ddda29"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:eu-central-1:123456789012:resource-186", "name": "resource-186", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "eu-central-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-186", "type": "eks", "uid": "arn:aws:eks:eu-central-1:123456789012:resource-186"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.046179", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-187", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-187 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.046189", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-1-ec634376"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:ap-southeast-1:123456789012:resource-187", "name": "resource-187", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "ap-southeast-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-187", "type": "elasticache", "uid": "arn:aws:elasticache:ap-southeast-1:123456789012:resource-187"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.046189", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-188", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-188 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.046198", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-ap-southeast-2-5d645037"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:ap-southeast-2:123456789012:resource-188", "name": "resource-188", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "ap-southeast-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-188", "type": "elb", "uid": "arn:aws:elb:ap-southeast-2:123456789012:resource-188"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.046198", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-189", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-189 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.046207", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-northeast-1-31d1f6eb"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:ap-northeast-1:123456789012:resource-189", "name": "resource-189", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "ap-northeast-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-189", "type": "emr", "uid": "arn:aws:emr:ap-northeast-1:123456789012:resource-189"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.046207", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-190", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-190 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.046216", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-east-1-e18cbdec"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-east-1:123456789012:resource-190", "name": "resource-190", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-east-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-190", "type": "guardduty", "uid": "arn:aws:guardduty:us-east-1:123456789012:resource-190"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.046216", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-191", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-191 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.046225", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-us-east-2-b0ff3033"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-east-2:123456789012:resource-191", "name": "resource-191", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-east-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-191", "type": "iam", "uid": "arn:aws:iam:us-east-2:123456789012:resource-191"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.046225", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-192", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-192 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.046234", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-1-6fb47a13"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-west-1:123456789012:resource-192", "name": "resource-192", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-west-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-192", "type": "kms", "uid": "arn:aws:kms:us-west-1:123456789012:resource-192"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.046234", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-193", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-193 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.046243", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-west-2-cdd1a4ae"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-west-2:123456789012:resource-193", "name": "resource-193", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-west-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-193", "type": "lambda", "uid": "arn:aws:lambda:us-west-2:123456789012:resource-193"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.046243", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-194", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-194 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.046253", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-eu-west-1-9da51854"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:eu-west-1:123456789012:resource-194", "name": "resource-194", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "eu-west-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-194", "type": "rds", "uid": "arn:aws:rds:eu-west-1:123456789012:resource-194"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.046253", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-195", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-195 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.046262", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-2-0b36c773"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:eu-west-2:123456789012:resource-195", "name": "resource-195", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "eu-west-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-195", "type": "redshift", "uid": "arn:aws:redshift:eu-west-2:123456789012:resource-195"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.046262", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-196", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-196 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.046272", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-eu-central-1-9c93162b"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:eu-central-1:123456789012:resource-196", "name": "resource-196", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "eu-central-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-196", "type": "s3", "uid": "arn:aws:s3:eu-central-1:123456789012:resource-196"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.046272", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-197", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-197 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.046295", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-1-4b15c338"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:ap-southeast-1:123456789012:resource-197", "name": "resource-197", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "ap-southeast-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-197", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:ap-southeast-1:123456789012:resource-197"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.046295", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-198", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-198 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.046304", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-2-6fe695bd"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:ap-southeast-2:123456789012:resource-198", "name": "resource-198", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "ap-southeast-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-198", "type": "sns", "uid": "arn:aws:sns:ap-southeast-2:123456789012:resource-198"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.046304", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-199", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-199 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.046314", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-northeast-1-5a1e6947"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:ap-northeast-1:123456789012:resource-199", "name": "resource-199", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "ap-northeast-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-199", "type": "sqs", "uid": "arn:aws:sqs:ap-northeast-1:123456789012:resource-199"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.046314", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-200", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-200 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.046323", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-1-f0cfffb1"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-east-1:123456789012:resource-200", "name": "resource-200", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-east-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-200", "type": "ssm", "uid": "arn:aws:ssm:us-east-1:123456789012:resource-200"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.046323", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-201", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-201 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.046332", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-2-16bfff5a"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-east-2:123456789012:resource-201", "name": "resource-201", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-east-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-201", "type": "vpc", "uid": "arn:aws:vpc:us-east-2:123456789012:resource-201"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.046332", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-202", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-202 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.046342", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-1-0b5b74df"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-west-1:123456789012:resource-202", "name": "resource-202", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-west-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-202", "type": "waf", "uid": "arn:aws:waf:us-west-1:123456789012:resource-202"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.046342", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-203", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-203 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.046351", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-us-west-2-e1fc00c4"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-west-2:123456789012:resource-203", "name": "resource-203", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-west-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-203", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-west-2:123456789012:resource-203"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.046351", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-204", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-204 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.046360", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-eu-west-1-80d637b6"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:eu-west-1:123456789012:resource-204", "name": "resource-204", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "eu-west-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-204", "type": "acm", "uid": "arn:aws:acm:eu-west-1:123456789012:resource-204"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.046360", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-205", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-205 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.046370", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-eu-west-2-28936bb7"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:eu-west-2:123456789012:resource-205", "name": "resource-205", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "eu-west-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-205", "type": "apigateway", "uid": "arn:aws:apigateway:eu-west-2:123456789012:resource-205"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.046370", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-206", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-206 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.046379", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-central-1-7f84f863"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:eu-central-1:123456789012:resource-206", "name": "resource-206", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "eu-central-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-206", "type": "cloudfront", "uid": "arn:aws:cloudfront:eu-central-1:123456789012:resource-206"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.046379", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-207", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-207 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.046388", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-southeast-1-259a486f"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:ap-southeast-1:123456789012:resource-207", "name": "resource-207", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "ap-southeast-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-207", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:ap-southeast-1:123456789012:resource-207"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.046388", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-208", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-208 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.046397", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-2-7dfe89f9"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:ap-southeast-2:123456789012:resource-208", "name": "resource-208", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "ap-southeast-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-208", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:ap-southeast-2:123456789012:resource-208"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.046397", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-209", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-209 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.046406", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-northeast-1-41c6ea90"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:ap-northeast-1:123456789012:resource-209", "name": "resource-209", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "ap-northeast-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-209", "type": "config", "uid": "arn:aws:config:ap-northeast-1:123456789012:resource-209"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.046406", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-210", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-210 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.046415", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-east-1-3e23d4cd"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-east-1:123456789012:resource-210", "name": "resource-210", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-east-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-210", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-east-1:123456789012:resource-210"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.046415", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-211", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-211 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.046425", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-us-east-2-40ac9249"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-east-2:123456789012:resource-211", "name": "resource-211", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-east-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-211", "type": "ec2", "uid": "arn:aws:ec2:us-east-2:123456789012:resource-211"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.046425", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-212", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-212 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.046434", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-west-1-5eb42766"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-west-1:123456789012:resource-212", "name": "resource-212", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-west-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-212", "type": "ecr", "uid": "arn:aws:ecr:us-west-1:123456789012:resource-212"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.046434", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-213", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-213 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.046443", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-2-f9ad23fd"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-west-2:123456789012:resource-213", "name": "resource-213", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-west-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-213", "type": "ecs", "uid": "arn:aws:ecs:us-west-2:123456789012:resource-213"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.046443", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-214", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-214 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.046453", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-1-a102aade"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:eu-west-1:123456789012:resource-214", "name": "resource-214", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "eu-west-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-214", "type": "efs", "uid": "arn:aws:efs:eu-west-1:123456789012:resource-214"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.046453", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-215", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-215 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.046462", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-eu-west-2-cbf58982"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:eu-west-2:123456789012:resource-215", "name": "resource-215", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "eu-west-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-215", "type": "eks", "uid": "arn:aws:eks:eu-west-2:123456789012:resource-215"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.046462", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-216", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-216 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.046471", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-central-1-f4a587ae"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:eu-central-1:123456789012:resource-216", "name": "resource-216", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "eu-central-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-216", "type": "elasticache", "uid": "arn:aws:elasticache:eu-central-1:123456789012:resource-216"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.046471", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-217", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-217 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.046480", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-ap-southeast-1-54030961"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:ap-southeast-1:123456789012:resource-217", "name": "resource-217", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "ap-southeast-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-217", "type": "elb", "uid": "arn:aws:elb:ap-southeast-1:123456789012:resource-217"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.046480", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-218", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-218 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.046489", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-2-1af250d5"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:ap-southeast-2:123456789012:resource-218", "name": "resource-218", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "ap-southeast-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-218", "type": "emr", "uid": "arn:aws:emr:ap-southeast-2:123456789012:resource-218"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.046489", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-219", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-219 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.046499", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-ap-northeast-1-c18f1950"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:ap-northeast-1:123456789012:resource-219", "name": "resource-219", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "ap-northeast-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-219", "type": "guardduty", "uid": "arn:aws:guardduty:ap-northeast-1:123456789012:resource-219"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.046499", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-220", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-220 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.046509", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-us-east-1-d5ddc36a"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-east-1:123456789012:resource-220", "name": "resource-220", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-east-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-220", "type": "iam", "uid": "arn:aws:iam:us-east-1:123456789012:resource-220"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.046509", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-221", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-221 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.046533", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-2-f394ab9b"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-east-2:123456789012:resource-221", "name": "resource-221", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-east-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-221", "type": "kms", "uid": "arn:aws:kms:us-east-2:123456789012:resource-221"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.046533", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-222", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-222 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.046542", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-us-west-1-9621e21a"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-west-1:123456789012:resource-222", "name": "resource-222", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-west-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-222", "type": "lambda", "uid": "arn:aws:lambda:us-west-1:123456789012:resource-222"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.046542", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-223", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-223 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.046551", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-us-west-2-e52ea850"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-west-2:123456789012:resource-223", "name": "resource-223", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-west-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-223", "type": "rds", "uid": "arn:aws:rds:us-west-2:123456789012:resource-223"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.046551", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-224", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-224 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.046559", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-1-f859a1bb"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:eu-west-1:123456789012:resource-224", "name": "resource-224", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "eu-west-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-224", "type": "redshift", "uid": "arn:aws:redshift:eu-west-1:123456789012:resource-224"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.046559", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-225", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-225 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.046568", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-eu-west-2-2cceb317"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:eu-west-2:123456789012:resource-225", "name": "resource-225", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "eu-west-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-225", "type": "s3", "uid": "arn:aws:s3:eu-west-2:123456789012:resource-225"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.046568", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-226", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-226 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.046579", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-central-1-84c6759f"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:eu-central-1:123456789012:resource-226", "name": "resource-226", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "eu-central-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-226", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:eu-central-1:123456789012:resource-226"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.046579", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-227", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-227 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.046588", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-1-828db60e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:ap-southeast-1:123456789012:resource-227", "name": "resource-227", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "ap-southeast-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-227", "type": "sns", "uid": "arn:aws:sns:ap-southeast-1:123456789012:resource-227"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.046588", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-228", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-228 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.046596", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-2-c57d6bf2"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:ap-southeast-2:123456789012:resource-228", "name": "resource-228", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "ap-southeast-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-228", "type": "sqs", "uid": "arn:aws:sqs:ap-southeast-2:123456789012:resource-228"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.046596", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-229", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-229 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.046605", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-ap-northeast-1-02c97743"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:ap-northeast-1:123456789012:resource-229", "name": "resource-229", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "ap-northeast-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-229", "type": "ssm", "uid": "arn:aws:ssm:ap-northeast-1:123456789012:resource-229"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.046605", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-230", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-230 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.046614", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-1-2a923cb3"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-east-1:123456789012:resource-230", "name": "resource-230", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-east-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-230", "type": "vpc", "uid": "arn:aws:vpc:us-east-1:123456789012:resource-230"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.046614", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-231", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-231 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.046622", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-2-d6151185"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-east-2:123456789012:resource-231", "name": "resource-231", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-east-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-231", "type": "waf", "uid": "arn:aws:waf:us-east-2:123456789012:resource-231"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.046622", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-232", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-232 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.046631", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-us-west-1-439bf24e"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-west-1:123456789012:resource-232", "name": "resource-232", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-west-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-232", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-west-1:123456789012:resource-232"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.046631", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-233", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-233 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.046640", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-west-2-c5966c3e"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-west-2:123456789012:resource-233", "name": "resource-233", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-west-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-233", "type": "acm", "uid": "arn:aws:acm:us-west-2:123456789012:resource-233"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.046640", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-234", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-234 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.046648", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-west-1-ad070b3c"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:eu-west-1:123456789012:resource-234", "name": "resource-234", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "eu-west-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-234", "type": "apigateway", "uid": "arn:aws:apigateway:eu-west-1:123456789012:resource-234"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.046648", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-235", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-235 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.046658", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-eu-west-2-caebb522"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:eu-west-2:123456789012:resource-235", "name": "resource-235", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "eu-west-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-235", "type": "cloudfront", "uid": "arn:aws:cloudfront:eu-west-2:123456789012:resource-235"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.046658", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-236", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-236 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.046666", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-central-1-7fef742e"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-central-1:123456789012:resource-236", "name": "resource-236", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-central-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-236", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-central-1:123456789012:resource-236"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.046666", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-237", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-237 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.046675", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-1-6f8c76cf"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:ap-southeast-1:123456789012:resource-237", "name": "resource-237", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "ap-southeast-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-237", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:ap-southeast-1:123456789012:resource-237"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.046675", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-238", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-238 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.046684", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-2-1a4ba265"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:ap-southeast-2:123456789012:resource-238", "name": "resource-238", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "ap-southeast-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-238", "type": "config", "uid": "arn:aws:config:ap-southeast-2:123456789012:resource-238"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.046684", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-239", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-239 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.046692", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-northeast-1-2110b630"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-northeast-1:123456789012:resource-239", "name": "resource-239", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-northeast-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-239", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-northeast-1:123456789012:resource-239"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.046692", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-240", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-240 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.046701", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-us-east-1-2985776f"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-east-1:123456789012:resource-240", "name": "resource-240", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-east-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-240", "type": "ec2", "uid": "arn:aws:ec2:us-east-1:123456789012:resource-240"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.046701", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-241", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-241 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.046710", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-east-2-8c1587b0"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-east-2:123456789012:resource-241", "name": "resource-241", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-east-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-241", "type": "ecr", "uid": "arn:aws:ecr:us-east-2:123456789012:resource-241"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.046710", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-242", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-242 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.046719", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-1-1d910eb1"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-west-1:123456789012:resource-242", "name": "resource-242", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-west-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-242", "type": "ecs", "uid": "arn:aws:ecs:us-west-1:123456789012:resource-242"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.046719", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-243", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-243 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.046728", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-2-09fbd426"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-west-2:123456789012:resource-243", "name": "resource-243", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-west-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-243", "type": "efs", "uid": "arn:aws:efs:us-west-2:123456789012:resource-243"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.046728", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-244", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-244 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.046738", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-eu-west-1-c3c666e8"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:eu-west-1:123456789012:resource-244", "name": "resource-244", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "eu-west-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-244", "type": "eks", "uid": "arn:aws:eks:eu-west-1:123456789012:resource-244"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.046738", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-245", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-245 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.046762", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-2-03dbebf4"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:eu-west-2:123456789012:resource-245", "name": "resource-245", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "eu-west-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-245", "type": "elasticache", "uid": "arn:aws:elasticache:eu-west-2:123456789012:resource-245"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.046762", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-246", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-246 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.046771", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-eu-central-1-66590d6d"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-central-1:123456789012:resource-246", "name": "resource-246", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-central-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-246", "type": "elb", "uid": "arn:aws:elb:eu-central-1:123456789012:resource-246"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.046771", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-247", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-247 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.046780", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-1-ec3b9f41"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:ap-southeast-1:123456789012:resource-247", "name": "resource-247", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "ap-southeast-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-247", "type": "emr", "uid": "arn:aws:emr:ap-southeast-1:123456789012:resource-247"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.046780", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-248", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-248 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.046789", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-2-bc4e14a8"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:ap-southeast-2:123456789012:resource-248", "name": "resource-248", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "ap-southeast-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-248", "type": "guardduty", "uid": "arn:aws:guardduty:ap-southeast-2:123456789012:resource-248"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.046789", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-249", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-249 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.046798", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-ap-northeast-1-e64be9a5"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-northeast-1:123456789012:resource-249", "name": "resource-249", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-northeast-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-249", "type": "iam", "uid": "arn:aws:iam:ap-northeast-1:123456789012:resource-249"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.046798", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-250", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-250 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.046808", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-1-99d61218"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-east-1:123456789012:resource-250", "name": "resource-250", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-east-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-250", "type": "kms", "uid": "arn:aws:kms:us-east-1:123456789012:resource-250"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.046808", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-251", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-251 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.046816", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-east-2-b54d3ef8"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-east-2:123456789012:resource-251", "name": "resource-251", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-east-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-251", "type": "lambda", "uid": "arn:aws:lambda:us-east-2:123456789012:resource-251"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.046816", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-252", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-252 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.046825", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-us-west-1-4052f0c4"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-west-1:123456789012:resource-252", "name": "resource-252", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-west-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-252", "type": "rds", "uid": "arn:aws:rds:us-west-1:123456789012:resource-252"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.046825", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-253", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-253 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.046835", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-2-d5357478"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-west-2:123456789012:resource-253", "name": "resource-253", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-west-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-253", "type": "redshift", "uid": "arn:aws:redshift:us-west-2:123456789012:resource-253"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.046835", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-254", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-254 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.046843", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-eu-west-1-77a4038e"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:eu-west-1:123456789012:resource-254", "name": "resource-254", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "eu-west-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-254", "type": "s3", "uid": "arn:aws:s3:eu-west-1:123456789012:resource-254"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.046843", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-255", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-255 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.046852", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-2-09a51c2a"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:eu-west-2:123456789012:resource-255", "name": "resource-255", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "eu-west-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-255", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:eu-west-2:123456789012:resource-255"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.046852", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-256", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-256 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.046862", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-central-1-3a685fba"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-central-1:123456789012:resource-256", "name": "resource-256", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-central-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-256", "type": "sns", "uid": "arn:aws:sns:eu-central-1:123456789012:resource-256"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.046862", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-257", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-257 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.046871", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-1-267526ca"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:ap-southeast-1:123456789012:resource-257", "name": "resource-257", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "ap-southeast-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-257", "type": "sqs", "uid": "arn:aws:sqs:ap-southeast-1:123456789012:resource-257"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.046871", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-258", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-258 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.046880", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-2-ad9f23f4"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:ap-southeast-2:123456789012:resource-258", "name": "resource-258", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "ap-southeast-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-258", "type": "ssm", "uid": "arn:aws:ssm:ap-southeast-2:123456789012:resource-258"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.046880", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-259", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-259 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.046890", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-northeast-1-3ccd6a05"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-northeast-1:123456789012:resource-259", "name": "resource-259", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-northeast-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-259", "type": "vpc", "uid": "arn:aws:vpc:ap-northeast-1:123456789012:resource-259"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.046890", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-260", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-260 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.046899", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-1-b793002b"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-east-1:123456789012:resource-260", "name": "resource-260", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-east-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-260", "type": "waf", "uid": "arn:aws:waf:us-east-1:123456789012:resource-260"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.046899", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-261", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-261 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.046908", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-us-east-2-4ac5a29f"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-east-2:123456789012:resource-261", "name": "resource-261", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-east-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-261", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-east-2:123456789012:resource-261"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.046908", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-262", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-262 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.046918", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-us-west-1-da746b7d"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-west-1:123456789012:resource-262", "name": "resource-262", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-west-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-262", "type": "acm", "uid": "arn:aws:acm:us-west-1:123456789012:resource-262"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.046918", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-263", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-263 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.046926", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-west-2-3074fe31"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-west-2:123456789012:resource-263", "name": "resource-263", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-west-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-263", "type": "apigateway", "uid": "arn:aws:apigateway:us-west-2:123456789012:resource-263"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.046926", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-264", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-264 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.046935", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-west-1-858e699f"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:eu-west-1:123456789012:resource-264", "name": "resource-264", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "eu-west-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-264", "type": "cloudfront", "uid": "arn:aws:cloudfront:eu-west-1:123456789012:resource-264"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.046935", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-265", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-265 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.046944", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-eu-west-2-68684776"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-west-2:123456789012:resource-265", "name": "resource-265", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-west-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-265", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-west-2:123456789012:resource-265"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.046944", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-266", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-266 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.046954", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-central-1-3d52239f"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-central-1:123456789012:resource-266", "name": "resource-266", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-central-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-266", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-central-1:123456789012:resource-266"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.046954", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-267", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-267 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.046963", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-1-77781fc5"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:ap-southeast-1:123456789012:resource-267", "name": "resource-267", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "ap-southeast-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-267", "type": "config", "uid": "arn:aws:config:ap-southeast-1:123456789012:resource-267"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.046963", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-268", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-268 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.046972", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-ap-southeast-2-f323d896"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-southeast-2:123456789012:resource-268", "name": "resource-268", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-southeast-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-268", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-southeast-2:123456789012:resource-268"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.046972", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-269", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-269 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.046995", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-ap-northeast-1-d87e2562"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-northeast-1:123456789012:resource-269", "name": "resource-269", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-northeast-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-269", "type": "ec2", "uid": "arn:aws:ec2:ap-northeast-1:123456789012:resource-269"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.046995", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-270", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-270 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.047005", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-east-1-c58ef1f7"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-east-1:123456789012:resource-270", "name": "resource-270", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-east-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-270", "type": "ecr", "uid": "arn:aws:ecr:us-east-1:123456789012:resource-270"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.047005", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-271", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-271 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.047014", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-2-54afa902"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-east-2:123456789012:resource-271", "name": "resource-271", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-east-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-271", "type": "ecs", "uid": "arn:aws:ecs:us-east-2:123456789012:resource-271"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.047014", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-272", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-272 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.047023", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-1-305d6d62"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-west-1:123456789012:resource-272", "name": "resource-272", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-west-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-272", "type": "efs", "uid": "arn:aws:efs:us-west-1:123456789012:resource-272"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.047023", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-273", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-273 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.047031", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-west-2-bb8529b9"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-west-2:123456789012:resource-273", "name": "resource-273", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-west-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-273", "type": "eks", "uid": "arn:aws:eks:us-west-2:123456789012:resource-273"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.047031", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-274", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-274 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.047040", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-1-426d0ce3"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:eu-west-1:123456789012:resource-274", "name": "resource-274", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "eu-west-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-274", "type": "elasticache", "uid": "arn:aws:elasticache:eu-west-1:123456789012:resource-274"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.047040", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-275", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-275 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.047049", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-eu-west-2-113fbce0"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-west-2:123456789012:resource-275", "name": "resource-275", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-west-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-275", "type": "elb", "uid": "arn:aws:elb:eu-west-2:123456789012:resource-275"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.047049", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-276", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-276 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.047058", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-central-1-b2874183"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-central-1:123456789012:resource-276", "name": "resource-276", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-central-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-276", "type": "emr", "uid": "arn:aws:emr:eu-central-1:123456789012:resource-276"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.047058", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-277", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-277 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.047067", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-1-284d0ba8"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:ap-southeast-1:123456789012:resource-277", "name": "resource-277", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "ap-southeast-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-277", "type": "guardduty", "uid": "arn:aws:guardduty:ap-southeast-1:123456789012:resource-277"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.047067", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-278", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-278 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.047076", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-ap-southeast-2-6c2d2025"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-southeast-2:123456789012:resource-278", "name": "resource-278", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-southeast-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-278", "type": "iam", "uid": "arn:aws:iam:ap-southeast-2:123456789012:resource-278"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.047076", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-279", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-279 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.047084", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-northeast-1-5003ca27"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-northeast-1:123456789012:resource-279", "name": "resource-279", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-northeast-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-279", "type": "kms", "uid": "arn:aws:kms:ap-northeast-1:123456789012:resource-279"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.047084", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-280", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-280 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.047094", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-us-east-1-21c5a7e3"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-east-1:123456789012:resource-280", "name": "resource-280", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-east-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-280", "type": "lambda", "uid": "arn:aws:lambda:us-east-1:123456789012:resource-280"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.047094", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-281", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-281 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.047102", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-us-east-2-716f6049"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-east-2:123456789012:resource-281", "name": "resource-281", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-east-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-281", "type": "rds", "uid": "arn:aws:rds:us-east-2:123456789012:resource-281"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.047102", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-282", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-282 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.047111", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-1-77060c39"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-west-1:123456789012:resource-282", "name": "resource-282", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-west-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-282", "type": "redshift", "uid": "arn:aws:redshift:us-west-1:123456789012:resource-282"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.047111", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-283", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-283 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.047121", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-us-west-2-5bd0ef9e"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-west-2:123456789012:resource-283", "name": "resource-283", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-west-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-283", "type": "s3", "uid": "arn:aws:s3:us-west-2:123456789012:resource-283"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.047121", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-284", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-284 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.047129", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-1-d31e64df"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:eu-west-1:123456789012:resource-284", "name": "resource-284", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "eu-west-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-284", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:eu-west-1:123456789012:resource-284"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.047129", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-285", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-285 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.047138", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-2-d95df802"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-west-2:123456789012:resource-285", "name": "resource-285", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-west-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-285", "type": "sns", "uid": "arn:aws:sns:eu-west-2:123456789012:resource-285"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.047138", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-286", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-286 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.047147", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-central-1-f1e896af"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-central-1:123456789012:resource-286", "name": "resource-286", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-central-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-286", "type": "sqs", "uid": "arn:aws:sqs:eu-central-1:123456789012:resource-286"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.047147", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-287", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-287 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.047157", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-1-ed0afa17"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:ap-southeast-1:123456789012:resource-287", "name": "resource-287", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "ap-southeast-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-287", "type": "ssm", "uid": "arn:aws:ssm:ap-southeast-1:123456789012:resource-287"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.047157", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-288", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-288 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.047165", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-2-02d1bec2"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-southeast-2:123456789012:resource-288", "name": "resource-288", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-southeast-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-288", "type": "vpc", "uid": "arn:aws:vpc:ap-southeast-2:123456789012:resource-288"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.047165", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-289", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-289 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.047174", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-northeast-1-71fa86dd"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-northeast-1:123456789012:resource-289", "name": "resource-289", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-northeast-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-289", "type": "waf", "uid": "arn:aws:waf:ap-northeast-1:123456789012:resource-289"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.047174", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-290", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-290 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.047183", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-us-east-1-f1663e44"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-east-1:123456789012:resource-290", "name": "resource-290", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-east-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-290", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-east-1:123456789012:resource-290"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.047183", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-291", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-291 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.047192", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-east-2-466c5a2f"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-east-2:123456789012:resource-291", "name": "resource-291", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-east-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-291", "type": "acm", "uid": "arn:aws:acm:us-east-2:123456789012:resource-291"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.047192", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-292", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-292 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.047201", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-west-1-58ae661a"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-west-1:123456789012:resource-292", "name": "resource-292", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-west-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-292", "type": "apigateway", "uid": "arn:aws:apigateway:us-west-1:123456789012:resource-292"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.047201", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-293", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-293 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.047223", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-west-2-5df19afd"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-west-2:123456789012:resource-293", "name": "resource-293", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-west-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-293", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-west-2:123456789012:resource-293"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.047223", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-294", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-294 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.047232", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-west-1-fcea8de6"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-west-1:123456789012:resource-294", "name": "resource-294", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-west-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-294", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-west-1:123456789012:resource-294"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.047232", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-295", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-295 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.047242", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-2-54c26685"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-west-2:123456789012:resource-295", "name": "resource-295", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-west-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-295", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-west-2:123456789012:resource-295"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.047242", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-296", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-296 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.047251", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-central-1-dff666ba"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-central-1:123456789012:resource-296", "name": "resource-296", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-central-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-296", "type": "config", "uid": "arn:aws:config:eu-central-1:123456789012:resource-296"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.047251", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-297", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-297 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.047260", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-southeast-1-aba920db"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-southeast-1:123456789012:resource-297", "name": "resource-297", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-southeast-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-297", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-southeast-1:123456789012:resource-297"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.047260", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-298", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-298 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.047269", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-ap-southeast-2-3ea54faf"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-southeast-2:123456789012:resource-298", "name": "resource-298", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-southeast-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-298", "type": "ec2", "uid": "arn:aws:ec2:ap-southeast-2:123456789012:resource-298"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.047269", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-299", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-299 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.047278", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-northeast-1-b72d84cf"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-northeast-1:123456789012:resource-299", "name": "resource-299", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-northeast-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-299", "type": "ecr", "uid": "arn:aws:ecr:ap-northeast-1:123456789012:resource-299"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.047278", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-300", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-300 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.047287", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-1-5ec33407"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-east-1:123456789012:resource-300", "name": "resource-300", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-east-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-300", "type": "ecs", "uid": "arn:aws:ecs:us-east-1:123456789012:resource-300"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.047287", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-301", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-301 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.047296", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-2-10ca0546"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-east-2:123456789012:resource-301", "name": "resource-301", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-east-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-301", "type": "efs", "uid": "arn:aws:efs:us-east-2:123456789012:resource-301"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.047296", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-302", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-302 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.047304", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-us-west-1-0843bf84"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-west-1:123456789012:resource-302", "name": "resource-302", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-west-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-302", "type": "eks", "uid": "arn:aws:eks:us-west-1:123456789012:resource-302"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.047304", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-303", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-303 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.047313", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-2-d8461696"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-west-2:123456789012:resource-303", "name": "resource-303", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-west-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-303", "type": "elasticache", "uid": "arn:aws:elasticache:us-west-2:123456789012:resource-303"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.047313", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-304", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-304 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.047323", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-eu-west-1-c2684558"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-west-1:123456789012:resource-304", "name": "resource-304", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-west-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-304", "type": "elb", "uid": "arn:aws:elb:eu-west-1:123456789012:resource-304"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.047323", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-305", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-305 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.047332", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-2-7c851d49"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-west-2:123456789012:resource-305", "name": "resource-305", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-west-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-305", "type": "emr", "uid": "arn:aws:emr:eu-west-2:123456789012:resource-305"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.047332", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-306", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-306 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.047342", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-central-1-d1d3580f"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-central-1:123456789012:resource-306", "name": "resource-306", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-central-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-306", "type": "guardduty", "uid": "arn:aws:guardduty:eu-central-1:123456789012:resource-306"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.047342", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-307", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-307 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.047352", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-ap-southeast-1-9c3bd2f4"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-southeast-1:123456789012:resource-307", "name": "resource-307", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-southeast-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-307", "type": "iam", "uid": "arn:aws:iam:ap-southeast-1:123456789012:resource-307"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.047352", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-308", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-308 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.047361", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-2-08c30354"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-southeast-2:123456789012:resource-308", "name": "resource-308", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-southeast-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-308", "type": "kms", "uid": "arn:aws:kms:ap-southeast-2:123456789012:resource-308"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.047361", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-309", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-309 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.047371", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-northeast-1-c244f891"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-northeast-1:123456789012:resource-309", "name": "resource-309", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-northeast-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-309", "type": "lambda", "uid": "arn:aws:lambda:ap-northeast-1:123456789012:resource-309"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.047371", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-310", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-310 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.047381", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-us-east-1-7ef27b42"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-east-1:123456789012:resource-310", "name": "resource-310", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-east-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-310", "type": "rds", "uid": "arn:aws:rds:us-east-1:123456789012:resource-310"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.047381", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-311", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-311 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.047390", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-2-edb2bc85"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-east-2:123456789012:resource-311", "name": "resource-311", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-east-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-311", "type": "redshift", "uid": "arn:aws:redshift:us-east-2:123456789012:resource-311"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.047390", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-312", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-312 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.047399", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-us-west-1-e00044f2"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-west-1:123456789012:resource-312", "name": "resource-312", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-west-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-312", "type": "s3", "uid": "arn:aws:s3:us-west-1:123456789012:resource-312"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.047399", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-313", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-313 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.047409", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-2-a52a578e"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-west-2:123456789012:resource-313", "name": "resource-313", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-west-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-313", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-west-2:123456789012:resource-313"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.047409", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-314", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-314 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.047418", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-1-c297d120"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-west-1:123456789012:resource-314", "name": "resource-314", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-west-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-314", "type": "sns", "uid": "arn:aws:sns:eu-west-1:123456789012:resource-314"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.047418", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-315", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-315 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.047427", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-2-588425dc"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-west-2:123456789012:resource-315", "name": "resource-315", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-west-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-315", "type": "sqs", "uid": "arn:aws:sqs:eu-west-2:123456789012:resource-315"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.047427", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-316", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-316 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.047438", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-central-1-b4b96141"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-central-1:123456789012:resource-316", "name": "resource-316", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-central-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-316", "type": "ssm", "uid": "arn:aws:ssm:eu-central-1:123456789012:resource-316"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.047438", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-317", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-317 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.047461", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-1-7da8df38"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-southeast-1:123456789012:resource-317", "name": "resource-317", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-southeast-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-317", "type": "vpc", "uid": "arn:aws:vpc:ap-southeast-1:123456789012:resource-317"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.047461", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-318", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-318 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.047470", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-2-e0bae5c6"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-southeast-2:123456789012:resource-318", "name": "resource-318", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-southeast-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-318", "type": "waf", "uid": "arn:aws:waf:ap-southeast-2:123456789012:resource-318"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.047470", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-319", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-319 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.047480", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-ap-northeast-1-fc5c44de"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-319", "name": "resource-319", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-northeast-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-319", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-319"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.047480", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-320", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-320 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.047489", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-us-east-1-8b9fbb76"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-east-1:123456789012:resource-320", "name": "resource-320", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-east-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-320", "type": "acm", "uid": "arn:aws:acm:us-east-1:123456789012:resource-320"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.047489", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-321", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-321 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.047498", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-east-2-fdb72770"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-east-2:123456789012:resource-321", "name": "resource-321", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-east-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-321", "type": "apigateway", "uid": "arn:aws:apigateway:us-east-2:123456789012:resource-321"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.047498", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-322", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-322 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.047508", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-west-1-330cdc39"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-west-1:123456789012:resource-322", "name": "resource-322", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-west-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-322", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-west-1:123456789012:resource-322"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.047508", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-323", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-323 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.047517", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-west-2-05c778b6"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-west-2:123456789012:resource-323", "name": "resource-323", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-west-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-323", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-west-2:123456789012:resource-323"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.047517", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-324", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-324 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.047526", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-1-33bb86e1"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-west-1:123456789012:resource-324", "name": "resource-324", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-west-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-324", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-west-1:123456789012:resource-324"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.047526", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-325", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-325 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.047536", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-2-7f02d084"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-west-2:123456789012:resource-325", "name": "resource-325", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-west-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-325", "type": "config", "uid": "arn:aws:config:eu-west-2:123456789012:resource-325"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.047536", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-326", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-326 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.047545", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-central-1-8c296d89"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-central-1:123456789012:resource-326", "name": "resource-326", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-central-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-326", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-central-1:123456789012:resource-326"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.047545", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-327", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-327 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.047554", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-ap-southeast-1-e8255d9f"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-southeast-1:123456789012:resource-327", "name": "resource-327", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-southeast-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-327", "type": "ec2", "uid": "arn:aws:ec2:ap-southeast-1:123456789012:resource-327"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.047554", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-328", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-328 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.047563", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-ap-southeast-2-bdfdf51f"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-southeast-2:123456789012:resource-328", "name": "resource-328", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-southeast-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-328", "type": "ecr", "uid": "arn:aws:ecr:ap-southeast-2:123456789012:resource-328"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.047563", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-329", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-329 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.047572", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-northeast-1-b243dfb2"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-northeast-1:123456789012:resource-329", "name": "resource-329", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-northeast-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-329", "type": "ecs", "uid": "arn:aws:ecs:ap-northeast-1:123456789012:resource-329"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.047572", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-330", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-330 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.047582", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-1-aced995b"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-east-1:123456789012:resource-330", "name": "resource-330", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-east-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-330", "type": "efs", "uid": "arn:aws:efs:us-east-1:123456789012:resource-330"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.047582", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-331", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-331 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.047591", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-east-2-1f149f01"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-east-2:123456789012:resource-331", "name": "resource-331", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-east-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-331", "type": "eks", "uid": "arn:aws:eks:us-east-2:123456789012:resource-331"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.047591", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-332", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-332 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.047600", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-1-ccc894ae"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-west-1:123456789012:resource-332", "name": "resource-332", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-west-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-332", "type": "elasticache", "uid": "arn:aws:elasticache:us-west-1:123456789012:resource-332"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.047600", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-333", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-333 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.047610", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-us-west-2-a3a4c3d5"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-west-2:123456789012:resource-333", "name": "resource-333", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-west-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-333", "type": "elb", "uid": "arn:aws:elb:us-west-2:123456789012:resource-333"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.047610", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-334", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-334 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.047619", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-1-57c3723d"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-west-1:123456789012:resource-334", "name": "resource-334", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-west-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-334", "type": "emr", "uid": "arn:aws:emr:eu-west-1:123456789012:resource-334"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.047619", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-335", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-335 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.047628", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-west-2-160de832"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-west-2:123456789012:resource-335", "name": "resource-335", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-west-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-335", "type": "guardduty", "uid": "arn:aws:guardduty:eu-west-2:123456789012:resource-335"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.047628", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-336", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-336 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.047637", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-eu-central-1-9fd4574b"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-central-1:123456789012:resource-336", "name": "resource-336", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-central-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-336", "type": "iam", "uid": "arn:aws:iam:eu-central-1:123456789012:resource-336"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.047637", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-337", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-337 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.047646", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-1-cdcf9f9f"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-southeast-1:123456789012:resource-337", "name": "resource-337", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-southeast-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-337", "type": "kms", "uid": "arn:aws:kms:ap-southeast-1:123456789012:resource-337"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.047646", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-338", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-338 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.047656", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-ap-southeast-2-74ce66c6"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-southeast-2:123456789012:resource-338", "name": "resource-338", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-southeast-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-338", "type": "lambda", "uid": "arn:aws:lambda:ap-southeast-2:123456789012:resource-338"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.047656", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-339", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-339 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.047665", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-ap-northeast-1-e8eafb53"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-northeast-1:123456789012:resource-339", "name": "resource-339", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-northeast-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-339", "type": "rds", "uid": "arn:aws:rds:ap-northeast-1:123456789012:resource-339"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.047665", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-340", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-340 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.047675", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-1-9240a2a4"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-east-1:123456789012:resource-340", "name": "resource-340", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-east-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-340", "type": "redshift", "uid": "arn:aws:redshift:us-east-1:123456789012:resource-340"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.047675", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-341", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-341 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.047698", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-us-east-2-e90c5939"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-east-2:123456789012:resource-341", "name": "resource-341", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-east-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-341", "type": "s3", "uid": "arn:aws:s3:us-east-2:123456789012:resource-341"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.047698", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-342", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-342 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.047707", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-1-d48fd2f3"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-west-1:123456789012:resource-342", "name": "resource-342", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-west-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-342", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-west-1:123456789012:resource-342"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.047707", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-343", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-343 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.047717", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-2-03a0f3dd"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-west-2:123456789012:resource-343", "name": "resource-343", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-west-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-343", "type": "sns", "uid": "arn:aws:sns:us-west-2:123456789012:resource-343"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.047717", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-344", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-344 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.047726", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-1-5379f27d"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-west-1:123456789012:resource-344", "name": "resource-344", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-west-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-344", "type": "sqs", "uid": "arn:aws:sqs:eu-west-1:123456789012:resource-344"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.047726", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-345", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-345 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.047735", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-2-79422619"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-west-2:123456789012:resource-345", "name": "resource-345", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-west-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-345", "type": "ssm", "uid": "arn:aws:ssm:eu-west-2:123456789012:resource-345"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.047735", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-346", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-346 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.047744", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-eu-central-1-84eeebfa"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:eu-central-1:123456789012:resource-346", "name": "resource-346", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "eu-central-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-346", "type": "vpc", "uid": "arn:aws:vpc:eu-central-1:123456789012:resource-346"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.047744", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-347", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-347 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.047754", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-1-38370556"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-southeast-1:123456789012:resource-347", "name": "resource-347", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-southeast-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-347", "type": "waf", "uid": "arn:aws:waf:ap-southeast-1:123456789012:resource-347"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.047754", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-348", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-348 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.047762", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-ap-southeast-2-62f66bce"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-southeast-2:123456789012:resource-348", "name": "resource-348", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-southeast-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-348", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-southeast-2:123456789012:resource-348"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.047762", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-349", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-349 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.047772", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-northeast-1-c0194354"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:ap-northeast-1:123456789012:resource-349", "name": "resource-349", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "ap-northeast-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-349", "type": "acm", "uid": "arn:aws:acm:ap-northeast-1:123456789012:resource-349"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.047772", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-350", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-350 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.047781", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-east-1-1a7a45cb"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-east-1:123456789012:resource-350", "name": "resource-350", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-east-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-350", "type": "apigateway", "uid": "arn:aws:apigateway:us-east-1:123456789012:resource-350"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.047781", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-351", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-351 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.047790", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-east-2-fc66006d"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-east-2:123456789012:resource-351", "name": "resource-351", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-east-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-351", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-east-2:123456789012:resource-351"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.047790", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-352", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-352 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.047799", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-west-1-941b38a8"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-west-1:123456789012:resource-352", "name": "resource-352", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-west-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-352", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-west-1:123456789012:resource-352"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.047799", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-353", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-353 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.047810", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-2-c72b0c6f"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-west-2:123456789012:resource-353", "name": "resource-353", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-west-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-353", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-west-2:123456789012:resource-353"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.047810", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-354", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-354 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.047820", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-1-eaa10281"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-west-1:123456789012:resource-354", "name": "resource-354", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-west-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-354", "type": "config", "uid": "arn:aws:config:eu-west-1:123456789012:resource-354"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.047820", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-355", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-355 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.047829", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-eu-west-2-d1c8963e"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-west-2:123456789012:resource-355", "name": "resource-355", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-west-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-355", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-west-2:123456789012:resource-355"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.047829", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-356", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-356 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.047839", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-eu-central-1-69e70050"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:eu-central-1:123456789012:resource-356", "name": "resource-356", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "eu-central-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-356", "type": "ec2", "uid": "arn:aws:ec2:eu-central-1:123456789012:resource-356"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.047839", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-357", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-357 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.047848", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-southeast-1-74bfbdeb"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-southeast-1:123456789012:resource-357", "name": "resource-357", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-southeast-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-357", "type": "ecr", "uid": "arn:aws:ecr:ap-southeast-1:123456789012:resource-357"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.047848", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-358", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-358 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.047858", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-2-25cf8721"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-southeast-2:123456789012:resource-358", "name": "resource-358", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-southeast-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-358", "type": "ecs", "uid": "arn:aws:ecs:ap-southeast-2:123456789012:resource-358"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.047858", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-359", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-359 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.047867", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-northeast-1-6aa3e7ef"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:ap-northeast-1:123456789012:resource-359", "name": "resource-359", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "ap-northeast-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-359", "type": "efs", "uid": "arn:aws:efs:ap-northeast-1:123456789012:resource-359"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.047867", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-360", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-360 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.047876", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-us-east-1-08d1874c"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-east-1:123456789012:resource-360", "name": "resource-360", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-east-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-360", "type": "eks", "uid": "arn:aws:eks:us-east-1:123456789012:resource-360"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.047876", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-361", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-361 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.047886", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-2-863e7249"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-east-2:123456789012:resource-361", "name": "resource-361", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-east-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-361", "type": "elasticache", "uid": "arn:aws:elasticache:us-east-2:123456789012:resource-361"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.047886", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-362", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-362 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.047895", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-us-west-1-a8ad1ef1"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-west-1:123456789012:resource-362", "name": "resource-362", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-west-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-362", "type": "elb", "uid": "arn:aws:elb:us-west-1:123456789012:resource-362"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.047895", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-363", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-363 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.047904", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-2-e6827c53"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-west-2:123456789012:resource-363", "name": "resource-363", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-west-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-363", "type": "emr", "uid": "arn:aws:emr:us-west-2:123456789012:resource-363"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.047904", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-364", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-364 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.047914", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-west-1-4309cbbe"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-west-1:123456789012:resource-364", "name": "resource-364", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-west-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-364", "type": "guardduty", "uid": "arn:aws:guardduty:eu-west-1:123456789012:resource-364"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.047914", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-365", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-365 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.048139", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-eu-west-2-fd486046"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-west-2:123456789012:resource-365", "name": "resource-365", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-west-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-365", "type": "iam", "uid": "arn:aws:iam:eu-west-2:123456789012:resource-365"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.048139", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-366", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-366 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.048149", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-central-1-14d03c25"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:eu-central-1:123456789012:resource-366", "name": "resource-366", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "eu-central-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-366", "type": "kms", "uid": "arn:aws:kms:eu-central-1:123456789012:resource-366"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.048149", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-367", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-367 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.048158", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-southeast-1-cbeea7ac"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-southeast-1:123456789012:resource-367", "name": "resource-367", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-southeast-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-367", "type": "lambda", "uid": "arn:aws:lambda:ap-southeast-1:123456789012:resource-367"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.048158", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-368", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-368 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.048167", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-ap-southeast-2-eda0cd57"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-southeast-2:123456789012:resource-368", "name": "resource-368", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-southeast-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-368", "type": "rds", "uid": "arn:aws:rds:ap-southeast-2:123456789012:resource-368"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.048167", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-369", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-369 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.048176", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-ap-northeast-1-10e807d9"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:ap-northeast-1:123456789012:resource-369", "name": "resource-369", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "ap-northeast-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-369", "type": "redshift", "uid": "arn:aws:redshift:ap-northeast-1:123456789012:resource-369"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.048176", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-370", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-370 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.048186", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-us-east-1-3689675b"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-east-1:123456789012:resource-370", "name": "resource-370", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-east-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-370", "type": "s3", "uid": "arn:aws:s3:us-east-1:123456789012:resource-370"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.048186", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-371", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-371 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.048196", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-2-97557e8c"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-east-2:123456789012:resource-371", "name": "resource-371", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-east-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-371", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-east-2:123456789012:resource-371"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.048196", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-372", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-372 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.048205", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-1-cf54373b"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-west-1:123456789012:resource-372", "name": "resource-372", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-west-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-372", "type": "sns", "uid": "arn:aws:sns:us-west-1:123456789012:resource-372"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.048205", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-373", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-373 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.048214", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-2-862d66e1"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-west-2:123456789012:resource-373", "name": "resource-373", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-west-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-373", "type": "sqs", "uid": "arn:aws:sqs:us-west-2:123456789012:resource-373"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.048214", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-374", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-374 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.048223", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-1-f98fef36"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-west-1:123456789012:resource-374", "name": "resource-374", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-west-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-374", "type": "ssm", "uid": "arn:aws:ssm:eu-west-1:123456789012:resource-374"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.048223", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-375", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-375 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.048232", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-2-cc3e63d0"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:eu-west-2:123456789012:resource-375", "name": "resource-375", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "eu-west-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-375", "type": "vpc", "uid": "arn:aws:vpc:eu-west-2:123456789012:resource-375"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.048232", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-376", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-376 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.048242", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-central-1-55d42417"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:eu-central-1:123456789012:resource-376", "name": "resource-376", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "eu-central-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-376", "type": "waf", "uid": "arn:aws:waf:eu-central-1:123456789012:resource-376"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.048242", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-377", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-377 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.048252", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-ap-southeast-1-677dba25"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-southeast-1:123456789012:resource-377", "name": "resource-377", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-southeast-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-377", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-southeast-1:123456789012:resource-377"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.048252", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-378", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-378 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.048262", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-ap-southeast-2-14b857d0"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:ap-southeast-2:123456789012:resource-378", "name": "resource-378", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "ap-southeast-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-378", "type": "acm", "uid": "arn:aws:acm:ap-southeast-2:123456789012:resource-378"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.048262", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-379", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-379 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.048271", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-northeast-1-50ca08de"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:ap-northeast-1:123456789012:resource-379", "name": "resource-379", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "ap-northeast-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-379", "type": "apigateway", "uid": "arn:aws:apigateway:ap-northeast-1:123456789012:resource-379"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.048271", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-380", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-380 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.048280", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-east-1-bacbefa8"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-east-1:123456789012:resource-380", "name": "resource-380", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-east-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-380", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-east-1:123456789012:resource-380"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.048280", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-381", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-381 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.048290", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-east-2-4cbc32ff"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-east-2:123456789012:resource-381", "name": "resource-381", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-east-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-381", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-east-2:123456789012:resource-381"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.048290", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-382", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-382 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.048299", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-1-4175157a"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-west-1:123456789012:resource-382", "name": "resource-382", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-west-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-382", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-west-1:123456789012:resource-382"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.048299", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-383", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-383 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.048308", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-2-078977ef"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-west-2:123456789012:resource-383", "name": "resource-383", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-west-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-383", "type": "config", "uid": "arn:aws:config:us-west-2:123456789012:resource-383"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.048308", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-384", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-384 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.048318", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-west-1-3851347e"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-west-1:123456789012:resource-384", "name": "resource-384", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-west-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-384", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-west-1:123456789012:resource-384"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.048318", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-385", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-385 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.048327", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-eu-west-2-36aa518c"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:eu-west-2:123456789012:resource-385", "name": "resource-385", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "eu-west-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-385", "type": "ec2", "uid": "arn:aws:ec2:eu-west-2:123456789012:resource-385"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.048327", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-386", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-386 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.048336", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-central-1-77924ee0"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:eu-central-1:123456789012:resource-386", "name": "resource-386", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "eu-central-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-386", "type": "ecr", "uid": "arn:aws:ecr:eu-central-1:123456789012:resource-386"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.048336", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-387", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-387 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.048345", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-1-ca0fa914"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-southeast-1:123456789012:resource-387", "name": "resource-387", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-southeast-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-387", "type": "ecs", "uid": "arn:aws:ecs:ap-southeast-1:123456789012:resource-387"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.048345", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-388", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-388 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.048354", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-2-924373dc"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:ap-southeast-2:123456789012:resource-388", "name": "resource-388", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "ap-southeast-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-388", "type": "efs", "uid": "arn:aws:efs:ap-southeast-2:123456789012:resource-388"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.048354", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-389", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-389 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.048377", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-northeast-1-f7406a32"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:ap-northeast-1:123456789012:resource-389", "name": "resource-389", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "ap-northeast-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-389", "type": "eks", "uid": "arn:aws:eks:ap-northeast-1:123456789012:resource-389"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.048377", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-390", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-390 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.048385", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-1-caef20e9"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-east-1:123456789012:resource-390", "name": "resource-390", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-east-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-390", "type": "elasticache", "uid": "arn:aws:elasticache:us-east-1:123456789012:resource-390"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.048385", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-391", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-391 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.048395", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-us-east-2-f09f56d4"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-east-2:123456789012:resource-391", "name": "resource-391", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-east-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-391", "type": "elb", "uid": "arn:aws:elb:us-east-2:123456789012:resource-391"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.048395", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-392", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-392 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.048404", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-1-8da60a61"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-west-1:123456789012:resource-392", "name": "resource-392", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-west-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-392", "type": "emr", "uid": "arn:aws:emr:us-west-1:123456789012:resource-392"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.048404", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-393", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-393 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.048413", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-west-2-45397cf4"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-west-2:123456789012:resource-393", "name": "resource-393", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-west-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-393", "type": "guardduty", "uid": "arn:aws:guardduty:us-west-2:123456789012:resource-393"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.048413", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-394", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-394 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.048422", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-eu-west-1-9040afac"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-west-1:123456789012:resource-394", "name": "resource-394", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-west-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-394", "type": "iam", "uid": "arn:aws:iam:eu-west-1:123456789012:resource-394"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.048422", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-395", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-395 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.048431", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-2-893ee233"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:eu-west-2:123456789012:resource-395", "name": "resource-395", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "eu-west-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-395", "type": "kms", "uid": "arn:aws:kms:eu-west-2:123456789012:resource-395"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.048431", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-396", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-396 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.048440", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-eu-central-1-246f05ed"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:eu-central-1:123456789012:resource-396", "name": "resource-396", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "eu-central-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-396", "type": "lambda", "uid": "arn:aws:lambda:eu-central-1:123456789012:resource-396"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.048440", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-397", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-397 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.048449", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-ap-southeast-1-72e45d9b"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-southeast-1:123456789012:resource-397", "name": "resource-397", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-southeast-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-397", "type": "rds", "uid": "arn:aws:rds:ap-southeast-1:123456789012:resource-397"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.048449", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-398", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-398 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.048457", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-2-8e1937bb"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:ap-southeast-2:123456789012:resource-398", "name": "resource-398", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "ap-southeast-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-398", "type": "redshift", "uid": "arn:aws:redshift:ap-southeast-2:123456789012:resource-398"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.048457", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-399", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-399 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.048466", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-ap-northeast-1-b49d98d5"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:ap-northeast-1:123456789012:resource-399", "name": "resource-399", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "ap-northeast-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-399", "type": "s3", "uid": "arn:aws:s3:ap-northeast-1:123456789012:resource-399"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.048466", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-400", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-400 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.048475", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-1-02cdd06d"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-east-1:123456789012:resource-400", "name": "resource-400", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-east-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-400", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-east-1:123456789012:resource-400"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.048475", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-401", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-401 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.048485", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-2-7cb434b6"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-east-2:123456789012:resource-401", "name": "resource-401", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-east-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-401", "type": "sns", "uid": "arn:aws:sns:us-east-2:123456789012:resource-401"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.048485", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-402", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-402 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.048494", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-1-b93b42e7"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-west-1:123456789012:resource-402", "name": "resource-402", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-west-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-402", "type": "sqs", "uid": "arn:aws:sqs:us-west-1:123456789012:resource-402"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.048494", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-403", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-403 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.048503", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-2-d0599466"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-west-2:123456789012:resource-403", "name": "resource-403", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-west-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-403", "type": "ssm", "uid": "arn:aws:ssm:us-west-2:123456789012:resource-403"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.048503", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-404", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-404 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.048512", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-1-2d3bee2a"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:eu-west-1:123456789012:resource-404", "name": "resource-404", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "eu-west-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-404", "type": "vpc", "uid": "arn:aws:vpc:eu-west-1:123456789012:resource-404"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.048512", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-405", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-405 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.048520", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-2-4c1f0020"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:eu-west-2:123456789012:resource-405", "name": "resource-405", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "eu-west-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-405", "type": "waf", "uid": "arn:aws:waf:eu-west-2:123456789012:resource-405"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.048520", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-406", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-406 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.048529", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-eu-central-1-5641866e"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:eu-central-1:123456789012:resource-406", "name": "resource-406", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "eu-central-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-406", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:eu-central-1:123456789012:resource-406"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.048529", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-407", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-407 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.048538", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-southeast-1-1f06c3d6"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:ap-southeast-1:123456789012:resource-407", "name": "resource-407", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "ap-southeast-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-407", "type": "acm", "uid": "arn:aws:acm:ap-southeast-1:123456789012:resource-407"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.048538", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-408", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-408 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.048547", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-ap-southeast-2-151afaa7"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:ap-southeast-2:123456789012:resource-408", "name": "resource-408", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "ap-southeast-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-408", "type": "apigateway", "uid": "arn:aws:apigateway:ap-southeast-2:123456789012:resource-408"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.048547", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-409", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-409 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.048556", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-northeast-1-f8eeb4b8"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:ap-northeast-1:123456789012:resource-409", "name": "resource-409", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "ap-northeast-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-409", "type": "cloudfront", "uid": "arn:aws:cloudfront:ap-northeast-1:123456789012:resource-409"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.048556", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-410", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-410 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.048565", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-east-1-3ab821c3"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-east-1:123456789012:resource-410", "name": "resource-410", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-east-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-410", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-east-1:123456789012:resource-410"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.048565", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-411", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-411 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.048574", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-2-3092d6ea"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-east-2:123456789012:resource-411", "name": "resource-411", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-east-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-411", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-east-2:123456789012:resource-411"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.048574", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-412", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-412 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.048583", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-1-a60c0352"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-west-1:123456789012:resource-412", "name": "resource-412", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-west-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-412", "type": "config", "uid": "arn:aws:config:us-west-1:123456789012:resource-412"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.048583", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-413", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-413 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.048607", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-west-2-8611f874"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-west-2:123456789012:resource-413", "name": "resource-413", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-west-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-413", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-west-2:123456789012:resource-413"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.048607", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-414", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-414 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.048615", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-eu-west-1-2621c73e"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:eu-west-1:123456789012:resource-414", "name": "resource-414", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "eu-west-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-414", "type": "ec2", "uid": "arn:aws:ec2:eu-west-1:123456789012:resource-414"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.048615", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-415", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-415 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.048624", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-eu-west-2-ac9c0f1a"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:eu-west-2:123456789012:resource-415", "name": "resource-415", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "eu-west-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-415", "type": "ecr", "uid": "arn:aws:ecr:eu-west-2:123456789012:resource-415"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.048624", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-416", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-416 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.048633", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-central-1-93b00404"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:eu-central-1:123456789012:resource-416", "name": "resource-416", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "eu-central-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-416", "type": "ecs", "uid": "arn:aws:ecs:eu-central-1:123456789012:resource-416"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.048633", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-417", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-417 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.048642", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-1-0742932e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:ap-southeast-1:123456789012:resource-417", "name": "resource-417", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "ap-southeast-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-417", "type": "efs", "uid": "arn:aws:efs:ap-southeast-1:123456789012:resource-417"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.048642", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-418", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-418 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.048652", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-ap-southeast-2-a11d8244"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:ap-southeast-2:123456789012:resource-418", "name": "resource-418", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "ap-southeast-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-418", "type": "eks", "uid": "arn:aws:eks:ap-southeast-2:123456789012:resource-418"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.048652", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-419", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-419 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.048660", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-northeast-1-b3c573af"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:ap-northeast-1:123456789012:resource-419", "name": "resource-419", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "ap-northeast-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-419", "type": "elasticache", "uid": "arn:aws:elasticache:ap-northeast-1:123456789012:resource-419"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.048660", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-420", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-420 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.048669", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-us-east-1-26bd2ee2"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-east-1:123456789012:resource-420", "name": "resource-420", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-east-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-420", "type": "elb", "uid": "arn:aws:elb:us-east-1:123456789012:resource-420"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.048669", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-421", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-421 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.048678", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-2-3b033221"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-east-2:123456789012:resource-421", "name": "resource-421", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-east-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-421", "type": "emr", "uid": "arn:aws:emr:us-east-2:123456789012:resource-421"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.048678", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-422", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-422 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.048687", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-west-1-585cc5ec"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-west-1:123456789012:resource-422", "name": "resource-422", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-west-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-422", "type": "guardduty", "uid": "arn:aws:guardduty:us-west-1:123456789012:resource-422"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.048687", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-423", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-423 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.048695", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-us-west-2-5c6faa93"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-west-2:123456789012:resource-423", "name": "resource-423", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-west-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-423", "type": "iam", "uid": "arn:aws:iam:us-west-2:123456789012:resource-423"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.048695", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-424", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-424 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.048704", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-1-413ec75e"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:eu-west-1:123456789012:resource-424", "name": "resource-424", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "eu-west-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-424", "type": "kms", "uid": "arn:aws:kms:eu-west-1:123456789012:resource-424"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.048704", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-425", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-425 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.048713", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-eu-west-2-282c0c10"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:eu-west-2:123456789012:resource-425", "name": "resource-425", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "eu-west-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-425", "type": "lambda", "uid": "arn:aws:lambda:eu-west-2:123456789012:resource-425"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.048713", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-426", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-426 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.048722", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-eu-central-1-7b47b55b"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:eu-central-1:123456789012:resource-426", "name": "resource-426", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "eu-central-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-426", "type": "rds", "uid": "arn:aws:rds:eu-central-1:123456789012:resource-426"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.048722", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-427", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-427 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.048732", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-1-4a1a098f"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:ap-southeast-1:123456789012:resource-427", "name": "resource-427", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "ap-southeast-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-427", "type": "redshift", "uid": "arn:aws:redshift:ap-southeast-1:123456789012:resource-427"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.048732", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-428", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-428 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.048740", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-ap-southeast-2-51fe4c9a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:ap-southeast-2:123456789012:resource-428", "name": "resource-428", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "ap-southeast-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-428", "type": "s3", "uid": "arn:aws:s3:ap-southeast-2:123456789012:resource-428"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.048740", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-429", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-429 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.048749", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-northeast-1-aaa79838"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:ap-northeast-1:123456789012:resource-429", "name": "resource-429", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "ap-northeast-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-429", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:ap-northeast-1:123456789012:resource-429"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.048749", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-430", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-430 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.048758", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-1-f347633e"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-east-1:123456789012:resource-430", "name": "resource-430", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-east-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-430", "type": "sns", "uid": "arn:aws:sns:us-east-1:123456789012:resource-430"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.048758", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-431", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-431 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.048767", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-2-f0499afb"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-east-2:123456789012:resource-431", "name": "resource-431", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-east-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-431", "type": "sqs", "uid": "arn:aws:sqs:us-east-2:123456789012:resource-431"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.048767", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-432", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-432 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.048776", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-1-2515073d"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-west-1:123456789012:resource-432", "name": "resource-432", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-west-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-432", "type": "ssm", "uid": "arn:aws:ssm:us-west-1:123456789012:resource-432"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.048776", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-433", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-433 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.048785", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-2-bd249245"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-west-2:123456789012:resource-433", "name": "resource-433", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-west-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-433", "type": "vpc", "uid": "arn:aws:vpc:us-west-2:123456789012:resource-433"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.048785", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-434", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-434 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.048796", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-1-2fdf6d20"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:eu-west-1:123456789012:resource-434", "name": "resource-434", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "eu-west-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-434", "type": "waf", "uid": "arn:aws:waf:eu-west-1:123456789012:resource-434"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.048796", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-435", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-435 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.048805", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-eu-west-2-12323fa7"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:eu-west-2:123456789012:resource-435", "name": "resource-435", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "eu-west-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-435", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:eu-west-2:123456789012:resource-435"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.048805", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-436", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-436 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.048814", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-eu-central-1-66ad9464"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:eu-central-1:123456789012:resource-436", "name": "resource-436", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "eu-central-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-436", "type": "acm", "uid": "arn:aws:acm:eu-central-1:123456789012:resource-436"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.048814", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-437", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-437 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.048837", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-southeast-1-240532cb"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:ap-southeast-1:123456789012:resource-437", "name": "resource-437", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "ap-southeast-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-437", "type": "apigateway", "uid": "arn:aws:apigateway:ap-southeast-1:123456789012:resource-437"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.048837", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-438", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-438 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.048846", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-ap-southeast-2-4d8e0fcb"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:ap-southeast-2:123456789012:resource-438", "name": "resource-438", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "ap-southeast-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-438", "type": "cloudfront", "uid": "arn:aws:cloudfront:ap-southeast-2:123456789012:resource-438"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.048846", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-439", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-439 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.048855", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-northeast-1-abd52253"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:ap-northeast-1:123456789012:resource-439", "name": "resource-439", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "ap-northeast-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-439", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:ap-northeast-1:123456789012:resource-439"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.048855", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-440", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-440 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.048864", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-1-2b0ef0bd"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-east-1:123456789012:resource-440", "name": "resource-440", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-east-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-440", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-east-1:123456789012:resource-440"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.048864", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-441", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-441 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.048914", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-2-d77bc4cd"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-east-2:123456789012:resource-441", "name": "resource-441", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-east-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-441", "type": "config", "uid": "arn:aws:config:us-east-2:123456789012:resource-441"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.048914", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-442", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-442 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.048938", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-west-1-85f1ad3c"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-west-1:123456789012:resource-442", "name": "resource-442", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-west-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-442", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-west-1:123456789012:resource-442"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.048938", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-443", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-443 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.048951", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-us-west-2-84e61ce6"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-west-2:123456789012:resource-443", "name": "resource-443", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-west-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-443", "type": "ec2", "uid": "arn:aws:ec2:us-west-2:123456789012:resource-443"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.048951", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-444", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-444 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.048962", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-west-1-3fa694a3"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:eu-west-1:123456789012:resource-444", "name": "resource-444", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "eu-west-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-444", "type": "ecr", "uid": "arn:aws:ecr:eu-west-1:123456789012:resource-444"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.048962", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-445", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-445 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.048974", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-2-f0f154e8"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:eu-west-2:123456789012:resource-445", "name": "resource-445", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "eu-west-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-445", "type": "ecs", "uid": "arn:aws:ecs:eu-west-2:123456789012:resource-445"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.048974", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-446", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-446 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.048984", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-central-1-6713e792"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:eu-central-1:123456789012:resource-446", "name": "resource-446", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "eu-central-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-446", "type": "efs", "uid": "arn:aws:efs:eu-central-1:123456789012:resource-446"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.048984", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-447", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-447 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.048994", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-southeast-1-dd8aed9e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:ap-southeast-1:123456789012:resource-447", "name": "resource-447", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "ap-southeast-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-447", "type": "eks", "uid": "arn:aws:eks:ap-southeast-1:123456789012:resource-447"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.048994", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-448", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-448 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.049005", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-2-9f8cb61f"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:ap-southeast-2:123456789012:resource-448", "name": "resource-448", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "ap-southeast-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-448", "type": "elasticache", "uid": "arn:aws:elasticache:ap-southeast-2:123456789012:resource-448"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.049005", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-449", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-449 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.049016", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-ap-northeast-1-40c714b4"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:ap-northeast-1:123456789012:resource-449", "name": "resource-449", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "ap-northeast-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-449", "type": "elb", "uid": "arn:aws:elb:ap-northeast-1:123456789012:resource-449"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.049016", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-450", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-450 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.049026", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-1-17900a3c"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-east-1:123456789012:resource-450", "name": "resource-450", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-east-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-450", "type": "emr", "uid": "arn:aws:emr:us-east-1:123456789012:resource-450"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.049026", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-451", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-451 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.049037", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-east-2-f5b30509"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-east-2:123456789012:resource-451", "name": "resource-451", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-east-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-451", "type": "guardduty", "uid": "arn:aws:guardduty:us-east-2:123456789012:resource-451"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.049037", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-452", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-452 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.049061", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-us-west-1-0070e32b"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-west-1:123456789012:resource-452", "name": "resource-452", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-west-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-452", "type": "iam", "uid": "arn:aws:iam:us-west-1:123456789012:resource-452"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.049061", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-453", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-453 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.049076", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-2-ad5c0ec7"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-west-2:123456789012:resource-453", "name": "resource-453", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-west-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-453", "type": "kms", "uid": "arn:aws:kms:us-west-2:123456789012:resource-453"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.049076", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-454", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-454 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.049088", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-eu-west-1-3504cac1"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:eu-west-1:123456789012:resource-454", "name": "resource-454", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "eu-west-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-454", "type": "lambda", "uid": "arn:aws:lambda:eu-west-1:123456789012:resource-454"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.049088", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-455", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-455 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.049098", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-eu-west-2-88aecd8c"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:eu-west-2:123456789012:resource-455", "name": "resource-455", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "eu-west-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-455", "type": "rds", "uid": "arn:aws:rds:eu-west-2:123456789012:resource-455"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.049098", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-456", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-456 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.049107", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-eu-central-1-f924b385"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:eu-central-1:123456789012:resource-456", "name": "resource-456", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "eu-central-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-456", "type": "redshift", "uid": "arn:aws:redshift:eu-central-1:123456789012:resource-456"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.049107", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-457", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-457 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.049118", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-ap-southeast-1-16af003c"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:ap-southeast-1:123456789012:resource-457", "name": "resource-457", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "ap-southeast-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-457", "type": "s3", "uid": "arn:aws:s3:ap-southeast-1:123456789012:resource-457"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.049118", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-458", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-458 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.049127", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-2-fcc656ba"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:ap-southeast-2:123456789012:resource-458", "name": "resource-458", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "ap-southeast-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-458", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:ap-southeast-2:123456789012:resource-458"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.049127", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-459", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-459 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.049136", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-northeast-1-db816bb6"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:ap-northeast-1:123456789012:resource-459", "name": "resource-459", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "ap-northeast-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-459", "type": "sns", "uid": "arn:aws:sns:ap-northeast-1:123456789012:resource-459"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.049136", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-460", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-460 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.049146", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-1-4260f4cc"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-east-1:123456789012:resource-460", "name": "resource-460", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-east-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-460", "type": "sqs", "uid": "arn:aws:sqs:us-east-1:123456789012:resource-460"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.049146", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-461", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-461 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.049169", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-2-e4ef1216"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-east-2:123456789012:resource-461", "name": "resource-461", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-east-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-461", "type": "ssm", "uid": "arn:aws:ssm:us-east-2:123456789012:resource-461"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.049169", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-462", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-462 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.049178", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-1-750668ea"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-west-1:123456789012:resource-462", "name": "resource-462", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-west-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-462", "type": "vpc", "uid": "arn:aws:vpc:us-west-1:123456789012:resource-462"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.049178", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-463", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-463 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.049188", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-2-cad03cc4"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-west-2:123456789012:resource-463", "name": "resource-463", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-west-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-463", "type": "waf", "uid": "arn:aws:waf:us-west-2:123456789012:resource-463"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.049188", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-464", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-464 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.049197", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-eu-west-1-422c67b0"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:eu-west-1:123456789012:resource-464", "name": "resource-464", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "eu-west-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-464", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:eu-west-1:123456789012:resource-464"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.049197", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-465", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-465 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.049206", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-eu-west-2-f0c3d2bd"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:eu-west-2:123456789012:resource-465", "name": "resource-465", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "eu-west-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-465", "type": "acm", "uid": "arn:aws:acm:eu-west-2:123456789012:resource-465"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.049206", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-466", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-466 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.049216", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-central-1-ed30cdcb"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:eu-central-1:123456789012:resource-466", "name": "resource-466", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "eu-central-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-466", "type": "apigateway", "uid": "arn:aws:apigateway:eu-central-1:123456789012:resource-466"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.049216", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-467", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-467 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.049225", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-southeast-1-81807da4"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:ap-southeast-1:123456789012:resource-467", "name": "resource-467", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "ap-southeast-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-467", "type": "cloudfront", "uid": "arn:aws:cloudfront:ap-southeast-1:123456789012:resource-467"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.049225", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-468", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-468 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.049234", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-ap-southeast-2-3b516870"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:ap-southeast-2:123456789012:resource-468", "name": "resource-468", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "ap-southeast-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-468", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:ap-southeast-2:123456789012:resource-468"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.049234", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-469", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-469 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.049244", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-northeast-1-073f1dae"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:ap-northeast-1:123456789012:resource-469", "name": "resource-469", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "ap-northeast-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-469", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:ap-northeast-1:123456789012:resource-469"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.049244", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-470", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-470 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.049254", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-1-cb9b5f80"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-east-1:123456789012:resource-470", "name": "resource-470", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-east-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-470", "type": "config", "uid": "arn:aws:config:us-east-1:123456789012:resource-470"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.049254", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-471", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-471 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.049262", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-east-2-026600dc"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-east-2:123456789012:resource-471", "name": "resource-471", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-east-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-471", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-east-2:123456789012:resource-471"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.049262", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-472", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-472 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.049272", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-us-west-1-9bdf208f"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-west-1:123456789012:resource-472", "name": "resource-472", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-west-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-472", "type": "ec2", "uid": "arn:aws:ec2:us-west-1:123456789012:resource-472"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.049272", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-473", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-473 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.049281", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-west-2-d12b09f5"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-west-2:123456789012:resource-473", "name": "resource-473", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-west-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-473", "type": "ecr", "uid": "arn:aws:ecr:us-west-2:123456789012:resource-473"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.049281", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-474", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-474 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.049290", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-1-931086ed"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:eu-west-1:123456789012:resource-474", "name": "resource-474", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "eu-west-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-474", "type": "ecs", "uid": "arn:aws:ecs:eu-west-1:123456789012:resource-474"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.049290", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-475", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-475 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.049300", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-2-e71ccdb2"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:eu-west-2:123456789012:resource-475", "name": "resource-475", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "eu-west-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-475", "type": "efs", "uid": "arn:aws:efs:eu-west-2:123456789012:resource-475"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.049300", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-476", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-476 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.049309", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-eu-central-1-257732cc"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:eu-central-1:123456789012:resource-476", "name": "resource-476", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "eu-central-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-476", "type": "eks", "uid": "arn:aws:eks:eu-central-1:123456789012:resource-476"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.049309", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-477", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-477 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.049318", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-1-203c5abd"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:ap-southeast-1:123456789012:resource-477", "name": "resource-477", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "ap-southeast-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-477", "type": "elasticache", "uid": "arn:aws:elasticache:ap-southeast-1:123456789012:resource-477"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.049318", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-478", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-478 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.049328", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-ap-southeast-2-d2e15748"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:ap-southeast-2:123456789012:resource-478", "name": "resource-478", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "ap-southeast-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-478", "type": "elb", "uid": "arn:aws:elb:ap-southeast-2:123456789012:resource-478"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.049328", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-479", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-479 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.049337", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-northeast-1-d6135174"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:ap-northeast-1:123456789012:resource-479", "name": "resource-479", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "ap-northeast-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-479", "type": "emr", "uid": "arn:aws:emr:ap-northeast-1:123456789012:resource-479"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.049337", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-480", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-480 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.049346", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-east-1-6d9c430b"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-east-1:123456789012:resource-480", "name": "resource-480", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-east-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-480", "type": "guardduty", "uid": "arn:aws:guardduty:us-east-1:123456789012:resource-480"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.049346", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-481", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-481 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.049356", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-us-east-2-16939c7f"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-east-2:123456789012:resource-481", "name": "resource-481", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-east-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-481", "type": "iam", "uid": "arn:aws:iam:us-east-2:123456789012:resource-481"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.049356", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-482", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-482 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.049366", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-1-21eeef49"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-west-1:123456789012:resource-482", "name": "resource-482", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-west-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-482", "type": "kms", "uid": "arn:aws:kms:us-west-1:123456789012:resource-482"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.049366", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-483", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-483 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.049375", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-west-2-82db3442"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-west-2:123456789012:resource-483", "name": "resource-483", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-west-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-483", "type": "lambda", "uid": "arn:aws:lambda:us-west-2:123456789012:resource-483"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.049375", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-484", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-484 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.049385", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-eu-west-1-164992ee"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:eu-west-1:123456789012:resource-484", "name": "resource-484", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "eu-west-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-484", "type": "rds", "uid": "arn:aws:rds:eu-west-1:123456789012:resource-484"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.049385", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-485", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-485 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.049408", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-2-77c32c71"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:eu-west-2:123456789012:resource-485", "name": "resource-485", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "eu-west-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-485", "type": "redshift", "uid": "arn:aws:redshift:eu-west-2:123456789012:resource-485"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.049408", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-486", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-486 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.049417", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-eu-central-1-b1291194"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:eu-central-1:123456789012:resource-486", "name": "resource-486", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "eu-central-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-486", "type": "s3", "uid": "arn:aws:s3:eu-central-1:123456789012:resource-486"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.049417", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-487", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-487 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.049427", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-1-4dc2db4c"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:ap-southeast-1:123456789012:resource-487", "name": "resource-487", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "ap-southeast-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-487", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:ap-southeast-1:123456789012:resource-487"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.049427", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-488", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-488 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.049436", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-2-9b30bafd"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:ap-southeast-2:123456789012:resource-488", "name": "resource-488", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "ap-southeast-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-488", "type": "sns", "uid": "arn:aws:sns:ap-southeast-2:123456789012:resource-488"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.049436", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-489", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-489 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.049445", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-northeast-1-dd167123"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:ap-northeast-1:123456789012:resource-489", "name": "resource-489", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "ap-northeast-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-489", "type": "sqs", "uid": "arn:aws:sqs:ap-northeast-1:123456789012:resource-489"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.049445", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-490", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-490 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.049455", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-1-33adc73d"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-east-1:123456789012:resource-490", "name": "resource-490", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-east-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-490", "type": "ssm", "uid": "arn:aws:ssm:us-east-1:123456789012:resource-490"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.049455", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-491", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-491 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.049464", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-2-eae18aaa"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-east-2:123456789012:resource-491", "name": "resource-491", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-east-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-491", "type": "vpc", "uid": "arn:aws:vpc:us-east-2:123456789012:resource-491"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.049464", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-492", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-492 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.049472", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-1-a96ca373"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-west-1:123456789012:resource-492", "name": "resource-492", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-west-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-492", "type": "waf", "uid": "arn:aws:waf:us-west-1:123456789012:resource-492"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.049472", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-493", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-493 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.049482", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-us-west-2-32a310d9"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-west-2:123456789012:resource-493", "name": "resource-493", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-west-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-493", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-west-2:123456789012:resource-493"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.049482", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-494", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-494 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.049490", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-eu-west-1-e6373fdf"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:eu-west-1:123456789012:resource-494", "name": "resource-494", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "eu-west-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-494", "type": "acm", "uid": "arn:aws:acm:eu-west-1:123456789012:resource-494"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.049490", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-495", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-495 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.049499", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-eu-west-2-9b4a960f"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:eu-west-2:123456789012:resource-495", "name": "resource-495", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "eu-west-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-495", "type": "apigateway", "uid": "arn:aws:apigateway:eu-west-2:123456789012:resource-495"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.049499", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-496", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-496 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.049509", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-central-1-2c83fc78"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:eu-central-1:123456789012:resource-496", "name": "resource-496", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "eu-central-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-496", "type": "cloudfront", "uid": "arn:aws:cloudfront:eu-central-1:123456789012:resource-496"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.049509", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-497", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-497 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.049518", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-southeast-1-40ec929f"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:ap-southeast-1:123456789012:resource-497", "name": "resource-497", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "ap-southeast-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-497", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:ap-southeast-1:123456789012:resource-497"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.049518", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-498", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-498 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.049527", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-2-51c9419e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:ap-southeast-2:123456789012:resource-498", "name": "resource-498", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "ap-southeast-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-498", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:ap-southeast-2:123456789012:resource-498"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.049527", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-499", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-499 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.049536", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-northeast-1-e96f5606"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:ap-northeast-1:123456789012:resource-499", "name": "resource-499", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "ap-northeast-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-499", "type": "config", "uid": "arn:aws:config:ap-northeast-1:123456789012:resource-499"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.049536", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-500", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-500 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.049545", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-east-1-1eec6232"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-east-1:123456789012:resource-500", "name": "resource-500", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-east-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-500", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-east-1:123456789012:resource-500"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.049545", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-501", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-501 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.049554", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-us-east-2-7cccba4f"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-east-2:123456789012:resource-501", "name": "resource-501", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-east-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-501", "type": "ec2", "uid": "arn:aws:ec2:us-east-2:123456789012:resource-501"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.049554", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-502", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-502 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.049563", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-west-1-5eeaf337"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-west-1:123456789012:resource-502", "name": "resource-502", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-west-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-502", "type": "ecr", "uid": "arn:aws:ecr:us-west-1:123456789012:resource-502"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.049563", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-503", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-503 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.049571", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-2-844ae55f"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-west-2:123456789012:resource-503", "name": "resource-503", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-west-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-503", "type": "ecs", "uid": "arn:aws:ecs:us-west-2:123456789012:resource-503"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.049571", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-504", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-504 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.049580", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-1-2c84f4fb"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:eu-west-1:123456789012:resource-504", "name": "resource-504", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "eu-west-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-504", "type": "efs", "uid": "arn:aws:efs:eu-west-1:123456789012:resource-504"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.049580", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-505", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-505 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.049589", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-eu-west-2-10dad915"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:eu-west-2:123456789012:resource-505", "name": "resource-505", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "eu-west-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-505", "type": "eks", "uid": "arn:aws:eks:eu-west-2:123456789012:resource-505"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.049589", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-506", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-506 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.049598", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-central-1-34dabfb0"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:eu-central-1:123456789012:resource-506", "name": "resource-506", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "eu-central-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-506", "type": "elasticache", "uid": "arn:aws:elasticache:eu-central-1:123456789012:resource-506"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.049598", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-507", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-507 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.049608", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-ap-southeast-1-1f341cc4"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:ap-southeast-1:123456789012:resource-507", "name": "resource-507", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "ap-southeast-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-507", "type": "elb", "uid": "arn:aws:elb:ap-southeast-1:123456789012:resource-507"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.049608", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-508", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-508 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.049617", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-2-60b0e9a6"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:ap-southeast-2:123456789012:resource-508", "name": "resource-508", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "ap-southeast-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-508", "type": "emr", "uid": "arn:aws:emr:ap-southeast-2:123456789012:resource-508"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.049617", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-509", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-509 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.049640", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-ap-northeast-1-3bc1b06e"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:ap-northeast-1:123456789012:resource-509", "name": "resource-509", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "ap-northeast-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-509", "type": "guardduty", "uid": "arn:aws:guardduty:ap-northeast-1:123456789012:resource-509"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.049640", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-510", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-510 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.049649", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-us-east-1-cb074b82"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-east-1:123456789012:resource-510", "name": "resource-510", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-east-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-510", "type": "iam", "uid": "arn:aws:iam:us-east-1:123456789012:resource-510"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.049649", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-511", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-511 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.049658", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-2-85cda129"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-east-2:123456789012:resource-511", "name": "resource-511", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-east-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-511", "type": "kms", "uid": "arn:aws:kms:us-east-2:123456789012:resource-511"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.049658", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-512", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-512 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.049667", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-us-west-1-f87033f3"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-west-1:123456789012:resource-512", "name": "resource-512", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-west-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-512", "type": "lambda", "uid": "arn:aws:lambda:us-west-1:123456789012:resource-512"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.049667", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-513", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-513 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.049676", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-us-west-2-264be275"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-west-2:123456789012:resource-513", "name": "resource-513", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-west-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-513", "type": "rds", "uid": "arn:aws:rds:us-west-2:123456789012:resource-513"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.049676", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-514", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-514 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.049685", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-1-ec1cb060"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:eu-west-1:123456789012:resource-514", "name": "resource-514", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "eu-west-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-514", "type": "redshift", "uid": "arn:aws:redshift:eu-west-1:123456789012:resource-514"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.049685", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-515", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-515 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.049694", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-eu-west-2-ce8b692e"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:eu-west-2:123456789012:resource-515", "name": "resource-515", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "eu-west-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-515", "type": "s3", "uid": "arn:aws:s3:eu-west-2:123456789012:resource-515"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.049694", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-516", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-516 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.049703", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-central-1-0fe906c1"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:eu-central-1:123456789012:resource-516", "name": "resource-516", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "eu-central-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-516", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:eu-central-1:123456789012:resource-516"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.049703", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-517", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-517 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.049713", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-1-51dc7d7e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:ap-southeast-1:123456789012:resource-517", "name": "resource-517", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "ap-southeast-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-517", "type": "sns", "uid": "arn:aws:sns:ap-southeast-1:123456789012:resource-517"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.049713", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-518", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-518 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.049722", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-2-0300c066"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:ap-southeast-2:123456789012:resource-518", "name": "resource-518", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "ap-southeast-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-518", "type": "sqs", "uid": "arn:aws:sqs:ap-southeast-2:123456789012:resource-518"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.049722", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-519", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-519 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.049730", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-ap-northeast-1-acd27c7f"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:ap-northeast-1:123456789012:resource-519", "name": "resource-519", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "ap-northeast-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-519", "type": "ssm", "uid": "arn:aws:ssm:ap-northeast-1:123456789012:resource-519"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.049730", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-520", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-520 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.049739", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-1-16258514"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-east-1:123456789012:resource-520", "name": "resource-520", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-east-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-520", "type": "vpc", "uid": "arn:aws:vpc:us-east-1:123456789012:resource-520"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.049739", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-521", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-521 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.049748", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-2-04b7ac5d"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-east-2:123456789012:resource-521", "name": "resource-521", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-east-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-521", "type": "waf", "uid": "arn:aws:waf:us-east-2:123456789012:resource-521"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.049748", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-522", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-522 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.049757", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-us-west-1-f697528a"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-west-1:123456789012:resource-522", "name": "resource-522", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-west-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-522", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-west-1:123456789012:resource-522"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.049757", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-523", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-523 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.049766", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-west-2-8e8831cb"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-west-2:123456789012:resource-523", "name": "resource-523", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-west-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-523", "type": "acm", "uid": "arn:aws:acm:us-west-2:123456789012:resource-523"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.049766", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-524", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-524 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.049775", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-west-1-36a79e94"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:eu-west-1:123456789012:resource-524", "name": "resource-524", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "eu-west-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-524", "type": "apigateway", "uid": "arn:aws:apigateway:eu-west-1:123456789012:resource-524"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.049775", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-525", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-525 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.049784", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-eu-west-2-86125e42"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:eu-west-2:123456789012:resource-525", "name": "resource-525", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "eu-west-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-525", "type": "cloudfront", "uid": "arn:aws:cloudfront:eu-west-2:123456789012:resource-525"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.049784", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-526", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-526 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.049793", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-central-1-87430eb5"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-central-1:123456789012:resource-526", "name": "resource-526", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-central-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-526", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-central-1:123456789012:resource-526"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.049793", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-527", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-527 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.049801", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-1-e3f52689"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:ap-southeast-1:123456789012:resource-527", "name": "resource-527", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "ap-southeast-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-527", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:ap-southeast-1:123456789012:resource-527"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.049801", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-528", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-528 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.049810", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-2-d83ad38f"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:ap-southeast-2:123456789012:resource-528", "name": "resource-528", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "ap-southeast-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-528", "type": "config", "uid": "arn:aws:config:ap-southeast-2:123456789012:resource-528"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.049810", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-529", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-529 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.049820", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-northeast-1-15aa9661"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-northeast-1:123456789012:resource-529", "name": "resource-529", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-northeast-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-529", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-northeast-1:123456789012:resource-529"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.049820", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-530", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-530 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.049828", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-us-east-1-e4788d71"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-east-1:123456789012:resource-530", "name": "resource-530", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-east-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-530", "type": "ec2", "uid": "arn:aws:ec2:us-east-1:123456789012:resource-530"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.049828", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-531", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-531 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.049837", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-east-2-107261e1"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-east-2:123456789012:resource-531", "name": "resource-531", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-east-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-531", "type": "ecr", "uid": "arn:aws:ecr:us-east-2:123456789012:resource-531"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.049837", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-532", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-532 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.049846", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-1-a6bd86e5"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-west-1:123456789012:resource-532", "name": "resource-532", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-west-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-532", "type": "ecs", "uid": "arn:aws:ecs:us-west-1:123456789012:resource-532"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.049846", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-533", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-533 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.049869", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-2-04214397"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-west-2:123456789012:resource-533", "name": "resource-533", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-west-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-533", "type": "efs", "uid": "arn:aws:efs:us-west-2:123456789012:resource-533"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.049869", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-534", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-534 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.049878", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-eu-west-1-c0524542"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:eu-west-1:123456789012:resource-534", "name": "resource-534", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "eu-west-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-534", "type": "eks", "uid": "arn:aws:eks:eu-west-1:123456789012:resource-534"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.049878", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-535", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-535 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.049887", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-2-40745819"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:eu-west-2:123456789012:resource-535", "name": "resource-535", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "eu-west-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-535", "type": "elasticache", "uid": "arn:aws:elasticache:eu-west-2:123456789012:resource-535"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.049887", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-536", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-536 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.049896", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-eu-central-1-c67d8109"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-central-1:123456789012:resource-536", "name": "resource-536", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-central-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-536", "type": "elb", "uid": "arn:aws:elb:eu-central-1:123456789012:resource-536"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.049896", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-537", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-537 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.049905", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-1-c9ba5e18"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:ap-southeast-1:123456789012:resource-537", "name": "resource-537", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "ap-southeast-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-537", "type": "emr", "uid": "arn:aws:emr:ap-southeast-1:123456789012:resource-537"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.049905", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-538", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-538 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.049914", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-2-c46b0774"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:ap-southeast-2:123456789012:resource-538", "name": "resource-538", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "ap-southeast-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-538", "type": "guardduty", "uid": "arn:aws:guardduty:ap-southeast-2:123456789012:resource-538"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.049914", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-539", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-539 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.049923", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-ap-northeast-1-f9eb2fb6"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-northeast-1:123456789012:resource-539", "name": "resource-539", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-northeast-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-539", "type": "iam", "uid": "arn:aws:iam:ap-northeast-1:123456789012:resource-539"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.049923", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-540", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-540 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.049932", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-1-2e5a2b34"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-east-1:123456789012:resource-540", "name": "resource-540", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-east-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-540", "type": "kms", "uid": "arn:aws:kms:us-east-1:123456789012:resource-540"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.049932", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-541", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-541 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.049941", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-east-2-bbc6cc33"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-east-2:123456789012:resource-541", "name": "resource-541", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-east-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-541", "type": "lambda", "uid": "arn:aws:lambda:us-east-2:123456789012:resource-541"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.049941", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-542", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-542 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.049949", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-us-west-1-de0f7b2b"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-west-1:123456789012:resource-542", "name": "resource-542", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-west-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-542", "type": "rds", "uid": "arn:aws:rds:us-west-1:123456789012:resource-542"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.049949", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-543", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-543 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.049958", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-2-287f01dc"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-west-2:123456789012:resource-543", "name": "resource-543", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-west-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-543", "type": "redshift", "uid": "arn:aws:redshift:us-west-2:123456789012:resource-543"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.049958", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-544", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-544 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.049967", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-eu-west-1-ff46c613"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:eu-west-1:123456789012:resource-544", "name": "resource-544", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "eu-west-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-544", "type": "s3", "uid": "arn:aws:s3:eu-west-1:123456789012:resource-544"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.049967", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-545", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-545 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.049976", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-2-242000f2"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:eu-west-2:123456789012:resource-545", "name": "resource-545", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "eu-west-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-545", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:eu-west-2:123456789012:resource-545"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.049976", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-546", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-546 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.049984", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-central-1-027c93e6"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-central-1:123456789012:resource-546", "name": "resource-546", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-central-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-546", "type": "sns", "uid": "arn:aws:sns:eu-central-1:123456789012:resource-546"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.049984", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-547", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-547 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.049993", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-1-0e9df690"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:ap-southeast-1:123456789012:resource-547", "name": "resource-547", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "ap-southeast-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-547", "type": "sqs", "uid": "arn:aws:sqs:ap-southeast-1:123456789012:resource-547"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.049993", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-548", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-548 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.050002", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-2-9be60fee"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:ap-southeast-2:123456789012:resource-548", "name": "resource-548", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "ap-southeast-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-548", "type": "ssm", "uid": "arn:aws:ssm:ap-southeast-2:123456789012:resource-548"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.050002", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-549", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-549 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.050010", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-northeast-1-68899e9e"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-northeast-1:123456789012:resource-549", "name": "resource-549", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-northeast-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-549", "type": "vpc", "uid": "arn:aws:vpc:ap-northeast-1:123456789012:resource-549"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.050010", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-550", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-550 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.050019", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-1-cda74ada"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-east-1:123456789012:resource-550", "name": "resource-550", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-east-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-550", "type": "waf", "uid": "arn:aws:waf:us-east-1:123456789012:resource-550"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.050019", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-551", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-551 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.050028", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-us-east-2-de98a5ac"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-east-2:123456789012:resource-551", "name": "resource-551", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-east-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-551", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-east-2:123456789012:resource-551"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.050028", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-552", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-552 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.050037", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-us-west-1-4a306098"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-west-1:123456789012:resource-552", "name": "resource-552", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-west-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-552", "type": "acm", "uid": "arn:aws:acm:us-west-1:123456789012:resource-552"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.050037", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-553", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-553 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.050046", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-west-2-e16ca894"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-west-2:123456789012:resource-553", "name": "resource-553", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-west-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-553", "type": "apigateway", "uid": "arn:aws:apigateway:us-west-2:123456789012:resource-553"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.050046", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-554", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-554 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.050054", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-west-1-4a91c0d1"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:eu-west-1:123456789012:resource-554", "name": "resource-554", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "eu-west-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-554", "type": "cloudfront", "uid": "arn:aws:cloudfront:eu-west-1:123456789012:resource-554"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.050054", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-555", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-555 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.050063", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-eu-west-2-23099e23"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-west-2:123456789012:resource-555", "name": "resource-555", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-west-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-555", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-west-2:123456789012:resource-555"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.050063", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-556", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-556 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.050072", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-central-1-35fb009a"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-central-1:123456789012:resource-556", "name": "resource-556", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-central-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-556", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-central-1:123456789012:resource-556"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.050072", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-557", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-557 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.050095", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-1-622fde63"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:ap-southeast-1:123456789012:resource-557", "name": "resource-557", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "ap-southeast-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-557", "type": "config", "uid": "arn:aws:config:ap-southeast-1:123456789012:resource-557"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.050095", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-558", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-558 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.050104", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-ap-southeast-2-cd1d00b8"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-southeast-2:123456789012:resource-558", "name": "resource-558", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-southeast-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-558", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-southeast-2:123456789012:resource-558"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.050104", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-559", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-559 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.050113", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-ap-northeast-1-7a92bd7f"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-northeast-1:123456789012:resource-559", "name": "resource-559", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-northeast-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-559", "type": "ec2", "uid": "arn:aws:ec2:ap-northeast-1:123456789012:resource-559"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.050113", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-560", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-560 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.050122", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-east-1-8aa6f214"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-east-1:123456789012:resource-560", "name": "resource-560", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-east-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-560", "type": "ecr", "uid": "arn:aws:ecr:us-east-1:123456789012:resource-560"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.050122", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-561", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-561 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.050131", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-2-ed1dcc6c"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-east-2:123456789012:resource-561", "name": "resource-561", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-east-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-561", "type": "ecs", "uid": "arn:aws:ecs:us-east-2:123456789012:resource-561"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.050131", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-562", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-562 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.050140", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-1-e8401963"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-west-1:123456789012:resource-562", "name": "resource-562", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-west-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-562", "type": "efs", "uid": "arn:aws:efs:us-west-1:123456789012:resource-562"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.050140", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-563", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-563 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.050154", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-west-2-1e5b7eda"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-west-2:123456789012:resource-563", "name": "resource-563", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-west-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-563", "type": "eks", "uid": "arn:aws:eks:us-west-2:123456789012:resource-563"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.050154", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-564", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-564 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.050163", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-1-498260f4"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:eu-west-1:123456789012:resource-564", "name": "resource-564", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "eu-west-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-564", "type": "elasticache", "uid": "arn:aws:elasticache:eu-west-1:123456789012:resource-564"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.050163", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-565", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-565 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.050172", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-eu-west-2-851f7ad6"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-west-2:123456789012:resource-565", "name": "resource-565", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-west-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-565", "type": "elb", "uid": "arn:aws:elb:eu-west-2:123456789012:resource-565"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.050172", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-566", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-566 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.050180", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-central-1-1010d704"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-central-1:123456789012:resource-566", "name": "resource-566", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-central-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-566", "type": "emr", "uid": "arn:aws:emr:eu-central-1:123456789012:resource-566"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.050180", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-567", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-567 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.050189", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-1-bcfd6b5c"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:ap-southeast-1:123456789012:resource-567", "name": "resource-567", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "ap-southeast-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-567", "type": "guardduty", "uid": "arn:aws:guardduty:ap-southeast-1:123456789012:resource-567"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.050189", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-568", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-568 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.050199", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-ap-southeast-2-abbc4dbd"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-southeast-2:123456789012:resource-568", "name": "resource-568", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-southeast-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-568", "type": "iam", "uid": "arn:aws:iam:ap-southeast-2:123456789012:resource-568"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.050199", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-569", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-569 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.050209", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-northeast-1-34093db3"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-northeast-1:123456789012:resource-569", "name": "resource-569", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-northeast-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-569", "type": "kms", "uid": "arn:aws:kms:ap-northeast-1:123456789012:resource-569"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.050209", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-570", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-570 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.050219", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-us-east-1-cde2b2ed"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-east-1:123456789012:resource-570", "name": "resource-570", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-east-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-570", "type": "lambda", "uid": "arn:aws:lambda:us-east-1:123456789012:resource-570"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.050219", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-571", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-571 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.050230", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-us-east-2-24e1a10b"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-east-2:123456789012:resource-571", "name": "resource-571", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-east-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-571", "type": "rds", "uid": "arn:aws:rds:us-east-2:123456789012:resource-571"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.050230", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-572", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-572 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.050238", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-1-6212c5b6"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-west-1:123456789012:resource-572", "name": "resource-572", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-west-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-572", "type": "redshift", "uid": "arn:aws:redshift:us-west-1:123456789012:resource-572"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.050238", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-573", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-573 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.050246", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-us-west-2-c2703f12"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-west-2:123456789012:resource-573", "name": "resource-573", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-west-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-573", "type": "s3", "uid": "arn:aws:s3:us-west-2:123456789012:resource-573"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.050246", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-574", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-574 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.050256", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-1-653eb11a"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:eu-west-1:123456789012:resource-574", "name": "resource-574", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "eu-west-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-574", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:eu-west-1:123456789012:resource-574"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.050256", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-575", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-575 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.050266", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-2-ed2c206d"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-west-2:123456789012:resource-575", "name": "resource-575", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-west-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-575", "type": "sns", "uid": "arn:aws:sns:eu-west-2:123456789012:resource-575"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.050266", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-576", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-576 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.050278", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-central-1-f9f8c839"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-central-1:123456789012:resource-576", "name": "resource-576", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-central-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-576", "type": "sqs", "uid": "arn:aws:sqs:eu-central-1:123456789012:resource-576"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.050278", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-577", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-577 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.050287", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-1-2b887a40"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:ap-southeast-1:123456789012:resource-577", "name": "resource-577", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "ap-southeast-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-577", "type": "ssm", "uid": "arn:aws:ssm:ap-southeast-1:123456789012:resource-577"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.050287", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-578", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-578 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.050296", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-2-548aa0b5"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-southeast-2:123456789012:resource-578", "name": "resource-578", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-southeast-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-578", "type": "vpc", "uid": "arn:aws:vpc:ap-southeast-2:123456789012:resource-578"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.050296", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-579", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-579 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.050305", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-northeast-1-237faeee"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-northeast-1:123456789012:resource-579", "name": "resource-579", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-northeast-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-579", "type": "waf", "uid": "arn:aws:waf:ap-northeast-1:123456789012:resource-579"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.050305", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-580", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-580 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.050314", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-us-east-1-e1cdc833"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-east-1:123456789012:resource-580", "name": "resource-580", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-east-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-580", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-east-1:123456789012:resource-580"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.050314", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-581", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-581 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.050337", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-east-2-ad22149a"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-east-2:123456789012:resource-581", "name": "resource-581", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-east-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-581", "type": "acm", "uid": "arn:aws:acm:us-east-2:123456789012:resource-581"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.050337", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-582", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-582 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.050345", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-west-1-e47f6a26"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-west-1:123456789012:resource-582", "name": "resource-582", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-west-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-582", "type": "apigateway", "uid": "arn:aws:apigateway:us-west-1:123456789012:resource-582"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.050345", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-583", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-583 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.050354", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-west-2-725b476c"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-west-2:123456789012:resource-583", "name": "resource-583", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-west-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-583", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-west-2:123456789012:resource-583"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.050354", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-584", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-584 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.050366", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-west-1-36f34a4f"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-west-1:123456789012:resource-584", "name": "resource-584", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-west-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-584", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-west-1:123456789012:resource-584"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.050366", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-585", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-585 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.050374", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-2-cdaa0e36"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-west-2:123456789012:resource-585", "name": "resource-585", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-west-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-585", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-west-2:123456789012:resource-585"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.050374", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-586", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-586 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.050386", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-central-1-db807dc3"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-central-1:123456789012:resource-586", "name": "resource-586", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-central-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-586", "type": "config", "uid": "arn:aws:config:eu-central-1:123456789012:resource-586"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.050386", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-587", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-587 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.050395", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-southeast-1-d9b72c74"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-southeast-1:123456789012:resource-587", "name": "resource-587", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-southeast-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-587", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-southeast-1:123456789012:resource-587"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.050395", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-588", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-588 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.050404", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-ap-southeast-2-22bb8a98"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-southeast-2:123456789012:resource-588", "name": "resource-588", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-southeast-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-588", "type": "ec2", "uid": "arn:aws:ec2:ap-southeast-2:123456789012:resource-588"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.050404", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-589", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-589 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.050416", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-northeast-1-fbf914ed"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-northeast-1:123456789012:resource-589", "name": "resource-589", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-northeast-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-589", "type": "ecr", "uid": "arn:aws:ecr:ap-northeast-1:123456789012:resource-589"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.050416", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-590", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-590 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.050424", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-1-58a9fdd8"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-east-1:123456789012:resource-590", "name": "resource-590", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-east-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-590", "type": "ecs", "uid": "arn:aws:ecs:us-east-1:123456789012:resource-590"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.050424", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-591", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-591 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.050433", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-2-09be85b6"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-east-2:123456789012:resource-591", "name": "resource-591", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-east-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-591", "type": "efs", "uid": "arn:aws:efs:us-east-2:123456789012:resource-591"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.050433", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-592", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-592 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.050446", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-us-west-1-3800f999"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-west-1:123456789012:resource-592", "name": "resource-592", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-west-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-592", "type": "eks", "uid": "arn:aws:eks:us-west-1:123456789012:resource-592"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.050446", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-593", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-593 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.050457", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-2-27bcaffa"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-west-2:123456789012:resource-593", "name": "resource-593", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-west-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-593", "type": "elasticache", "uid": "arn:aws:elasticache:us-west-2:123456789012:resource-593"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.050457", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-594", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-594 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.050466", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-eu-west-1-ce24a566"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-west-1:123456789012:resource-594", "name": "resource-594", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-west-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-594", "type": "elb", "uid": "arn:aws:elb:eu-west-1:123456789012:resource-594"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.050466", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-595", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-595 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.050475", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-2-1089fcdb"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-west-2:123456789012:resource-595", "name": "resource-595", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-west-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-595", "type": "emr", "uid": "arn:aws:emr:eu-west-2:123456789012:resource-595"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.050475", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-596", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-596 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.050484", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-central-1-8c6334e7"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-central-1:123456789012:resource-596", "name": "resource-596", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-central-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-596", "type": "guardduty", "uid": "arn:aws:guardduty:eu-central-1:123456789012:resource-596"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.050484", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-597", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-597 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.050492", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-ap-southeast-1-6bd75d56"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-southeast-1:123456789012:resource-597", "name": "resource-597", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-southeast-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-597", "type": "iam", "uid": "arn:aws:iam:ap-southeast-1:123456789012:resource-597"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.050492", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-598", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-598 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.050501", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-2-cced443a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-southeast-2:123456789012:resource-598", "name": "resource-598", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-southeast-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-598", "type": "kms", "uid": "arn:aws:kms:ap-southeast-2:123456789012:resource-598"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.050501", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-599", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-599 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.050510", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-northeast-1-8b0cc87e"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-northeast-1:123456789012:resource-599", "name": "resource-599", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-northeast-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-599", "type": "lambda", "uid": "arn:aws:lambda:ap-northeast-1:123456789012:resource-599"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.050510", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-600", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-600 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.050520", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-us-east-1-cf147812"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-east-1:123456789012:resource-600", "name": "resource-600", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-east-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-600", "type": "rds", "uid": "arn:aws:rds:us-east-1:123456789012:resource-600"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.050520", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-601", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-601 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.050530", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-2-98dd05b3"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-east-2:123456789012:resource-601", "name": "resource-601", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-east-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-601", "type": "redshift", "uid": "arn:aws:redshift:us-east-2:123456789012:resource-601"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.050530", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-602", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-602 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.050541", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-us-west-1-ccaedb27"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-west-1:123456789012:resource-602", "name": "resource-602", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-west-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-602", "type": "s3", "uid": "arn:aws:s3:us-west-1:123456789012:resource-602"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.050541", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-603", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-603 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.050550", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-2-b28fb0ad"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-west-2:123456789012:resource-603", "name": "resource-603", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-west-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-603", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-west-2:123456789012:resource-603"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.050550", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-604", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-604 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.050559", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-1-e0c382bf"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-west-1:123456789012:resource-604", "name": "resource-604", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-west-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-604", "type": "sns", "uid": "arn:aws:sns:eu-west-1:123456789012:resource-604"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.050559", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-605", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-605 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.050582", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-2-59c74e7e"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-west-2:123456789012:resource-605", "name": "resource-605", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-west-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-605", "type": "sqs", "uid": "arn:aws:sqs:eu-west-2:123456789012:resource-605"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.050582", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-606", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-606 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.050590", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-central-1-a600e4e4"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-central-1:123456789012:resource-606", "name": "resource-606", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-central-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-606", "type": "ssm", "uid": "arn:aws:ssm:eu-central-1:123456789012:resource-606"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.050590", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-607", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-607 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.050599", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-1-7461132a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-southeast-1:123456789012:resource-607", "name": "resource-607", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-southeast-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-607", "type": "vpc", "uid": "arn:aws:vpc:ap-southeast-1:123456789012:resource-607"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.050599", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-608", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-608 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.050609", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-2-083e4ee2"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-southeast-2:123456789012:resource-608", "name": "resource-608", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-southeast-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-608", "type": "waf", "uid": "arn:aws:waf:ap-southeast-2:123456789012:resource-608"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.050609", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-609", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-609 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.050620", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-ap-northeast-1-4d9a8395"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-609", "name": "resource-609", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-northeast-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-609", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-609"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.050620", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-610", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-610 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.050629", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-us-east-1-51bda786"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-east-1:123456789012:resource-610", "name": "resource-610", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-east-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-610", "type": "acm", "uid": "arn:aws:acm:us-east-1:123456789012:resource-610"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.050629", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-611", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-611 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.050639", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-east-2-1efe3bc0"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-east-2:123456789012:resource-611", "name": "resource-611", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-east-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-611", "type": "apigateway", "uid": "arn:aws:apigateway:us-east-2:123456789012:resource-611"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.050639", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-612", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-612 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.050648", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-west-1-637b880e"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-west-1:123456789012:resource-612", "name": "resource-612", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-west-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-612", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-west-1:123456789012:resource-612"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.050648", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-613", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-613 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.050657", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-west-2-7594c6de"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-west-2:123456789012:resource-613", "name": "resource-613", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-west-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-613", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-west-2:123456789012:resource-613"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.050657", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-614", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-614 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.050667", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-1-ad2d8592"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-west-1:123456789012:resource-614", "name": "resource-614", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-west-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-614", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-west-1:123456789012:resource-614"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.050667", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-615", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-615 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.050676", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-2-778972c5"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-west-2:123456789012:resource-615", "name": "resource-615", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-west-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-615", "type": "config", "uid": "arn:aws:config:eu-west-2:123456789012:resource-615"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.050676", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-616", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-616 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.050686", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-central-1-e7ac4760"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-central-1:123456789012:resource-616", "name": "resource-616", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-central-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-616", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-central-1:123456789012:resource-616"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.050686", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-617", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-617 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.050695", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-ap-southeast-1-42426c2a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-southeast-1:123456789012:resource-617", "name": "resource-617", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-southeast-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-617", "type": "ec2", "uid": "arn:aws:ec2:ap-southeast-1:123456789012:resource-617"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.050695", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-618", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-618 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.050704", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-ap-southeast-2-018fa3e8"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-southeast-2:123456789012:resource-618", "name": "resource-618", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-southeast-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-618", "type": "ecr", "uid": "arn:aws:ecr:ap-southeast-2:123456789012:resource-618"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.050704", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-619", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-619 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.050713", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-northeast-1-78afb36f"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-northeast-1:123456789012:resource-619", "name": "resource-619", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-northeast-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-619", "type": "ecs", "uid": "arn:aws:ecs:ap-northeast-1:123456789012:resource-619"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.050713", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-620", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-620 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.050721", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-1-cfe1de8e"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-east-1:123456789012:resource-620", "name": "resource-620", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-east-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-620", "type": "efs", "uid": "arn:aws:efs:us-east-1:123456789012:resource-620"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.050721", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-621", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-621 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.050730", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-east-2-b7fbe5c0"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-east-2:123456789012:resource-621", "name": "resource-621", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-east-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-621", "type": "eks", "uid": "arn:aws:eks:us-east-2:123456789012:resource-621"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.050730", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-622", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-622 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.050739", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-1-5d9fe4f3"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-west-1:123456789012:resource-622", "name": "resource-622", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-west-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-622", "type": "elasticache", "uid": "arn:aws:elasticache:us-west-1:123456789012:resource-622"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.050739", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-623", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-623 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.050748", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-us-west-2-41f8584e"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-west-2:123456789012:resource-623", "name": "resource-623", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-west-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-623", "type": "elb", "uid": "arn:aws:elb:us-west-2:123456789012:resource-623"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.050748", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-624", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-624 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.050758", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-1-804b8cf5"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-west-1:123456789012:resource-624", "name": "resource-624", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-west-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-624", "type": "emr", "uid": "arn:aws:emr:eu-west-1:123456789012:resource-624"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.050758", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-625", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-625 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.050767", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-west-2-99234c8e"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-west-2:123456789012:resource-625", "name": "resource-625", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-west-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-625", "type": "guardduty", "uid": "arn:aws:guardduty:eu-west-2:123456789012:resource-625"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.050767", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-626", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-626 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.050775", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-eu-central-1-d7ea280b"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-central-1:123456789012:resource-626", "name": "resource-626", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-central-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-626", "type": "iam", "uid": "arn:aws:iam:eu-central-1:123456789012:resource-626"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.050775", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-627", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-627 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.050787", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-1-aa65703d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-southeast-1:123456789012:resource-627", "name": "resource-627", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-southeast-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-627", "type": "kms", "uid": "arn:aws:kms:ap-southeast-1:123456789012:resource-627"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.050787", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-628", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-628 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.050796", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-ap-southeast-2-5745c2a3"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-southeast-2:123456789012:resource-628", "name": "resource-628", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-southeast-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-628", "type": "lambda", "uid": "arn:aws:lambda:ap-southeast-2:123456789012:resource-628"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.050796", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-629", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-629 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.050820", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-ap-northeast-1-762538c0"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-northeast-1:123456789012:resource-629", "name": "resource-629", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-northeast-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-629", "type": "rds", "uid": "arn:aws:rds:ap-northeast-1:123456789012:resource-629"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.050820", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-630", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-630 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.050829", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-1-1952e64f"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-east-1:123456789012:resource-630", "name": "resource-630", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-east-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-630", "type": "redshift", "uid": "arn:aws:redshift:us-east-1:123456789012:resource-630"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.050829", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-631", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-631 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.050838", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-us-east-2-f9efefc9"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-east-2:123456789012:resource-631", "name": "resource-631", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-east-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-631", "type": "s3", "uid": "arn:aws:s3:us-east-2:123456789012:resource-631"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.050838", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-632", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-632 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.050848", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-1-be67e4c3"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-west-1:123456789012:resource-632", "name": "resource-632", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-west-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-632", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-west-1:123456789012:resource-632"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.050848", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-633", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-633 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.050857", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-2-778982e8"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-west-2:123456789012:resource-633", "name": "resource-633", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-west-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-633", "type": "sns", "uid": "arn:aws:sns:us-west-2:123456789012:resource-633"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.050857", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-634", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-634 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.050866", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-1-fabb4ee8"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-west-1:123456789012:resource-634", "name": "resource-634", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-west-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-634", "type": "sqs", "uid": "arn:aws:sqs:eu-west-1:123456789012:resource-634"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.050866", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-635", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-635 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.050875", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-2-bf488c34"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-west-2:123456789012:resource-635", "name": "resource-635", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-west-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-635", "type": "ssm", "uid": "arn:aws:ssm:eu-west-2:123456789012:resource-635"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.050875", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-636", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-636 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.050883", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-eu-central-1-6d906183"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:eu-central-1:123456789012:resource-636", "name": "resource-636", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "eu-central-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-636", "type": "vpc", "uid": "arn:aws:vpc:eu-central-1:123456789012:resource-636"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.050883", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-637", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-637 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.050894", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-1-5cc2c937"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-southeast-1:123456789012:resource-637", "name": "resource-637", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-southeast-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-637", "type": "waf", "uid": "arn:aws:waf:ap-southeast-1:123456789012:resource-637"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.050894", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-638", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-638 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.050903", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-ap-southeast-2-55029b79"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-southeast-2:123456789012:resource-638", "name": "resource-638", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-southeast-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-638", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-southeast-2:123456789012:resource-638"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.050903", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-639", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-639 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.050911", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-northeast-1-3a75176f"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:ap-northeast-1:123456789012:resource-639", "name": "resource-639", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "ap-northeast-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-639", "type": "acm", "uid": "arn:aws:acm:ap-northeast-1:123456789012:resource-639"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.050911", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-640", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-640 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.050924", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-east-1-93e0e772"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-east-1:123456789012:resource-640", "name": "resource-640", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-east-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-640", "type": "apigateway", "uid": "arn:aws:apigateway:us-east-1:123456789012:resource-640"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.050924", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-641", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-641 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.050933", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-east-2-03f324fb"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-east-2:123456789012:resource-641", "name": "resource-641", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-east-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-641", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-east-2:123456789012:resource-641"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.050933", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-642", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-642 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.050943", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-west-1-19339179"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-west-1:123456789012:resource-642", "name": "resource-642", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-west-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-642", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-west-1:123456789012:resource-642"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.050943", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-643", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-643 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.050953", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-2-fa3f20de"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-west-2:123456789012:resource-643", "name": "resource-643", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-west-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-643", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-west-2:123456789012:resource-643"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.050953", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-644", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-644 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.050962", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-1-64ee12c9"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-west-1:123456789012:resource-644", "name": "resource-644", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-west-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-644", "type": "config", "uid": "arn:aws:config:eu-west-1:123456789012:resource-644"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.050962", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-645", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-645 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.050971", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-eu-west-2-92720aad"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-west-2:123456789012:resource-645", "name": "resource-645", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-west-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-645", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-west-2:123456789012:resource-645"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.050971", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-646", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-646 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.050980", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-eu-central-1-78e5c2af"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:eu-central-1:123456789012:resource-646", "name": "resource-646", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "eu-central-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-646", "type": "ec2", "uid": "arn:aws:ec2:eu-central-1:123456789012:resource-646"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.050980", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-647", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-647 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.050992", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-southeast-1-68cc2c35"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-southeast-1:123456789012:resource-647", "name": "resource-647", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-southeast-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-647", "type": "ecr", "uid": "arn:aws:ecr:ap-southeast-1:123456789012:resource-647"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.050992", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-648", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-648 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.051003", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-2-82875b37"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-southeast-2:123456789012:resource-648", "name": "resource-648", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-southeast-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-648", "type": "ecs", "uid": "arn:aws:ecs:ap-southeast-2:123456789012:resource-648"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.051003", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-649", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-649 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.051013", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-northeast-1-2e468336"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:ap-northeast-1:123456789012:resource-649", "name": "resource-649", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "ap-northeast-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-649", "type": "efs", "uid": "arn:aws:efs:ap-northeast-1:123456789012:resource-649"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.051013", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-650", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-650 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.051022", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-us-east-1-4b2c9309"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-east-1:123456789012:resource-650", "name": "resource-650", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-east-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-650", "type": "eks", "uid": "arn:aws:eks:us-east-1:123456789012:resource-650"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.051022", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-651", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-651 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.051031", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-2-2914084a"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-east-2:123456789012:resource-651", "name": "resource-651", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-east-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-651", "type": "elasticache", "uid": "arn:aws:elasticache:us-east-2:123456789012:resource-651"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.051031", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-652", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-652 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.051042", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-us-west-1-29c4e9db"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-west-1:123456789012:resource-652", "name": "resource-652", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-west-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-652", "type": "elb", "uid": "arn:aws:elb:us-west-1:123456789012:resource-652"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.051042", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-653", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-653 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.051329", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-2-9a081306"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-west-2:123456789012:resource-653", "name": "resource-653", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-west-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-653", "type": "emr", "uid": "arn:aws:emr:us-west-2:123456789012:resource-653"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.051329", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-654", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-654 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.051341", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-west-1-f6db1279"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-west-1:123456789012:resource-654", "name": "resource-654", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-west-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-654", "type": "guardduty", "uid": "arn:aws:guardduty:eu-west-1:123456789012:resource-654"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.051341", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-655", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-655 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.051353", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-eu-west-2-5d1da528"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-west-2:123456789012:resource-655", "name": "resource-655", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-west-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-655", "type": "iam", "uid": "arn:aws:iam:eu-west-2:123456789012:resource-655"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.051353", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-656", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-656 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.051362", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-central-1-3f607cc2"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:eu-central-1:123456789012:resource-656", "name": "resource-656", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "eu-central-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-656", "type": "kms", "uid": "arn:aws:kms:eu-central-1:123456789012:resource-656"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.051362", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-657", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-657 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.051372", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-southeast-1-7795c9e7"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-southeast-1:123456789012:resource-657", "name": "resource-657", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-southeast-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-657", "type": "lambda", "uid": "arn:aws:lambda:ap-southeast-1:123456789012:resource-657"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.051372", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-658", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-658 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.051382", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-ap-southeast-2-5640ea4e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-southeast-2:123456789012:resource-658", "name": "resource-658", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-southeast-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-658", "type": "rds", "uid": "arn:aws:rds:ap-southeast-2:123456789012:resource-658"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.051382", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-659", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-659 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.051391", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-ap-northeast-1-f91cbcea"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:ap-northeast-1:123456789012:resource-659", "name": "resource-659", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "ap-northeast-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-659", "type": "redshift", "uid": "arn:aws:redshift:ap-northeast-1:123456789012:resource-659"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.051391", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-660", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-660 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.051400", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-us-east-1-4d7bffe1"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-east-1:123456789012:resource-660", "name": "resource-660", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-east-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-660", "type": "s3", "uid": "arn:aws:s3:us-east-1:123456789012:resource-660"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.051400", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-661", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-661 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.051410", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-2-c7ae7360"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-east-2:123456789012:resource-661", "name": "resource-661", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-east-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-661", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-east-2:123456789012:resource-661"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.051410", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-662", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-662 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.051419", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-1-6377fe25"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-west-1:123456789012:resource-662", "name": "resource-662", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-west-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-662", "type": "sns", "uid": "arn:aws:sns:us-west-1:123456789012:resource-662"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.051419", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-663", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-663 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.051428", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-2-67ffc05a"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-west-2:123456789012:resource-663", "name": "resource-663", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-west-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-663", "type": "sqs", "uid": "arn:aws:sqs:us-west-2:123456789012:resource-663"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.051428", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-664", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-664 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.051439", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-1-cfcd65b8"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-west-1:123456789012:resource-664", "name": "resource-664", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-west-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-664", "type": "ssm", "uid": "arn:aws:ssm:eu-west-1:123456789012:resource-664"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.051439", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-665", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-665 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.051515", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-2-ae1c3f8d"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:eu-west-2:123456789012:resource-665", "name": "resource-665", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "eu-west-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-665", "type": "vpc", "uid": "arn:aws:vpc:eu-west-2:123456789012:resource-665"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.051515", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-666", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-666 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.051525", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-central-1-f673fecc"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:eu-central-1:123456789012:resource-666", "name": "resource-666", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "eu-central-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-666", "type": "waf", "uid": "arn:aws:waf:eu-central-1:123456789012:resource-666"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.051525", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-667", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-667 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.051534", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-ap-southeast-1-c445c61c"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-southeast-1:123456789012:resource-667", "name": "resource-667", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-southeast-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-667", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-southeast-1:123456789012:resource-667"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.051534", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-668", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-668 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.051543", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-ap-southeast-2-491f7d14"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:ap-southeast-2:123456789012:resource-668", "name": "resource-668", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "ap-southeast-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-668", "type": "acm", "uid": "arn:aws:acm:ap-southeast-2:123456789012:resource-668"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.051543", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-669", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-669 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.051552", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-northeast-1-c7dfbb26"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:ap-northeast-1:123456789012:resource-669", "name": "resource-669", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "ap-northeast-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-669", "type": "apigateway", "uid": "arn:aws:apigateway:ap-northeast-1:123456789012:resource-669"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.051552", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-670", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-670 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.051562", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-east-1-ff07ca4c"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-east-1:123456789012:resource-670", "name": "resource-670", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-east-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-670", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-east-1:123456789012:resource-670"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.051562", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-671", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-671 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.051572", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-east-2-c1b6dd18"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-east-2:123456789012:resource-671", "name": "resource-671", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-east-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-671", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-east-2:123456789012:resource-671"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.051572", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-672", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-672 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.051581", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-1-f8576827"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-west-1:123456789012:resource-672", "name": "resource-672", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-west-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-672", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-west-1:123456789012:resource-672"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.051581", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-673", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-673 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.051591", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-2-c1d5be15"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-west-2:123456789012:resource-673", "name": "resource-673", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-west-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-673", "type": "config", "uid": "arn:aws:config:us-west-2:123456789012:resource-673"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.051591", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-674", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-674 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.051600", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-west-1-3e3e78b3"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-west-1:123456789012:resource-674", "name": "resource-674", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-west-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-674", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-west-1:123456789012:resource-674"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.051600", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-675", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-675 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.051609", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-eu-west-2-fbd9c210"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:eu-west-2:123456789012:resource-675", "name": "resource-675", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "eu-west-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-675", "type": "ec2", "uid": "arn:aws:ec2:eu-west-2:123456789012:resource-675"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.051609", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-676", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-676 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.051619", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-central-1-0070b1f2"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:eu-central-1:123456789012:resource-676", "name": "resource-676", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "eu-central-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-676", "type": "ecr", "uid": "arn:aws:ecr:eu-central-1:123456789012:resource-676"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.051619", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-677", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-677 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.051643", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-1-5a89409c"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-southeast-1:123456789012:resource-677", "name": "resource-677", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-southeast-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-677", "type": "ecs", "uid": "arn:aws:ecs:ap-southeast-1:123456789012:resource-677"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.051643", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-678", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-678 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.051654", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-2-b0c3aa54"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:ap-southeast-2:123456789012:resource-678", "name": "resource-678", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "ap-southeast-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-678", "type": "efs", "uid": "arn:aws:efs:ap-southeast-2:123456789012:resource-678"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.051654", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-679", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-679 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.051665", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-northeast-1-974695a3"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:ap-northeast-1:123456789012:resource-679", "name": "resource-679", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "ap-northeast-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-679", "type": "eks", "uid": "arn:aws:eks:ap-northeast-1:123456789012:resource-679"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.051665", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-680", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-680 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.051674", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-1-48ea59ae"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-east-1:123456789012:resource-680", "name": "resource-680", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-east-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-680", "type": "elasticache", "uid": "arn:aws:elasticache:us-east-1:123456789012:resource-680"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.051674", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-681", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-681 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.051683", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-us-east-2-a30af7b4"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-east-2:123456789012:resource-681", "name": "resource-681", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-east-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-681", "type": "elb", "uid": "arn:aws:elb:us-east-2:123456789012:resource-681"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.051683", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-682", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-682 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.051693", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-1-e6e88638"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-west-1:123456789012:resource-682", "name": "resource-682", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-west-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-682", "type": "emr", "uid": "arn:aws:emr:us-west-1:123456789012:resource-682"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.051693", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-683", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-683 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.051703", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-west-2-9d5061e6"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-west-2:123456789012:resource-683", "name": "resource-683", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-west-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-683", "type": "guardduty", "uid": "arn:aws:guardduty:us-west-2:123456789012:resource-683"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.051703", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-684", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-684 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.051712", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-eu-west-1-e10c6e5f"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-west-1:123456789012:resource-684", "name": "resource-684", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-west-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-684", "type": "iam", "uid": "arn:aws:iam:eu-west-1:123456789012:resource-684"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.051712", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-685", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-685 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.051722", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-2-471a0d06"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:eu-west-2:123456789012:resource-685", "name": "resource-685", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "eu-west-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-685", "type": "kms", "uid": "arn:aws:kms:eu-west-2:123456789012:resource-685"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.051722", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-686", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-686 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.051733", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-eu-central-1-e25b870e"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:eu-central-1:123456789012:resource-686", "name": "resource-686", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "eu-central-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-686", "type": "lambda", "uid": "arn:aws:lambda:eu-central-1:123456789012:resource-686"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.051733", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-687", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-687 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.051743", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-ap-southeast-1-bd93389d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-southeast-1:123456789012:resource-687", "name": "resource-687", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-southeast-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-687", "type": "rds", "uid": "arn:aws:rds:ap-southeast-1:123456789012:resource-687"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.051743", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-688", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-688 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.051754", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-2-ce3871eb"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:ap-southeast-2:123456789012:resource-688", "name": "resource-688", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "ap-southeast-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-688", "type": "redshift", "uid": "arn:aws:redshift:ap-southeast-2:123456789012:resource-688"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.051754", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-689", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-689 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.051763", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-ap-northeast-1-47771804"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:ap-northeast-1:123456789012:resource-689", "name": "resource-689", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "ap-northeast-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-689", "type": "s3", "uid": "arn:aws:s3:ap-northeast-1:123456789012:resource-689"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.051763", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-690", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-690 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.051772", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-1-942023d5"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-east-1:123456789012:resource-690", "name": "resource-690", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-east-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-690", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-east-1:123456789012:resource-690"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.051772", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-691", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-691 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.051783", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-2-fc7f6cbf"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-east-2:123456789012:resource-691", "name": "resource-691", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-east-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-691", "type": "sns", "uid": "arn:aws:sns:us-east-2:123456789012:resource-691"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.051783", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-692", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-692 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.051793", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-1-3485838b"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-west-1:123456789012:resource-692", "name": "resource-692", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-west-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-692", "type": "sqs", "uid": "arn:aws:sqs:us-west-1:123456789012:resource-692"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.051793", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-693", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-693 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.051802", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-2-b63b528f"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-west-2:123456789012:resource-693", "name": "resource-693", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-west-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-693", "type": "ssm", "uid": "arn:aws:ssm:us-west-2:123456789012:resource-693"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.051802", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-694", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-694 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.051811", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-1-db6899d5"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:eu-west-1:123456789012:resource-694", "name": "resource-694", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "eu-west-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-694", "type": "vpc", "uid": "arn:aws:vpc:eu-west-1:123456789012:resource-694"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.051811", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-695", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-695 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.051822", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-2-07006ecf"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:eu-west-2:123456789012:resource-695", "name": "resource-695", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "eu-west-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-695", "type": "waf", "uid": "arn:aws:waf:eu-west-2:123456789012:resource-695"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.051822", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-696", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-696 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.051832", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-eu-central-1-d3c8b5c3"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:eu-central-1:123456789012:resource-696", "name": "resource-696", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "eu-central-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-696", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:eu-central-1:123456789012:resource-696"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.051832", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-697", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-697 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.051842", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-southeast-1-816c7573"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:ap-southeast-1:123456789012:resource-697", "name": "resource-697", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "ap-southeast-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-697", "type": "acm", "uid": "arn:aws:acm:ap-southeast-1:123456789012:resource-697"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.051842", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-698", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-698 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.051851", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-ap-southeast-2-59338152"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:ap-southeast-2:123456789012:resource-698", "name": "resource-698", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "ap-southeast-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-698", "type": "apigateway", "uid": "arn:aws:apigateway:ap-southeast-2:123456789012:resource-698"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.051851", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-699", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-699 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.051861", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-northeast-1-63d0e34c"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:ap-northeast-1:123456789012:resource-699", "name": "resource-699", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "ap-northeast-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-699", "type": "cloudfront", "uid": "arn:aws:cloudfront:ap-northeast-1:123456789012:resource-699"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.051861", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-700", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-700 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.051872", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-east-1-f3c1ef97"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-east-1:123456789012:resource-700", "name": "resource-700", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-east-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-700", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-east-1:123456789012:resource-700"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.051872", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-701", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-701 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.051897", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-2-dbc9f1c6"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-east-2:123456789012:resource-701", "name": "resource-701", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-east-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-701", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-east-2:123456789012:resource-701"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.051897", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-702", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-702 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.051906", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-1-b6038957"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-west-1:123456789012:resource-702", "name": "resource-702", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-west-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-702", "type": "config", "uid": "arn:aws:config:us-west-1:123456789012:resource-702"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.051906", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-703", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-703 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.051919", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-west-2-3357690e"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-west-2:123456789012:resource-703", "name": "resource-703", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-west-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-703", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-west-2:123456789012:resource-703"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.051919", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-704", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-704 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.051930", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-eu-west-1-9b72ac1c"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:eu-west-1:123456789012:resource-704", "name": "resource-704", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "eu-west-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-704", "type": "ec2", "uid": "arn:aws:ec2:eu-west-1:123456789012:resource-704"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.051930", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-705", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-705 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.051939", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-eu-west-2-b767ef5c"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:eu-west-2:123456789012:resource-705", "name": "resource-705", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "eu-west-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-705", "type": "ecr", "uid": "arn:aws:ecr:eu-west-2:123456789012:resource-705"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.051939", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-706", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-706 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.051949", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-central-1-0dd7f0fa"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:eu-central-1:123456789012:resource-706", "name": "resource-706", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "eu-central-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-706", "type": "ecs", "uid": "arn:aws:ecs:eu-central-1:123456789012:resource-706"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.051949", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-707", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-707 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.051958", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-1-de47e3a3"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:ap-southeast-1:123456789012:resource-707", "name": "resource-707", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "ap-southeast-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-707", "type": "efs", "uid": "arn:aws:efs:ap-southeast-1:123456789012:resource-707"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.051958", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-708", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-708 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.051967", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-ap-southeast-2-6fa6c7e6"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:ap-southeast-2:123456789012:resource-708", "name": "resource-708", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "ap-southeast-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-708", "type": "eks", "uid": "arn:aws:eks:ap-southeast-2:123456789012:resource-708"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.051967", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-709", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-709 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.051977", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-northeast-1-d998a9a3"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:ap-northeast-1:123456789012:resource-709", "name": "resource-709", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "ap-northeast-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-709", "type": "elasticache", "uid": "arn:aws:elasticache:ap-northeast-1:123456789012:resource-709"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.051977", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-710", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-710 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.051986", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-us-east-1-d5a44a40"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-east-1:123456789012:resource-710", "name": "resource-710", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-east-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-710", "type": "elb", "uid": "arn:aws:elb:us-east-1:123456789012:resource-710"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.051986", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-711", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-711 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.051997", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-2-c994d6d8"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-east-2:123456789012:resource-711", "name": "resource-711", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-east-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-711", "type": "emr", "uid": "arn:aws:emr:us-east-2:123456789012:resource-711"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.051997", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-712", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-712 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.052006", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-west-1-31483300"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-west-1:123456789012:resource-712", "name": "resource-712", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-west-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-712", "type": "guardduty", "uid": "arn:aws:guardduty:us-west-1:123456789012:resource-712"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.052006", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-713", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-713 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.052017", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-us-west-2-6736a2d6"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-west-2:123456789012:resource-713", "name": "resource-713", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-west-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-713", "type": "iam", "uid": "arn:aws:iam:us-west-2:123456789012:resource-713"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.052017", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-714", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-714 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.052026", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-1-63fb72e1"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:eu-west-1:123456789012:resource-714", "name": "resource-714", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "eu-west-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-714", "type": "kms", "uid": "arn:aws:kms:eu-west-1:123456789012:resource-714"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.052026", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-715", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-715 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.052037", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-eu-west-2-7ef81868"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:eu-west-2:123456789012:resource-715", "name": "resource-715", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "eu-west-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-715", "type": "lambda", "uid": "arn:aws:lambda:eu-west-2:123456789012:resource-715"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.052037", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-716", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-716 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.052047", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-eu-central-1-c39f7b80"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:eu-central-1:123456789012:resource-716", "name": "resource-716", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "eu-central-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-716", "type": "rds", "uid": "arn:aws:rds:eu-central-1:123456789012:resource-716"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.052047", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-717", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-717 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.052057", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-1-72223298"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:ap-southeast-1:123456789012:resource-717", "name": "resource-717", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "ap-southeast-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-717", "type": "redshift", "uid": "arn:aws:redshift:ap-southeast-1:123456789012:resource-717"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.052057", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-718", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-718 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.052066", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-ap-southeast-2-d70c4efc"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:ap-southeast-2:123456789012:resource-718", "name": "resource-718", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "ap-southeast-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-718", "type": "s3", "uid": "arn:aws:s3:ap-southeast-2:123456789012:resource-718"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.052066", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-719", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-719 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.052078", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-northeast-1-d9c56301"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:ap-northeast-1:123456789012:resource-719", "name": "resource-719", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "ap-northeast-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-719", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:ap-northeast-1:123456789012:resource-719"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.052078", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-720", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-720 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.052087", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-1-053a7dd1"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-east-1:123456789012:resource-720", "name": "resource-720", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-east-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-720", "type": "sns", "uid": "arn:aws:sns:us-east-1:123456789012:resource-720"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.052087", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-721", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-721 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.052097", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-2-3deca623"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-east-2:123456789012:resource-721", "name": "resource-721", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-east-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-721", "type": "sqs", "uid": "arn:aws:sqs:us-east-2:123456789012:resource-721"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.052097", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-722", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-722 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.052106", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-1-de7a5ed1"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-west-1:123456789012:resource-722", "name": "resource-722", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-west-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-722", "type": "ssm", "uid": "arn:aws:ssm:us-west-1:123456789012:resource-722"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.052106", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-723", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-723 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.052115", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-2-f8bb9716"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-west-2:123456789012:resource-723", "name": "resource-723", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-west-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-723", "type": "vpc", "uid": "arn:aws:vpc:us-west-2:123456789012:resource-723"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.052115", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-724", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-724 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.052124", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-1-bdc2d119"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:eu-west-1:123456789012:resource-724", "name": "resource-724", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "eu-west-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-724", "type": "waf", "uid": "arn:aws:waf:eu-west-1:123456789012:resource-724"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.052124", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-725", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-725 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.052150", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-eu-west-2-8b80b348"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:eu-west-2:123456789012:resource-725", "name": "resource-725", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "eu-west-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-725", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:eu-west-2:123456789012:resource-725"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.052150", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-726", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-726 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.052159", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-eu-central-1-8df70764"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:eu-central-1:123456789012:resource-726", "name": "resource-726", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "eu-central-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-726", "type": "acm", "uid": "arn:aws:acm:eu-central-1:123456789012:resource-726"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.052159", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-727", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-727 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.052170", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-southeast-1-dd546ae1"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:ap-southeast-1:123456789012:resource-727", "name": "resource-727", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "ap-southeast-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-727", "type": "apigateway", "uid": "arn:aws:apigateway:ap-southeast-1:123456789012:resource-727"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.052170", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-728", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-728 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.052179", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-ap-southeast-2-6dea5f14"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:ap-southeast-2:123456789012:resource-728", "name": "resource-728", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "ap-southeast-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-728", "type": "cloudfront", "uid": "arn:aws:cloudfront:ap-southeast-2:123456789012:resource-728"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.052179", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-729", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-729 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.052190", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-northeast-1-78bc77b1"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:ap-northeast-1:123456789012:resource-729", "name": "resource-729", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "ap-northeast-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-729", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:ap-northeast-1:123456789012:resource-729"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.052190", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-730", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-730 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.052199", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-1-94fd8a49"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-east-1:123456789012:resource-730", "name": "resource-730", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-east-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-730", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-east-1:123456789012:resource-730"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.052199", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-731", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-731 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.052208", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-2-4fe54471"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-east-2:123456789012:resource-731", "name": "resource-731", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-east-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-731", "type": "config", "uid": "arn:aws:config:us-east-2:123456789012:resource-731"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.052208", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-732", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-732 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.052218", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-west-1-fec0fe32"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-west-1:123456789012:resource-732", "name": "resource-732", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-west-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-732", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-west-1:123456789012:resource-732"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.052218", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-733", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-733 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.052227", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-us-west-2-a0ebc861"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-west-2:123456789012:resource-733", "name": "resource-733", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-west-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-733", "type": "ec2", "uid": "arn:aws:ec2:us-west-2:123456789012:resource-733"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.052227", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-734", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-734 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.052235", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-west-1-306a79a9"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:eu-west-1:123456789012:resource-734", "name": "resource-734", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "eu-west-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-734", "type": "ecr", "uid": "arn:aws:ecr:eu-west-1:123456789012:resource-734"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.052235", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-735", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-735 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.052246", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-2-e8a3d76d"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:eu-west-2:123456789012:resource-735", "name": "resource-735", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "eu-west-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-735", "type": "ecs", "uid": "arn:aws:ecs:eu-west-2:123456789012:resource-735"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.052246", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-736", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-736 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.052255", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-central-1-a8b0de62"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:eu-central-1:123456789012:resource-736", "name": "resource-736", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "eu-central-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-736", "type": "efs", "uid": "arn:aws:efs:eu-central-1:123456789012:resource-736"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.052255", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-737", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-737 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.052265", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-southeast-1-84e1b148"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:ap-southeast-1:123456789012:resource-737", "name": "resource-737", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "ap-southeast-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-737", "type": "eks", "uid": "arn:aws:eks:ap-southeast-1:123456789012:resource-737"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.052265", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-738", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-738 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.052274", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-2-91067929"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:ap-southeast-2:123456789012:resource-738", "name": "resource-738", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "ap-southeast-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-738", "type": "elasticache", "uid": "arn:aws:elasticache:ap-southeast-2:123456789012:resource-738"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.052274", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-739", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-739 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.052283", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-ap-northeast-1-fae1418b"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:ap-northeast-1:123456789012:resource-739", "name": "resource-739", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "ap-northeast-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-739", "type": "elb", "uid": "arn:aws:elb:ap-northeast-1:123456789012:resource-739"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.052283", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-740", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-740 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.052292", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-1-643c0006"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-east-1:123456789012:resource-740", "name": "resource-740", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-east-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-740", "type": "emr", "uid": "arn:aws:emr:us-east-1:123456789012:resource-740"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.052292", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-741", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-741 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.052301", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-east-2-8388ff34"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-east-2:123456789012:resource-741", "name": "resource-741", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-east-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-741", "type": "guardduty", "uid": "arn:aws:guardduty:us-east-2:123456789012:resource-741"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.052301", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-742", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-742 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.052311", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-us-west-1-24af1512"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-west-1:123456789012:resource-742", "name": "resource-742", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-west-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-742", "type": "iam", "uid": "arn:aws:iam:us-west-1:123456789012:resource-742"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.052311", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-743", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-743 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.052319", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-2-319abed8"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-west-2:123456789012:resource-743", "name": "resource-743", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-west-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-743", "type": "kms", "uid": "arn:aws:kms:us-west-2:123456789012:resource-743"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.052319", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-744", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-744 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.052328", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-eu-west-1-4427b162"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:eu-west-1:123456789012:resource-744", "name": "resource-744", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "eu-west-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-744", "type": "lambda", "uid": "arn:aws:lambda:eu-west-1:123456789012:resource-744"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.052328", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-745", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-745 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.052337", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-eu-west-2-b10e2360"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:eu-west-2:123456789012:resource-745", "name": "resource-745", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "eu-west-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-745", "type": "rds", "uid": "arn:aws:rds:eu-west-2:123456789012:resource-745"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.052337", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-746", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-746 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.052346", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-eu-central-1-117c1994"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:eu-central-1:123456789012:resource-746", "name": "resource-746", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "eu-central-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-746", "type": "redshift", "uid": "arn:aws:redshift:eu-central-1:123456789012:resource-746"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.052346", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-747", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-747 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.052355", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-ap-southeast-1-4779c24a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:ap-southeast-1:123456789012:resource-747", "name": "resource-747", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "ap-southeast-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-747", "type": "s3", "uid": "arn:aws:s3:ap-southeast-1:123456789012:resource-747"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.052355", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-748", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-748 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.052364", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-2-b237644f"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:ap-southeast-2:123456789012:resource-748", "name": "resource-748", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "ap-southeast-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-748", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:ap-southeast-2:123456789012:resource-748"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.052364", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-749", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-749 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.052387", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-northeast-1-56fadd4c"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:ap-northeast-1:123456789012:resource-749", "name": "resource-749", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "ap-northeast-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-749", "type": "sns", "uid": "arn:aws:sns:ap-northeast-1:123456789012:resource-749"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.052387", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-750", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-750 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.052396", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-1-da74a0fd"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-east-1:123456789012:resource-750", "name": "resource-750", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-east-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-750", "type": "sqs", "uid": "arn:aws:sqs:us-east-1:123456789012:resource-750"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.052396", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-751", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-751 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.052405", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-2-862f6649"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-east-2:123456789012:resource-751", "name": "resource-751", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-east-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-751", "type": "ssm", "uid": "arn:aws:ssm:us-east-2:123456789012:resource-751"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.052405", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-752", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-752 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.052414", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-1-21c53945"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-west-1:123456789012:resource-752", "name": "resource-752", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-west-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-752", "type": "vpc", "uid": "arn:aws:vpc:us-west-1:123456789012:resource-752"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.052414", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-753", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-753 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.052423", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-2-fe0352b5"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-west-2:123456789012:resource-753", "name": "resource-753", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-west-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-753", "type": "waf", "uid": "arn:aws:waf:us-west-2:123456789012:resource-753"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.052423", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-754", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-754 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.052432", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-eu-west-1-88d9568b"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:eu-west-1:123456789012:resource-754", "name": "resource-754", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "eu-west-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-754", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:eu-west-1:123456789012:resource-754"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.052432", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-755", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-755 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.052442", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-eu-west-2-7f468449"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:eu-west-2:123456789012:resource-755", "name": "resource-755", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "eu-west-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-755", "type": "acm", "uid": "arn:aws:acm:eu-west-2:123456789012:resource-755"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.052442", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-756", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-756 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.052450", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-central-1-60ed38d9"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:eu-central-1:123456789012:resource-756", "name": "resource-756", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "eu-central-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-756", "type": "apigateway", "uid": "arn:aws:apigateway:eu-central-1:123456789012:resource-756"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.052450", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-757", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-757 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.052459", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-southeast-1-95a1a98a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:ap-southeast-1:123456789012:resource-757", "name": "resource-757", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "ap-southeast-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-757", "type": "cloudfront", "uid": "arn:aws:cloudfront:ap-southeast-1:123456789012:resource-757"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.052459", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-758", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-758 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.052468", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-ap-southeast-2-22ee823a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:ap-southeast-2:123456789012:resource-758", "name": "resource-758", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "ap-southeast-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-758", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:ap-southeast-2:123456789012:resource-758"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.052468", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-759", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-759 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.052477", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-northeast-1-8d93b6d0"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:ap-northeast-1:123456789012:resource-759", "name": "resource-759", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "ap-northeast-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-759", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:ap-northeast-1:123456789012:resource-759"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.052477", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-760", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-760 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.052486", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-1-a24a6cae"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-east-1:123456789012:resource-760", "name": "resource-760", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-east-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-760", "type": "config", "uid": "arn:aws:config:us-east-1:123456789012:resource-760"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.052486", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-761", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-761 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.052496", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-east-2-56a0ba23"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-east-2:123456789012:resource-761", "name": "resource-761", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-east-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-761", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-east-2:123456789012:resource-761"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.052496", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-762", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-762 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.052505", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-us-west-1-d59514ba"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-west-1:123456789012:resource-762", "name": "resource-762", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-west-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-762", "type": "ec2", "uid": "arn:aws:ec2:us-west-1:123456789012:resource-762"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.052505", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-763", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-763 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.052514", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-west-2-b5fd6380"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-west-2:123456789012:resource-763", "name": "resource-763", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-west-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-763", "type": "ecr", "uid": "arn:aws:ecr:us-west-2:123456789012:resource-763"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.052514", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-764", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-764 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.052523", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-1-eae8a155"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:eu-west-1:123456789012:resource-764", "name": "resource-764", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "eu-west-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-764", "type": "ecs", "uid": "arn:aws:ecs:eu-west-1:123456789012:resource-764"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.052523", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-765", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-765 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.052532", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-2-5529208f"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:eu-west-2:123456789012:resource-765", "name": "resource-765", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "eu-west-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-765", "type": "efs", "uid": "arn:aws:efs:eu-west-2:123456789012:resource-765"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.052532", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-766", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-766 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.052541", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-eu-central-1-8a15bfd2"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:eu-central-1:123456789012:resource-766", "name": "resource-766", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "eu-central-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-766", "type": "eks", "uid": "arn:aws:eks:eu-central-1:123456789012:resource-766"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.052541", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-767", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-767 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.052550", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-1-2cb4383a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:ap-southeast-1:123456789012:resource-767", "name": "resource-767", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "ap-southeast-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-767", "type": "elasticache", "uid": "arn:aws:elasticache:ap-southeast-1:123456789012:resource-767"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.052550", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-768", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-768 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.052559", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-ap-southeast-2-cd7565aa"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:ap-southeast-2:123456789012:resource-768", "name": "resource-768", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "ap-southeast-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-768", "type": "elb", "uid": "arn:aws:elb:ap-southeast-2:123456789012:resource-768"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.052559", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-769", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-769 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.052568", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-northeast-1-559aff04"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:ap-northeast-1:123456789012:resource-769", "name": "resource-769", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "ap-northeast-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-769", "type": "emr", "uid": "arn:aws:emr:ap-northeast-1:123456789012:resource-769"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.052568", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-770", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-770 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.052578", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-east-1-a9697628"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-east-1:123456789012:resource-770", "name": "resource-770", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-east-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-770", "type": "guardduty", "uid": "arn:aws:guardduty:us-east-1:123456789012:resource-770"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.052578", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-771", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-771 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.052586", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-us-east-2-4ef45817"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-east-2:123456789012:resource-771", "name": "resource-771", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-east-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-771", "type": "iam", "uid": "arn:aws:iam:us-east-2:123456789012:resource-771"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.052586", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-772", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-772 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.052595", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-1-c05329be"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-west-1:123456789012:resource-772", "name": "resource-772", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-west-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-772", "type": "kms", "uid": "arn:aws:kms:us-west-1:123456789012:resource-772"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.052595", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-773", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-773 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.052618", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-west-2-7b6ab9e9"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-west-2:123456789012:resource-773", "name": "resource-773", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-west-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-773", "type": "lambda", "uid": "arn:aws:lambda:us-west-2:123456789012:resource-773"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.052618", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-774", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-774 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.052627", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-eu-west-1-1e6e1b8c"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:eu-west-1:123456789012:resource-774", "name": "resource-774", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "eu-west-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-774", "type": "rds", "uid": "arn:aws:rds:eu-west-1:123456789012:resource-774"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.052627", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-775", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-775 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.052636", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-2-a2e65368"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:eu-west-2:123456789012:resource-775", "name": "resource-775", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "eu-west-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-775", "type": "redshift", "uid": "arn:aws:redshift:eu-west-2:123456789012:resource-775"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.052636", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-776", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-776 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.052645", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-eu-central-1-98c7b20d"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:eu-central-1:123456789012:resource-776", "name": "resource-776", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "eu-central-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-776", "type": "s3", "uid": "arn:aws:s3:eu-central-1:123456789012:resource-776"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.052645", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-777", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-777 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.052654", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-1-9ce50d0d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:ap-southeast-1:123456789012:resource-777", "name": "resource-777", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "ap-southeast-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-777", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:ap-southeast-1:123456789012:resource-777"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.052654", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-778", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-778 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.052664", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-2-42a929bf"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:ap-southeast-2:123456789012:resource-778", "name": "resource-778", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "ap-southeast-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-778", "type": "sns", "uid": "arn:aws:sns:ap-southeast-2:123456789012:resource-778"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.052664", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-779", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-779 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.052673", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-northeast-1-d1a29533"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:ap-northeast-1:123456789012:resource-779", "name": "resource-779", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "ap-northeast-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-779", "type": "sqs", "uid": "arn:aws:sqs:ap-northeast-1:123456789012:resource-779"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.052673", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-780", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-780 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.052682", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-1-0546eb08"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-east-1:123456789012:resource-780", "name": "resource-780", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-east-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-780", "type": "ssm", "uid": "arn:aws:ssm:us-east-1:123456789012:resource-780"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.052682", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-781", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-781 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.052692", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-2-7922a9c2"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-east-2:123456789012:resource-781", "name": "resource-781", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-east-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-781", "type": "vpc", "uid": "arn:aws:vpc:us-east-2:123456789012:resource-781"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.052692", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-782", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-782 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.052700", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-1-750fcc38"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-west-1:123456789012:resource-782", "name": "resource-782", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-west-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-782", "type": "waf", "uid": "arn:aws:waf:us-west-1:123456789012:resource-782"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.052700", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-783", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-783 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.052710", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-us-west-2-a7875d53"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-west-2:123456789012:resource-783", "name": "resource-783", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-west-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-783", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-west-2:123456789012:resource-783"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.052710", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-784", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-784 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.052720", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-eu-west-1-c994fad6"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:eu-west-1:123456789012:resource-784", "name": "resource-784", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "eu-west-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-784", "type": "acm", "uid": "arn:aws:acm:eu-west-1:123456789012:resource-784"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.052720", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-785", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-785 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.052730", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-eu-west-2-753a8e1f"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:eu-west-2:123456789012:resource-785", "name": "resource-785", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "eu-west-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-785", "type": "apigateway", "uid": "arn:aws:apigateway:eu-west-2:123456789012:resource-785"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.052730", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-786", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-786 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.052739", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-central-1-b11b183b"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:eu-central-1:123456789012:resource-786", "name": "resource-786", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "eu-central-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-786", "type": "cloudfront", "uid": "arn:aws:cloudfront:eu-central-1:123456789012:resource-786"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.052739", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-787", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-787 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.052748", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-southeast-1-3132abd2"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:ap-southeast-1:123456789012:resource-787", "name": "resource-787", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "ap-southeast-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-787", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:ap-southeast-1:123456789012:resource-787"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.052748", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-788", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-788 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.052757", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-2-bf886bc3"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:ap-southeast-2:123456789012:resource-788", "name": "resource-788", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "ap-southeast-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-788", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:ap-southeast-2:123456789012:resource-788"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.052757", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-789", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-789 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.052766", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-northeast-1-6effe117"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:ap-northeast-1:123456789012:resource-789", "name": "resource-789", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "ap-northeast-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-789", "type": "config", "uid": "arn:aws:config:ap-northeast-1:123456789012:resource-789"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.052766", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-790", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-790 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.052776", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-east-1-0dbe94a0"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-east-1:123456789012:resource-790", "name": "resource-790", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-east-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-790", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-east-1:123456789012:resource-790"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.052776", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-791", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-791 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.052785", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-us-east-2-b3451b20"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-east-2:123456789012:resource-791", "name": "resource-791", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-east-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-791", "type": "ec2", "uid": "arn:aws:ec2:us-east-2:123456789012:resource-791"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.052785", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-792", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-792 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.052794", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-west-1-383d3088"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-west-1:123456789012:resource-792", "name": "resource-792", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-west-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-792", "type": "ecr", "uid": "arn:aws:ecr:us-west-1:123456789012:resource-792"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.052794", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-793", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-793 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.052803", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-2-72fa843b"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-west-2:123456789012:resource-793", "name": "resource-793", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-west-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-793", "type": "ecs", "uid": "arn:aws:ecs:us-west-2:123456789012:resource-793"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.052803", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-794", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-794 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.052868", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-1-853cb249"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:eu-west-1:123456789012:resource-794", "name": "resource-794", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "eu-west-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-794", "type": "efs", "uid": "arn:aws:efs:eu-west-1:123456789012:resource-794"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.052868", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-795", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-795 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.052894", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-eu-west-2-f43bfc96"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:eu-west-2:123456789012:resource-795", "name": "resource-795", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "eu-west-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-795", "type": "eks", "uid": "arn:aws:eks:eu-west-2:123456789012:resource-795"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.052894", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-796", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-796 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.052908", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-central-1-b58a7830"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:eu-central-1:123456789012:resource-796", "name": "resource-796", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "eu-central-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-796", "type": "elasticache", "uid": "arn:aws:elasticache:eu-central-1:123456789012:resource-796"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.052908", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-797", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-797 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.052941", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-ap-southeast-1-9d646bf1"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:ap-southeast-1:123456789012:resource-797", "name": "resource-797", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "ap-southeast-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-797", "type": "elb", "uid": "arn:aws:elb:ap-southeast-1:123456789012:resource-797"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.052941", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-798", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-798 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.052951", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-2-d3d5526e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:ap-southeast-2:123456789012:resource-798", "name": "resource-798", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "ap-southeast-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-798", "type": "emr", "uid": "arn:aws:emr:ap-southeast-2:123456789012:resource-798"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.052951", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-799", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-799 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.052963", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-ap-northeast-1-44f95875"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:ap-northeast-1:123456789012:resource-799", "name": "resource-799", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "ap-northeast-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-799", "type": "guardduty", "uid": "arn:aws:guardduty:ap-northeast-1:123456789012:resource-799"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.052963", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-800", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-800 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.052973", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-us-east-1-4236392d"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-east-1:123456789012:resource-800", "name": "resource-800", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-east-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-800", "type": "iam", "uid": "arn:aws:iam:us-east-1:123456789012:resource-800"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.052973", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-801", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-801 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.052983", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-2-f2b467e8"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-east-2:123456789012:resource-801", "name": "resource-801", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-east-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-801", "type": "kms", "uid": "arn:aws:kms:us-east-2:123456789012:resource-801"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.052983", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-802", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-802 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.052993", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-us-west-1-d34e2fa2"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-west-1:123456789012:resource-802", "name": "resource-802", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-west-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-802", "type": "lambda", "uid": "arn:aws:lambda:us-west-1:123456789012:resource-802"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.052993", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-803", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-803 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.053003", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-us-west-2-152dfae7"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-west-2:123456789012:resource-803", "name": "resource-803", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-west-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-803", "type": "rds", "uid": "arn:aws:rds:us-west-2:123456789012:resource-803"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.053003", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-804", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-804 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.053013", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-1-cc5282a7"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:eu-west-1:123456789012:resource-804", "name": "resource-804", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "eu-west-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-804", "type": "redshift", "uid": "arn:aws:redshift:eu-west-1:123456789012:resource-804"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.053013", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-805", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-805 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.053023", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-eu-west-2-6c05f5ff"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:eu-west-2:123456789012:resource-805", "name": "resource-805", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "eu-west-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-805", "type": "s3", "uid": "arn:aws:s3:eu-west-2:123456789012:resource-805"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.053023", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-806", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-806 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.053033", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-central-1-08fdc4a9"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:eu-central-1:123456789012:resource-806", "name": "resource-806", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "eu-central-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-806", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:eu-central-1:123456789012:resource-806"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.053033", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-807", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-807 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.053043", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-1-adabe395"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:ap-southeast-1:123456789012:resource-807", "name": "resource-807", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "ap-southeast-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-807", "type": "sns", "uid": "arn:aws:sns:ap-southeast-1:123456789012:resource-807"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.053043", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-808", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-808 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.053053", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-2-4ea7c7e8"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:ap-southeast-2:123456789012:resource-808", "name": "resource-808", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "ap-southeast-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-808", "type": "sqs", "uid": "arn:aws:sqs:ap-southeast-2:123456789012:resource-808"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.053053", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-809", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-809 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.053063", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-ap-northeast-1-475c0e25"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:ap-northeast-1:123456789012:resource-809", "name": "resource-809", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "ap-northeast-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-809", "type": "ssm", "uid": "arn:aws:ssm:ap-northeast-1:123456789012:resource-809"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.053063", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-810", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-810 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.053072", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-1-63d6e379"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-east-1:123456789012:resource-810", "name": "resource-810", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-east-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-810", "type": "vpc", "uid": "arn:aws:vpc:us-east-1:123456789012:resource-810"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.053072", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-811", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-811 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.053082", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-2-05e54b16"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-east-2:123456789012:resource-811", "name": "resource-811", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-east-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-811", "type": "waf", "uid": "arn:aws:waf:us-east-2:123456789012:resource-811"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.053082", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-812", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-812 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.053093", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-us-west-1-c5cf1759"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-west-1:123456789012:resource-812", "name": "resource-812", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-west-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-812", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-west-1:123456789012:resource-812"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.053093", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-813", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-813 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.053103", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-west-2-dea1dd2a"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-west-2:123456789012:resource-813", "name": "resource-813", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-west-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-813", "type": "acm", "uid": "arn:aws:acm:us-west-2:123456789012:resource-813"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.053103", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-814", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-814 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.053113", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-west-1-19d42dc2"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:eu-west-1:123456789012:resource-814", "name": "resource-814", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "eu-west-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-814", "type": "apigateway", "uid": "arn:aws:apigateway:eu-west-1:123456789012:resource-814"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.053113", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-815", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-815 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.053123", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-eu-west-2-613bc452"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:eu-west-2:123456789012:resource-815", "name": "resource-815", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "eu-west-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-815", "type": "cloudfront", "uid": "arn:aws:cloudfront:eu-west-2:123456789012:resource-815"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.053123", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-816", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-816 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.053133", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-central-1-5dd82762"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-central-1:123456789012:resource-816", "name": "resource-816", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-central-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-816", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-central-1:123456789012:resource-816"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.053133", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-817", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-817 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.053143", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-1-a621c2b7"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:ap-southeast-1:123456789012:resource-817", "name": "resource-817", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "ap-southeast-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-817", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:ap-southeast-1:123456789012:resource-817"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.053143", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-818", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-818 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.053153", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-2-f98d50fa"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:ap-southeast-2:123456789012:resource-818", "name": "resource-818", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "ap-southeast-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-818", "type": "config", "uid": "arn:aws:config:ap-southeast-2:123456789012:resource-818"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.053153", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-819", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-819 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.053162", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-northeast-1-599a6a23"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-northeast-1:123456789012:resource-819", "name": "resource-819", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-northeast-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-819", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-northeast-1:123456789012:resource-819"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.053162", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-820", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-820 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.053173", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-us-east-1-c0052639"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-east-1:123456789012:resource-820", "name": "resource-820", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-east-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-820", "type": "ec2", "uid": "arn:aws:ec2:us-east-1:123456789012:resource-820"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.053173", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-821", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-821 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.053197", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-east-2-e2b67312"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-east-2:123456789012:resource-821", "name": "resource-821", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-east-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-821", "type": "ecr", "uid": "arn:aws:ecr:us-east-2:123456789012:resource-821"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.053197", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-822", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-822 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.053206", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-1-8a9d3328"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-west-1:123456789012:resource-822", "name": "resource-822", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-west-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-822", "type": "ecs", "uid": "arn:aws:ecs:us-west-1:123456789012:resource-822"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.053206", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-823", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-823 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.053216", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-2-3e189a16"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-west-2:123456789012:resource-823", "name": "resource-823", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-west-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-823", "type": "efs", "uid": "arn:aws:efs:us-west-2:123456789012:resource-823"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.053216", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-824", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-824 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.053225", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-eu-west-1-4d5d17ac"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:eu-west-1:123456789012:resource-824", "name": "resource-824", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "eu-west-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-824", "type": "eks", "uid": "arn:aws:eks:eu-west-1:123456789012:resource-824"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.053225", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-825", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-825 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.053234", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-2-1793b67f"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:eu-west-2:123456789012:resource-825", "name": "resource-825", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "eu-west-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-825", "type": "elasticache", "uid": "arn:aws:elasticache:eu-west-2:123456789012:resource-825"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.053234", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-826", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-826 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.053244", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-eu-central-1-c899d0c6"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-central-1:123456789012:resource-826", "name": "resource-826", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-central-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-826", "type": "elb", "uid": "arn:aws:elb:eu-central-1:123456789012:resource-826"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.053244", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-827", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-827 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.053254", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-1-f9e2906e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:ap-southeast-1:123456789012:resource-827", "name": "resource-827", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "ap-southeast-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-827", "type": "emr", "uid": "arn:aws:emr:ap-southeast-1:123456789012:resource-827"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.053254", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-828", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-828 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.053263", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-2-52b11c9c"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:ap-southeast-2:123456789012:resource-828", "name": "resource-828", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "ap-southeast-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-828", "type": "guardduty", "uid": "arn:aws:guardduty:ap-southeast-2:123456789012:resource-828"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.053263", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-829", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-829 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.053272", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-ap-northeast-1-3b70e8e9"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-northeast-1:123456789012:resource-829", "name": "resource-829", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-northeast-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-829", "type": "iam", "uid": "arn:aws:iam:ap-northeast-1:123456789012:resource-829"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.053272", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-830", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-830 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.053282", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-1-021b37e3"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-east-1:123456789012:resource-830", "name": "resource-830", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-east-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-830", "type": "kms", "uid": "arn:aws:kms:us-east-1:123456789012:resource-830"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.053282", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-831", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-831 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.053291", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-east-2-07c87b5a"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-east-2:123456789012:resource-831", "name": "resource-831", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-east-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-831", "type": "lambda", "uid": "arn:aws:lambda:us-east-2:123456789012:resource-831"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.053291", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-832", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-832 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.053301", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-us-west-1-421aeef4"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-west-1:123456789012:resource-832", "name": "resource-832", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-west-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-832", "type": "rds", "uid": "arn:aws:rds:us-west-1:123456789012:resource-832"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.053301", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-833", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-833 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.053310", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-2-ea662ed0"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-west-2:123456789012:resource-833", "name": "resource-833", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-west-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-833", "type": "redshift", "uid": "arn:aws:redshift:us-west-2:123456789012:resource-833"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.053310", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-834", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-834 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.053319", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-eu-west-1-5d4dfd85"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:eu-west-1:123456789012:resource-834", "name": "resource-834", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "eu-west-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-834", "type": "s3", "uid": "arn:aws:s3:eu-west-1:123456789012:resource-834"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.053319", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-835", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-835 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.053329", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-2-6a08b73c"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:eu-west-2:123456789012:resource-835", "name": "resource-835", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "eu-west-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-835", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:eu-west-2:123456789012:resource-835"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.053329", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-836", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-836 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.053339", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-central-1-240539b0"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-central-1:123456789012:resource-836", "name": "resource-836", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-central-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-836", "type": "sns", "uid": "arn:aws:sns:eu-central-1:123456789012:resource-836"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.053339", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-837", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-837 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.053348", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-1-ad5c80a7"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:ap-southeast-1:123456789012:resource-837", "name": "resource-837", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "ap-southeast-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-837", "type": "sqs", "uid": "arn:aws:sqs:ap-southeast-1:123456789012:resource-837"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.053348", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-838", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-838 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.053357", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-2-37220991"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:ap-southeast-2:123456789012:resource-838", "name": "resource-838", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "ap-southeast-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-838", "type": "ssm", "uid": "arn:aws:ssm:ap-southeast-2:123456789012:resource-838"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.053357", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-839", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-839 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.053367", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-northeast-1-2bb62940"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-northeast-1:123456789012:resource-839", "name": "resource-839", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-northeast-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-839", "type": "vpc", "uid": "arn:aws:vpc:ap-northeast-1:123456789012:resource-839"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.053367", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-840", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-840 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.053376", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-1-65cc34e2"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-east-1:123456789012:resource-840", "name": "resource-840", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-east-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-840", "type": "waf", "uid": "arn:aws:waf:us-east-1:123456789012:resource-840"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.053376", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-841", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-841 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.053385", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-us-east-2-ccb6a5d7"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-east-2:123456789012:resource-841", "name": "resource-841", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-east-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-841", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-east-2:123456789012:resource-841"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.053385", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-842", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-842 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.053395", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-us-west-1-1976af3f"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-west-1:123456789012:resource-842", "name": "resource-842", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-west-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-842", "type": "acm", "uid": "arn:aws:acm:us-west-1:123456789012:resource-842"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.053395", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-843", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-843 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.053404", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-west-2-760172ae"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-west-2:123456789012:resource-843", "name": "resource-843", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-west-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-843", "type": "apigateway", "uid": "arn:aws:apigateway:us-west-2:123456789012:resource-843"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.053404", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-844", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-844 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.053417", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-west-1-c5fb7571"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:eu-west-1:123456789012:resource-844", "name": "resource-844", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "eu-west-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-844", "type": "cloudfront", "uid": "arn:aws:cloudfront:eu-west-1:123456789012:resource-844"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.053417", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-845", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-845 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.053441", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-eu-west-2-9b359369"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-west-2:123456789012:resource-845", "name": "resource-845", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-west-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-845", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-west-2:123456789012:resource-845"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.053441", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-846", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-846 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.053451", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-central-1-720b3148"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-central-1:123456789012:resource-846", "name": "resource-846", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-central-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-846", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-central-1:123456789012:resource-846"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.053451", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-847", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-847 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.053461", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-1-d6090dc1"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:ap-southeast-1:123456789012:resource-847", "name": "resource-847", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "ap-southeast-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-847", "type": "config", "uid": "arn:aws:config:ap-southeast-1:123456789012:resource-847"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.053461", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-848", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-848 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.053470", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-ap-southeast-2-cc4e8e61"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-southeast-2:123456789012:resource-848", "name": "resource-848", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-southeast-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-848", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-southeast-2:123456789012:resource-848"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.053470", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-849", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-849 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.053479", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-ap-northeast-1-bc0dd1b9"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-northeast-1:123456789012:resource-849", "name": "resource-849", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-northeast-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-849", "type": "ec2", "uid": "arn:aws:ec2:ap-northeast-1:123456789012:resource-849"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.053479", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-850", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-850 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.053489", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-east-1-712ecaa4"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-east-1:123456789012:resource-850", "name": "resource-850", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-east-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-850", "type": "ecr", "uid": "arn:aws:ecr:us-east-1:123456789012:resource-850"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.053489", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-851", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-851 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.053524", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-2-df415507"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-east-2:123456789012:resource-851", "name": "resource-851", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-east-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-851", "type": "ecs", "uid": "arn:aws:ecs:us-east-2:123456789012:resource-851"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.053524", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-852", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-852 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.053549", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-1-2b422545"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-west-1:123456789012:resource-852", "name": "resource-852", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-west-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-852", "type": "efs", "uid": "arn:aws:efs:us-west-1:123456789012:resource-852"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.053549", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-853", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-853 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.053564", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-west-2-066652ac"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-west-2:123456789012:resource-853", "name": "resource-853", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-west-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-853", "type": "eks", "uid": "arn:aws:eks:us-west-2:123456789012:resource-853"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.053564", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-854", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-854 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.053576", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-1-19bff289"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:eu-west-1:123456789012:resource-854", "name": "resource-854", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "eu-west-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-854", "type": "elasticache", "uid": "arn:aws:elasticache:eu-west-1:123456789012:resource-854"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.053576", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-855", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-855 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.053587", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-eu-west-2-e81b5b90"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-west-2:123456789012:resource-855", "name": "resource-855", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-west-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-855", "type": "elb", "uid": "arn:aws:elb:eu-west-2:123456789012:resource-855"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.053587", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-856", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-856 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.053598", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-central-1-28b7da24"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-central-1:123456789012:resource-856", "name": "resource-856", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-central-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-856", "type": "emr", "uid": "arn:aws:emr:eu-central-1:123456789012:resource-856"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.053598", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-857", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-857 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.053617", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-1-9c6124ce"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:ap-southeast-1:123456789012:resource-857", "name": "resource-857", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "ap-southeast-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-857", "type": "guardduty", "uid": "arn:aws:guardduty:ap-southeast-1:123456789012:resource-857"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.053617", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-858", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-858 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.053646", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-ap-southeast-2-5859e2cc"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-southeast-2:123456789012:resource-858", "name": "resource-858", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-southeast-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-858", "type": "iam", "uid": "arn:aws:iam:ap-southeast-2:123456789012:resource-858"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.053646", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-859", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-859 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.053661", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-northeast-1-85f837a2"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-northeast-1:123456789012:resource-859", "name": "resource-859", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-northeast-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-859", "type": "kms", "uid": "arn:aws:kms:ap-northeast-1:123456789012:resource-859"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.053661", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-860", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-860 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.053672", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-us-east-1-f1545113"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-east-1:123456789012:resource-860", "name": "resource-860", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-east-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-860", "type": "lambda", "uid": "arn:aws:lambda:us-east-1:123456789012:resource-860"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.053672", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-861", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-861 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.053686", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-us-east-2-5a31d32e"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-east-2:123456789012:resource-861", "name": "resource-861", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-east-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-861", "type": "rds", "uid": "arn:aws:rds:us-east-2:123456789012:resource-861"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.053686", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-862", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-862 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.053697", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-1-93a18b7c"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-west-1:123456789012:resource-862", "name": "resource-862", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-west-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-862", "type": "redshift", "uid": "arn:aws:redshift:us-west-1:123456789012:resource-862"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.053697", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-863", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-863 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.053707", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-us-west-2-e2f6ac8b"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-west-2:123456789012:resource-863", "name": "resource-863", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-west-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-863", "type": "s3", "uid": "arn:aws:s3:us-west-2:123456789012:resource-863"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.053707", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-864", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-864 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.053718", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-1-85577b65"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:eu-west-1:123456789012:resource-864", "name": "resource-864", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "eu-west-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-864", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:eu-west-1:123456789012:resource-864"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.053718", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-865", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-865 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.053728", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-2-1ef13ccb"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-west-2:123456789012:resource-865", "name": "resource-865", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-west-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-865", "type": "sns", "uid": "arn:aws:sns:eu-west-2:123456789012:resource-865"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.053728", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-866", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-866 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.053738", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-central-1-06da19dc"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-central-1:123456789012:resource-866", "name": "resource-866", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-central-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-866", "type": "sqs", "uid": "arn:aws:sqs:eu-central-1:123456789012:resource-866"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.053738", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-867", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-867 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.053748", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-1-712f8935"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:ap-southeast-1:123456789012:resource-867", "name": "resource-867", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "ap-southeast-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-867", "type": "ssm", "uid": "arn:aws:ssm:ap-southeast-1:123456789012:resource-867"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.053748", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-868", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-868 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.053758", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-2-bbe18349"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-southeast-2:123456789012:resource-868", "name": "resource-868", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-southeast-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-868", "type": "vpc", "uid": "arn:aws:vpc:ap-southeast-2:123456789012:resource-868"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.053758", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-869", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-869 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.053786", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-northeast-1-fd73936f"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-northeast-1:123456789012:resource-869", "name": "resource-869", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-northeast-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-869", "type": "waf", "uid": "arn:aws:waf:ap-northeast-1:123456789012:resource-869"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.053786", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-870", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-870 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.053796", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-us-east-1-97f09792"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-east-1:123456789012:resource-870", "name": "resource-870", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-east-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-870", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-east-1:123456789012:resource-870"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.053796", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-871", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-871 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.053807", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-east-2-84822240"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-east-2:123456789012:resource-871", "name": "resource-871", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-east-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-871", "type": "acm", "uid": "arn:aws:acm:us-east-2:123456789012:resource-871"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.053807", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-872", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-872 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.053816", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-west-1-4ed82686"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-west-1:123456789012:resource-872", "name": "resource-872", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-west-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-872", "type": "apigateway", "uid": "arn:aws:apigateway:us-west-1:123456789012:resource-872"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.053816", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-873", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-873 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.053826", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-west-2-f7d46b59"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-west-2:123456789012:resource-873", "name": "resource-873", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-west-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-873", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-west-2:123456789012:resource-873"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.053826", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-874", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-874 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.053836", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-west-1-fbccf103"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-west-1:123456789012:resource-874", "name": "resource-874", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-west-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-874", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-west-1:123456789012:resource-874"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.053836", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-875", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-875 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.053846", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-2-d230f211"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-west-2:123456789012:resource-875", "name": "resource-875", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-west-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-875", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-west-2:123456789012:resource-875"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.053846", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-876", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-876 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.053856", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-central-1-a308459b"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-central-1:123456789012:resource-876", "name": "resource-876", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-central-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-876", "type": "config", "uid": "arn:aws:config:eu-central-1:123456789012:resource-876"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.053856", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-877", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-877 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.053866", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-southeast-1-5d6258ac"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-southeast-1:123456789012:resource-877", "name": "resource-877", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-southeast-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-877", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-southeast-1:123456789012:resource-877"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.053866", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-878", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-878 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.053876", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-ap-southeast-2-5a711589"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-southeast-2:123456789012:resource-878", "name": "resource-878", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-southeast-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-878", "type": "ec2", "uid": "arn:aws:ec2:ap-southeast-2:123456789012:resource-878"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.053876", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-879", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-879 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.053886", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-northeast-1-2ea9eeb1"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-northeast-1:123456789012:resource-879", "name": "resource-879", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-northeast-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-879", "type": "ecr", "uid": "arn:aws:ecr:ap-northeast-1:123456789012:resource-879"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.053886", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-880", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-880 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.053896", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-1-732e9ab7"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-east-1:123456789012:resource-880", "name": "resource-880", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-east-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-880", "type": "ecs", "uid": "arn:aws:ecs:us-east-1:123456789012:resource-880"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.053896", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-881", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-881 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.053906", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-2-0e6e5417"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-east-2:123456789012:resource-881", "name": "resource-881", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-east-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-881", "type": "efs", "uid": "arn:aws:efs:us-east-2:123456789012:resource-881"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.053906", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-882", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-882 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.053916", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-us-west-1-f038f630"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-west-1:123456789012:resource-882", "name": "resource-882", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-west-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-882", "type": "eks", "uid": "arn:aws:eks:us-west-1:123456789012:resource-882"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.053916", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-883", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-883 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.053926", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-2-e79b3284"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-west-2:123456789012:resource-883", "name": "resource-883", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-west-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-883", "type": "elasticache", "uid": "arn:aws:elasticache:us-west-2:123456789012:resource-883"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.053926", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-884", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-884 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.053936", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-eu-west-1-1fd84007"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-west-1:123456789012:resource-884", "name": "resource-884", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-west-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-884", "type": "elb", "uid": "arn:aws:elb:eu-west-1:123456789012:resource-884"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.053936", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-885", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-885 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.053945", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-2-fcc52d6e"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-west-2:123456789012:resource-885", "name": "resource-885", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-west-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-885", "type": "emr", "uid": "arn:aws:emr:eu-west-2:123456789012:resource-885"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.053945", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-886", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-886 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.053955", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-central-1-56491f00"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-central-1:123456789012:resource-886", "name": "resource-886", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-central-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-886", "type": "guardduty", "uid": "arn:aws:guardduty:eu-central-1:123456789012:resource-886"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.053955", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-887", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-887 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.053965", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-ap-southeast-1-f4f33b71"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-southeast-1:123456789012:resource-887", "name": "resource-887", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-southeast-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-887", "type": "iam", "uid": "arn:aws:iam:ap-southeast-1:123456789012:resource-887"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.053965", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-888", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-888 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.053974", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-2-9cd1ab24"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-southeast-2:123456789012:resource-888", "name": "resource-888", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-southeast-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-888", "type": "kms", "uid": "arn:aws:kms:ap-southeast-2:123456789012:resource-888"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.053974", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-889", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-889 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.053984", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-northeast-1-0ec7fc1e"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-northeast-1:123456789012:resource-889", "name": "resource-889", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-northeast-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-889", "type": "lambda", "uid": "arn:aws:lambda:ap-northeast-1:123456789012:resource-889"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.053984", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-890", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-890 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.053994", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-us-east-1-06c4abc8"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-east-1:123456789012:resource-890", "name": "resource-890", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-east-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-890", "type": "rds", "uid": "arn:aws:rds:us-east-1:123456789012:resource-890"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.053994", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-891", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-891 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.054003", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-2-ea9d406d"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-east-2:123456789012:resource-891", "name": "resource-891", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-east-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-891", "type": "redshift", "uid": "arn:aws:redshift:us-east-2:123456789012:resource-891"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.054003", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-892", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-892 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.054013", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-us-west-1-6cff053f"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-west-1:123456789012:resource-892", "name": "resource-892", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-west-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-892", "type": "s3", "uid": "arn:aws:s3:us-west-1:123456789012:resource-892"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.054013", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-893", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-893 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.054037", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-2-de1f487a"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-west-2:123456789012:resource-893", "name": "resource-893", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-west-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-893", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-west-2:123456789012:resource-893"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.054037", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-894", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-894 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.054047", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-1-5428084d"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-west-1:123456789012:resource-894", "name": "resource-894", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-west-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-894", "type": "sns", "uid": "arn:aws:sns:eu-west-1:123456789012:resource-894"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.054047", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-895", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-895 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.054056", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-2-44a0827d"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-west-2:123456789012:resource-895", "name": "resource-895", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-west-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-895", "type": "sqs", "uid": "arn:aws:sqs:eu-west-2:123456789012:resource-895"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.054056", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-896", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-896 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.054066", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-central-1-68516e34"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-central-1:123456789012:resource-896", "name": "resource-896", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-central-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-896", "type": "ssm", "uid": "arn:aws:ssm:eu-central-1:123456789012:resource-896"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.054066", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-897", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-897 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.054075", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-1-756ce0bc"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-southeast-1:123456789012:resource-897", "name": "resource-897", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-southeast-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-897", "type": "vpc", "uid": "arn:aws:vpc:ap-southeast-1:123456789012:resource-897"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.054075", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-898", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-898 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.054085", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-2-6d0d9658"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-southeast-2:123456789012:resource-898", "name": "resource-898", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-southeast-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-898", "type": "waf", "uid": "arn:aws:waf:ap-southeast-2:123456789012:resource-898"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.054085", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-899", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-899 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.054094", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-ap-northeast-1-2ba44666"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-899", "name": "resource-899", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-northeast-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-899", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-899"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.054094", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-900", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-900 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.054104", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-us-east-1-ee4e8986"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-east-1:123456789012:resource-900", "name": "resource-900", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-east-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-900", "type": "acm", "uid": "arn:aws:acm:us-east-1:123456789012:resource-900"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.054104", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-901", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-901 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.054114", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-east-2-da55c053"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-east-2:123456789012:resource-901", "name": "resource-901", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-east-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-901", "type": "apigateway", "uid": "arn:aws:apigateway:us-east-2:123456789012:resource-901"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.054114", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-902", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-902 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.054124", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-west-1-a6c0e414"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-west-1:123456789012:resource-902", "name": "resource-902", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-west-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-902", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-west-1:123456789012:resource-902"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.054124", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-903", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-903 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.054133", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-west-2-aeb0e291"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-west-2:123456789012:resource-903", "name": "resource-903", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-west-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-903", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-west-2:123456789012:resource-903"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.054133", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-904", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-904 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.054143", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-1-a2eebb75"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-west-1:123456789012:resource-904", "name": "resource-904", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-west-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-904", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-west-1:123456789012:resource-904"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.054143", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-905", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-905 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.054152", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-2-6db11c63"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-west-2:123456789012:resource-905", "name": "resource-905", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-west-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-905", "type": "config", "uid": "arn:aws:config:eu-west-2:123456789012:resource-905"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.054152", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-906", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-906 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.054161", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-central-1-9a5c927d"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-central-1:123456789012:resource-906", "name": "resource-906", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-central-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-906", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-central-1:123456789012:resource-906"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.054161", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-907", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-907 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.054170", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-ap-southeast-1-78bacc6a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-southeast-1:123456789012:resource-907", "name": "resource-907", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-southeast-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-907", "type": "ec2", "uid": "arn:aws:ec2:ap-southeast-1:123456789012:resource-907"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.054170", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-908", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-908 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.054180", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-ap-southeast-2-c5b6cf9d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-southeast-2:123456789012:resource-908", "name": "resource-908", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-southeast-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-908", "type": "ecr", "uid": "arn:aws:ecr:ap-southeast-2:123456789012:resource-908"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.054180", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-909", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-909 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.054191", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-northeast-1-db9a7ad8"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-northeast-1:123456789012:resource-909", "name": "resource-909", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-northeast-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-909", "type": "ecs", "uid": "arn:aws:ecs:ap-northeast-1:123456789012:resource-909"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.054191", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-910", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-910 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.054202", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-1-50dabafe"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-east-1:123456789012:resource-910", "name": "resource-910", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-east-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-910", "type": "efs", "uid": "arn:aws:efs:us-east-1:123456789012:resource-910"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.054202", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-911", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-911 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.054211", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-east-2-151dee89"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-east-2:123456789012:resource-911", "name": "resource-911", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-east-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-911", "type": "eks", "uid": "arn:aws:eks:us-east-2:123456789012:resource-911"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.054211", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-912", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-912 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.054221", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-1-9df74138"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-west-1:123456789012:resource-912", "name": "resource-912", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-west-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-912", "type": "elasticache", "uid": "arn:aws:elasticache:us-west-1:123456789012:resource-912"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.054221", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-913", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-913 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.054231", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-us-west-2-8c9bff35"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-west-2:123456789012:resource-913", "name": "resource-913", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-west-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-913", "type": "elb", "uid": "arn:aws:elb:us-west-2:123456789012:resource-913"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.054231", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-914", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-914 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.054240", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-1-edbf61a2"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-west-1:123456789012:resource-914", "name": "resource-914", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-west-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-914", "type": "emr", "uid": "arn:aws:emr:eu-west-1:123456789012:resource-914"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.054240", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-915", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-915 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.054249", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-west-2-170cd102"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-west-2:123456789012:resource-915", "name": "resource-915", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-west-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-915", "type": "guardduty", "uid": "arn:aws:guardduty:eu-west-2:123456789012:resource-915"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.054249", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-916", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-916 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.054260", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-eu-central-1-2f615e83"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-central-1:123456789012:resource-916", "name": "resource-916", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-central-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-916", "type": "iam", "uid": "arn:aws:iam:eu-central-1:123456789012:resource-916"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.054260", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-917", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-917 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.054286", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-1-7f111b54"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-southeast-1:123456789012:resource-917", "name": "resource-917", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-southeast-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-917", "type": "kms", "uid": "arn:aws:kms:ap-southeast-1:123456789012:resource-917"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.054286", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-918", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-918 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.054296", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-ap-southeast-2-d51fcd56"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-southeast-2:123456789012:resource-918", "name": "resource-918", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-southeast-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-918", "type": "lambda", "uid": "arn:aws:lambda:ap-southeast-2:123456789012:resource-918"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.054296", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-919", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-919 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.054305", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-ap-northeast-1-541d9063"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-northeast-1:123456789012:resource-919", "name": "resource-919", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-northeast-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-919", "type": "rds", "uid": "arn:aws:rds:ap-northeast-1:123456789012:resource-919"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.054305", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-920", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-920 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.054314", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-1-d116742a"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-east-1:123456789012:resource-920", "name": "resource-920", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-east-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-920", "type": "redshift", "uid": "arn:aws:redshift:us-east-1:123456789012:resource-920"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.054314", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-921", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-921 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.054323", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-us-east-2-dc88780b"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-east-2:123456789012:resource-921", "name": "resource-921", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-east-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-921", "type": "s3", "uid": "arn:aws:s3:us-east-2:123456789012:resource-921"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.054323", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-922", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-922 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.054333", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-1-d1b8555a"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-west-1:123456789012:resource-922", "name": "resource-922", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-west-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-922", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-west-1:123456789012:resource-922"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.054333", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-923", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-923 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.054342", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-2-e390a41b"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-west-2:123456789012:resource-923", "name": "resource-923", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-west-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-923", "type": "sns", "uid": "arn:aws:sns:us-west-2:123456789012:resource-923"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.054342", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-924", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-924 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.054351", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-1-d6887035"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-west-1:123456789012:resource-924", "name": "resource-924", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-west-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-924", "type": "sqs", "uid": "arn:aws:sqs:eu-west-1:123456789012:resource-924"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.054351", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-925", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-925 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.054361", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-2-bf5ea8b4"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-west-2:123456789012:resource-925", "name": "resource-925", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-west-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-925", "type": "ssm", "uid": "arn:aws:ssm:eu-west-2:123456789012:resource-925"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.054361", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-926", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-926 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.054370", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-eu-central-1-9fa7ab7e"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:eu-central-1:123456789012:resource-926", "name": "resource-926", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "eu-central-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-926", "type": "vpc", "uid": "arn:aws:vpc:eu-central-1:123456789012:resource-926"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.054370", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-927", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-927 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.054379", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-1-da7b0ac0"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-southeast-1:123456789012:resource-927", "name": "resource-927", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-southeast-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-927", "type": "waf", "uid": "arn:aws:waf:ap-southeast-1:123456789012:resource-927"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.054379", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-928", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-928 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.054389", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-ap-southeast-2-d59ccffd"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-southeast-2:123456789012:resource-928", "name": "resource-928", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-southeast-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-928", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-southeast-2:123456789012:resource-928"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.054389", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-929", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-929 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.054398", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-northeast-1-e2e2e6c3"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:ap-northeast-1:123456789012:resource-929", "name": "resource-929", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "ap-northeast-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-929", "type": "acm", "uid": "arn:aws:acm:ap-northeast-1:123456789012:resource-929"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.054398", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-930", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-930 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.054407", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-east-1-6af0f02a"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-east-1:123456789012:resource-930", "name": "resource-930", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-east-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-930", "type": "apigateway", "uid": "arn:aws:apigateway:us-east-1:123456789012:resource-930"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.054407", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-931", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-931 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.054417", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-east-2-e607e31f"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-east-2:123456789012:resource-931", "name": "resource-931", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-east-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-931", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-east-2:123456789012:resource-931"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.054417", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-932", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-932 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.054426", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-west-1-ccee8d11"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-west-1:123456789012:resource-932", "name": "resource-932", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-west-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-932", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-west-1:123456789012:resource-932"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.054426", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-933", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-933 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.054436", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-2-080be5b8"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-west-2:123456789012:resource-933", "name": "resource-933", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-west-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-933", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-west-2:123456789012:resource-933"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.054436", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-934", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-934 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.054446", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-1-48d805e7"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-west-1:123456789012:resource-934", "name": "resource-934", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-west-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-934", "type": "config", "uid": "arn:aws:config:eu-west-1:123456789012:resource-934"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.054446", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-935", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-935 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.054455", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-eu-west-2-a9b3ff92"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-west-2:123456789012:resource-935", "name": "resource-935", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-west-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-935", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-west-2:123456789012:resource-935"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.054455", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-936", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-936 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.054464", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-eu-central-1-4f1a3e9b"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:eu-central-1:123456789012:resource-936", "name": "resource-936", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "eu-central-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-936", "type": "ec2", "uid": "arn:aws:ec2:eu-central-1:123456789012:resource-936"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.054464", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-937", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-937 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.054474", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-southeast-1-049ee5a5"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-southeast-1:123456789012:resource-937", "name": "resource-937", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-southeast-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-937", "type": "ecr", "uid": "arn:aws:ecr:ap-southeast-1:123456789012:resource-937"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.054474", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-938", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-938 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.054483", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-2-6199919a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-southeast-2:123456789012:resource-938", "name": "resource-938", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-southeast-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-938", "type": "ecs", "uid": "arn:aws:ecs:ap-southeast-2:123456789012:resource-938"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.054483", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-939", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-939 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.054493", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-northeast-1-27e63fd1"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:ap-northeast-1:123456789012:resource-939", "name": "resource-939", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "ap-northeast-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-939", "type": "efs", "uid": "arn:aws:efs:ap-northeast-1:123456789012:resource-939"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.054493", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-940", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-940 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.054502", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-us-east-1-acf9e77c"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-east-1:123456789012:resource-940", "name": "resource-940", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-east-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-940", "type": "eks", "uid": "arn:aws:eks:us-east-1:123456789012:resource-940"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.054502", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-941", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-941 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.054789", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-2-fda57165"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-east-2:123456789012:resource-941", "name": "resource-941", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-east-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-941", "type": "elasticache", "uid": "arn:aws:elasticache:us-east-2:123456789012:resource-941"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.054789", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-942", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-942 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.054799", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-us-west-1-be057df4"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-west-1:123456789012:resource-942", "name": "resource-942", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-west-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-942", "type": "elb", "uid": "arn:aws:elb:us-west-1:123456789012:resource-942"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.054799", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-943", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-943 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.054809", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-2-d1a92605"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-west-2:123456789012:resource-943", "name": "resource-943", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-west-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-943", "type": "emr", "uid": "arn:aws:emr:us-west-2:123456789012:resource-943"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.054809", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-944", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-944 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.054818", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-west-1-37f99bff"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-west-1:123456789012:resource-944", "name": "resource-944", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-west-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-944", "type": "guardduty", "uid": "arn:aws:guardduty:eu-west-1:123456789012:resource-944"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.054818", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-945", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-945 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.054827", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-eu-west-2-5c5d8194"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-west-2:123456789012:resource-945", "name": "resource-945", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-west-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-945", "type": "iam", "uid": "arn:aws:iam:eu-west-2:123456789012:resource-945"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.054827", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-946", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-946 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.054837", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-central-1-c53cd68a"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:eu-central-1:123456789012:resource-946", "name": "resource-946", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "eu-central-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-946", "type": "kms", "uid": "arn:aws:kms:eu-central-1:123456789012:resource-946"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.054837", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-947", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-947 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.054846", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-southeast-1-3b3a8b10"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-southeast-1:123456789012:resource-947", "name": "resource-947", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-southeast-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-947", "type": "lambda", "uid": "arn:aws:lambda:ap-southeast-1:123456789012:resource-947"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.054846", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-948", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-948 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.054855", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-ap-southeast-2-dd3ddb3f"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-southeast-2:123456789012:resource-948", "name": "resource-948", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-southeast-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-948", "type": "rds", "uid": "arn:aws:rds:ap-southeast-2:123456789012:resource-948"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.054855", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-949", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-949 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.054865", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-ap-northeast-1-158adc7f"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:ap-northeast-1:123456789012:resource-949", "name": "resource-949", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "ap-northeast-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-949", "type": "redshift", "uid": "arn:aws:redshift:ap-northeast-1:123456789012:resource-949"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.054865", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-950", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-950 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.054874", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-us-east-1-f7a6f038"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-east-1:123456789012:resource-950", "name": "resource-950", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-east-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-950", "type": "s3", "uid": "arn:aws:s3:us-east-1:123456789012:resource-950"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.054874", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-951", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-951 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.054883", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-2-326ddb6d"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-east-2:123456789012:resource-951", "name": "resource-951", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-east-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-951", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-east-2:123456789012:resource-951"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.054883", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-952", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-952 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.054893", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-1-2612a379"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-west-1:123456789012:resource-952", "name": "resource-952", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-west-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-952", "type": "sns", "uid": "arn:aws:sns:us-west-1:123456789012:resource-952"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.054893", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-953", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-953 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.054902", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-2-bf5e9f54"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-west-2:123456789012:resource-953", "name": "resource-953", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-west-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-953", "type": "sqs", "uid": "arn:aws:sqs:us-west-2:123456789012:resource-953"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.054902", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-954", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-954 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.054911", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-1-9afe9c91"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-west-1:123456789012:resource-954", "name": "resource-954", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-west-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-954", "type": "ssm", "uid": "arn:aws:ssm:eu-west-1:123456789012:resource-954"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.054911", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-955", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-955 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.054921", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-2-86dbd1c6"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:eu-west-2:123456789012:resource-955", "name": "resource-955", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "eu-west-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-955", "type": "vpc", "uid": "arn:aws:vpc:eu-west-2:123456789012:resource-955"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.054921", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-956", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-956 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.054930", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-central-1-7f7db210"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:eu-central-1:123456789012:resource-956", "name": "resource-956", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "eu-central-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-956", "type": "waf", "uid": "arn:aws:waf:eu-central-1:123456789012:resource-956"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.054930", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-957", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-957 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.054939", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-ap-southeast-1-5e4c2e9e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-southeast-1:123456789012:resource-957", "name": "resource-957", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-southeast-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-957", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-southeast-1:123456789012:resource-957"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.054939", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-958", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-958 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.054948", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-ap-southeast-2-e5e620de"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:ap-southeast-2:123456789012:resource-958", "name": "resource-958", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "ap-southeast-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-958", "type": "acm", "uid": "arn:aws:acm:ap-southeast-2:123456789012:resource-958"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.054948", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-959", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-959 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.054958", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-northeast-1-499d9e9e"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:ap-northeast-1:123456789012:resource-959", "name": "resource-959", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "ap-northeast-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-959", "type": "apigateway", "uid": "arn:aws:apigateway:ap-northeast-1:123456789012:resource-959"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.054958", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-960", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-960 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.054968", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-east-1-555ebe27"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-east-1:123456789012:resource-960", "name": "resource-960", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-east-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-960", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-east-1:123456789012:resource-960"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.054968", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-961", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-961 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.054978", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-east-2-a969c32c"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-east-2:123456789012:resource-961", "name": "resource-961", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-east-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-961", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-east-2:123456789012:resource-961"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.054978", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-962", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-962 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.054987", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-1-53bc9b8a"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-west-1:123456789012:resource-962", "name": "resource-962", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-west-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-962", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-west-1:123456789012:resource-962"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.054987", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-963", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-963 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.054996", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-2-fd99442e"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-west-2:123456789012:resource-963", "name": "resource-963", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-west-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-963", "type": "config", "uid": "arn:aws:config:us-west-2:123456789012:resource-963"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.054996", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-964", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-964 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.055006", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-west-1-8c2ed862"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-west-1:123456789012:resource-964", "name": "resource-964", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-west-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-964", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-west-1:123456789012:resource-964"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.055006", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-965", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-965 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.055029", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-eu-west-2-5f247677"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:eu-west-2:123456789012:resource-965", "name": "resource-965", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "eu-west-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-965", "type": "ec2", "uid": "arn:aws:ec2:eu-west-2:123456789012:resource-965"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.055029", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-966", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-966 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.055039", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-central-1-32f64030"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:eu-central-1:123456789012:resource-966", "name": "resource-966", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "eu-central-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-966", "type": "ecr", "uid": "arn:aws:ecr:eu-central-1:123456789012:resource-966"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.055039", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-967", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-967 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.055048", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-1-e4e76671"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-southeast-1:123456789012:resource-967", "name": "resource-967", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-southeast-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-967", "type": "ecs", "uid": "arn:aws:ecs:ap-southeast-1:123456789012:resource-967"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.055048", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-968", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-968 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.055058", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-2-278eefb9"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:ap-southeast-2:123456789012:resource-968", "name": "resource-968", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "ap-southeast-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-968", "type": "efs", "uid": "arn:aws:efs:ap-southeast-2:123456789012:resource-968"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.055058", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-969", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-969 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.055067", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-northeast-1-8127483a"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:ap-northeast-1:123456789012:resource-969", "name": "resource-969", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "ap-northeast-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-969", "type": "eks", "uid": "arn:aws:eks:ap-northeast-1:123456789012:resource-969"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.055067", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-970", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-970 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.055076", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-1-5d59b455"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-east-1:123456789012:resource-970", "name": "resource-970", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-east-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-970", "type": "elasticache", "uid": "arn:aws:elasticache:us-east-1:123456789012:resource-970"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.055076", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-971", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-971 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.055087", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-us-east-2-faade4a7"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-east-2:123456789012:resource-971", "name": "resource-971", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-east-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-971", "type": "elb", "uid": "arn:aws:elb:us-east-2:123456789012:resource-971"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.055087", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-972", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-972 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.055096", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-1-dd9dfa77"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-west-1:123456789012:resource-972", "name": "resource-972", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-west-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-972", "type": "emr", "uid": "arn:aws:emr:us-west-1:123456789012:resource-972"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.055096", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-973", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-973 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.055108", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-west-2-3e2e5f4f"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-west-2:123456789012:resource-973", "name": "resource-973", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-west-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-973", "type": "guardduty", "uid": "arn:aws:guardduty:us-west-2:123456789012:resource-973"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.055108", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-974", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-974 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.055117", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-eu-west-1-04e59bea"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-west-1:123456789012:resource-974", "name": "resource-974", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-west-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-974", "type": "iam", "uid": "arn:aws:iam:eu-west-1:123456789012:resource-974"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.055117", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-975", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-975 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.055126", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-2-3a546717"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:eu-west-2:123456789012:resource-975", "name": "resource-975", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "eu-west-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-975", "type": "kms", "uid": "arn:aws:kms:eu-west-2:123456789012:resource-975"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.055126", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-976", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-976 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.055136", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-eu-central-1-533c676b"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:eu-central-1:123456789012:resource-976", "name": "resource-976", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "eu-central-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-976", "type": "lambda", "uid": "arn:aws:lambda:eu-central-1:123456789012:resource-976"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.055136", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-977", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-977 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.055145", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-ap-southeast-1-20101a16"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-southeast-1:123456789012:resource-977", "name": "resource-977", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-southeast-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-977", "type": "rds", "uid": "arn:aws:rds:ap-southeast-1:123456789012:resource-977"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.055145", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-978", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-978 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.055154", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-2-4881229d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:ap-southeast-2:123456789012:resource-978", "name": "resource-978", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "ap-southeast-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-978", "type": "redshift", "uid": "arn:aws:redshift:ap-southeast-2:123456789012:resource-978"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.055154", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-979", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-979 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.055164", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-ap-northeast-1-3a692e7a"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:ap-northeast-1:123456789012:resource-979", "name": "resource-979", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "ap-northeast-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-979", "type": "s3", "uid": "arn:aws:s3:ap-northeast-1:123456789012:resource-979"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.055164", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-980", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-980 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.055173", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-1-2253b1c4"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-east-1:123456789012:resource-980", "name": "resource-980", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-east-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-980", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-east-1:123456789012:resource-980"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.055173", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-981", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-981 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.055182", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-2-21111f1a"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-east-2:123456789012:resource-981", "name": "resource-981", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-east-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-981", "type": "sns", "uid": "arn:aws:sns:us-east-2:123456789012:resource-981"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.055182", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-982", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-982 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.055192", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-1-c81d405f"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-west-1:123456789012:resource-982", "name": "resource-982", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-west-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-982", "type": "sqs", "uid": "arn:aws:sqs:us-west-1:123456789012:resource-982"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.055192", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-983", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-983 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.055201", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-2-f61d2e40"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-west-2:123456789012:resource-983", "name": "resource-983", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-west-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-983", "type": "ssm", "uid": "arn:aws:ssm:us-west-2:123456789012:resource-983"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.055201", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-984", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-984 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.055210", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-1-68f86b3f"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:eu-west-1:123456789012:resource-984", "name": "resource-984", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "eu-west-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-984", "type": "vpc", "uid": "arn:aws:vpc:eu-west-1:123456789012:resource-984"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.055210", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-985", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-985 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.055222", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-2-e8d5ea58"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:eu-west-2:123456789012:resource-985", "name": "resource-985", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "eu-west-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-985", "type": "waf", "uid": "arn:aws:waf:eu-west-2:123456789012:resource-985"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.055222", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-986", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-986 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.055231", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-eu-central-1-b2705c32"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:eu-central-1:123456789012:resource-986", "name": "resource-986", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "eu-central-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-986", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:eu-central-1:123456789012:resource-986"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.055231", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-987", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-987 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.055240", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-southeast-1-5b78ec66"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:ap-southeast-1:123456789012:resource-987", "name": "resource-987", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "ap-southeast-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-987", "type": "acm", "uid": "arn:aws:acm:ap-southeast-1:123456789012:resource-987"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.055240", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-988", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-988 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.055250", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-ap-southeast-2-f6653d92"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:ap-southeast-2:123456789012:resource-988", "name": "resource-988", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "ap-southeast-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-988", "type": "apigateway", "uid": "arn:aws:apigateway:ap-southeast-2:123456789012:resource-988"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.055250", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-989", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-989 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.055297", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-northeast-1-e194b54e"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:ap-northeast-1:123456789012:resource-989", "name": "resource-989", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "ap-northeast-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-989", "type": "cloudfront", "uid": "arn:aws:cloudfront:ap-northeast-1:123456789012:resource-989"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.055297", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-990", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-990 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.055323", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-east-1-1b4f5e78"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-east-1:123456789012:resource-990", "name": "resource-990", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-east-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-990", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-east-1:123456789012:resource-990"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.055323", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-991", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-991 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.055337", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-2-2870e455"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-east-2:123456789012:resource-991", "name": "resource-991", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-east-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-991", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-east-2:123456789012:resource-991"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.055337", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-992", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-992 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.055372", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-1-e51ffd6e"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-west-1:123456789012:resource-992", "name": "resource-992", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-west-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-992", "type": "config", "uid": "arn:aws:config:us-west-1:123456789012:resource-992"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.055372", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-993", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-993 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.055389", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-west-2-7faf2f8f"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-west-2:123456789012:resource-993", "name": "resource-993", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-west-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-993", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-west-2:123456789012:resource-993"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.055389", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-994", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-994 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.055400", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-eu-west-1-b5bafe32"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:eu-west-1:123456789012:resource-994", "name": "resource-994", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "eu-west-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-994", "type": "ec2", "uid": "arn:aws:ec2:eu-west-1:123456789012:resource-994"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.055400", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-995", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-995 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.055411", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-eu-west-2-2f256e44"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:eu-west-2:123456789012:resource-995", "name": "resource-995", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "eu-west-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-995", "type": "ecr", "uid": "arn:aws:ecr:eu-west-2:123456789012:resource-995"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.055411", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-996", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-996 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.055421", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-central-1-ddb86bf2"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:eu-central-1:123456789012:resource-996", "name": "resource-996", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "eu-central-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-996", "type": "ecs", "uid": "arn:aws:ecs:eu-central-1:123456789012:resource-996"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.055421", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-997", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-997 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.055432", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-1-fa1dcc1c"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:ap-southeast-1:123456789012:resource-997", "name": "resource-997", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "ap-southeast-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-997", "type": "efs", "uid": "arn:aws:efs:ap-southeast-1:123456789012:resource-997"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.055432", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-998", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-998 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.055442", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-ap-southeast-2-154d6f79"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:ap-southeast-2:123456789012:resource-998", "name": "resource-998", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "ap-southeast-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-998", "type": "eks", "uid": "arn:aws:eks:ap-southeast-2:123456789012:resource-998"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.055442", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-999", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-999 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.055451", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-northeast-1-46e21974"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:ap-northeast-1:123456789012:resource-999", "name": "resource-999", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "ap-northeast-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-999", "type": "elasticache", "uid": "arn:aws:elasticache:ap-northeast-1:123456789012:resource-999"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.055451", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-1000", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1000 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.055462", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-us-east-1-4c003426"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-east-1:123456789012:resource-1000", "name": "resource-1000", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-east-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1000", "type": "elb", "uid": "arn:aws:elb:us-east-1:123456789012:resource-1000"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.055462", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1001", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1001 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.055473", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-2-fdffab86"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-east-2:123456789012:resource-1001", "name": "resource-1001", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-east-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1001", "type": "emr", "uid": "arn:aws:emr:us-east-2:123456789012:resource-1001"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.055473", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1002", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1002 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.055482", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-west-1-5d2d4b56"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-west-1:123456789012:resource-1002", "name": "resource-1002", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-west-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1002", "type": "guardduty", "uid": "arn:aws:guardduty:us-west-1:123456789012:resource-1002"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.055482", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-1003", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1003 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.055493", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-us-west-2-7f1a3a9a"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-west-2:123456789012:resource-1003", "name": "resource-1003", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-west-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1003", "type": "iam", "uid": "arn:aws:iam:us-west-2:123456789012:resource-1003"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.055493", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1004", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1004 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.055504", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-1-fe8ebb43"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:eu-west-1:123456789012:resource-1004", "name": "resource-1004", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "eu-west-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1004", "type": "kms", "uid": "arn:aws:kms:eu-west-1:123456789012:resource-1004"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.055504", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-1005", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1005 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.055513", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-eu-west-2-ca45c8cf"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:eu-west-2:123456789012:resource-1005", "name": "resource-1005", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "eu-west-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1005", "type": "lambda", "uid": "arn:aws:lambda:eu-west-2:123456789012:resource-1005"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.055513", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-1006", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1006 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.055523", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-eu-central-1-afb2cc7f"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:eu-central-1:123456789012:resource-1006", "name": "resource-1006", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "eu-central-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1006", "type": "rds", "uid": "arn:aws:rds:eu-central-1:123456789012:resource-1006"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.055523", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1007", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1007 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.055533", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-1-9da0caad"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:ap-southeast-1:123456789012:resource-1007", "name": "resource-1007", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "ap-southeast-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1007", "type": "redshift", "uid": "arn:aws:redshift:ap-southeast-1:123456789012:resource-1007"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.055533", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-1008", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1008 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.055542", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-ap-southeast-2-7fb1e581"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:ap-southeast-2:123456789012:resource-1008", "name": "resource-1008", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "ap-southeast-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1008", "type": "s3", "uid": "arn:aws:s3:ap-southeast-2:123456789012:resource-1008"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.055542", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1009", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1009 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.055552", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-northeast-1-021a97ce"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:ap-northeast-1:123456789012:resource-1009", "name": "resource-1009", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "ap-northeast-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1009", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:ap-northeast-1:123456789012:resource-1009"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.055552", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1010", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1010 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.055562", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-1-2e06544e"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-east-1:123456789012:resource-1010", "name": "resource-1010", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-east-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1010", "type": "sns", "uid": "arn:aws:sns:us-east-1:123456789012:resource-1010"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.055562", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1011", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1011 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.055573", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-2-d693532c"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-east-2:123456789012:resource-1011", "name": "resource-1011", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-east-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1011", "type": "sqs", "uid": "arn:aws:sqs:us-east-2:123456789012:resource-1011"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.055573", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1012", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1012 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.055583", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-1-d221f2d7"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-west-1:123456789012:resource-1012", "name": "resource-1012", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-west-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1012", "type": "ssm", "uid": "arn:aws:ssm:us-west-1:123456789012:resource-1012"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.055583", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1013", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1013 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.055610", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-2-58d66d23"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-west-2:123456789012:resource-1013", "name": "resource-1013", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-west-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1013", "type": "vpc", "uid": "arn:aws:vpc:us-west-2:123456789012:resource-1013"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.055610", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1014", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1014 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.055619", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-1-53d0f34d"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:eu-west-1:123456789012:resource-1014", "name": "resource-1014", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "eu-west-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1014", "type": "waf", "uid": "arn:aws:waf:eu-west-1:123456789012:resource-1014"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.055619", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-1015", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1015 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.055629", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-eu-west-2-5ab7ca79"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:eu-west-2:123456789012:resource-1015", "name": "resource-1015", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "eu-west-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1015", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:eu-west-2:123456789012:resource-1015"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.055629", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-1016", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1016 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.055639", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-eu-central-1-3d96c356"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:eu-central-1:123456789012:resource-1016", "name": "resource-1016", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "eu-central-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1016", "type": "acm", "uid": "arn:aws:acm:eu-central-1:123456789012:resource-1016"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.055639", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-1017", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1017 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.055648", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-southeast-1-f0b983af"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:ap-southeast-1:123456789012:resource-1017", "name": "resource-1017", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "ap-southeast-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1017", "type": "apigateway", "uid": "arn:aws:apigateway:ap-southeast-1:123456789012:resource-1017"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.055648", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-1018", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1018 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.055658", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-ap-southeast-2-99734fc8"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:ap-southeast-2:123456789012:resource-1018", "name": "resource-1018", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "ap-southeast-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1018", "type": "cloudfront", "uid": "arn:aws:cloudfront:ap-southeast-2:123456789012:resource-1018"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.055658", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-1019", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1019 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.055667", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-northeast-1-80589de7"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:ap-northeast-1:123456789012:resource-1019", "name": "resource-1019", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "ap-northeast-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1019", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:ap-northeast-1:123456789012:resource-1019"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.055667", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1020", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1020 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.055676", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-1-8944c81d"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-east-1:123456789012:resource-1020", "name": "resource-1020", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-east-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1020", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-east-1:123456789012:resource-1020"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.055676", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1021", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1021 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.055686", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-2-de8ec7aa"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-east-2:123456789012:resource-1021", "name": "resource-1021", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-east-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1021", "type": "config", "uid": "arn:aws:config:us-east-2:123456789012:resource-1021"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.055686", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-1022", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1022 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.055696", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-west-1-4b4f54f3"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-west-1:123456789012:resource-1022", "name": "resource-1022", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-west-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1022", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-west-1:123456789012:resource-1022"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.055696", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-1023", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1023 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.055705", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-us-west-2-23c8a987"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-west-2:123456789012:resource-1023", "name": "resource-1023", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-west-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1023", "type": "ec2", "uid": "arn:aws:ec2:us-west-2:123456789012:resource-1023"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.055705", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-1024", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1024 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.055715", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-west-1-4e6fe6b9"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:eu-west-1:123456789012:resource-1024", "name": "resource-1024", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "eu-west-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1024", "type": "ecr", "uid": "arn:aws:ecr:eu-west-1:123456789012:resource-1024"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.055715", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1025", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1025 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.055724", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-2-fad8f26b"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:eu-west-2:123456789012:resource-1025", "name": "resource-1025", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "eu-west-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1025", "type": "ecs", "uid": "arn:aws:ecs:eu-west-2:123456789012:resource-1025"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.055724", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1026", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1026 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.055734", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-central-1-1c972c16"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:eu-central-1:123456789012:resource-1026", "name": "resource-1026", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "eu-central-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1026", "type": "efs", "uid": "arn:aws:efs:eu-central-1:123456789012:resource-1026"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.055734", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-1027", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1027 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.055743", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-southeast-1-c115fd8d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:ap-southeast-1:123456789012:resource-1027", "name": "resource-1027", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "ap-southeast-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1027", "type": "eks", "uid": "arn:aws:eks:ap-southeast-1:123456789012:resource-1027"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.055743", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1028", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1028 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.055752", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-2-1fb177aa"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:ap-southeast-2:123456789012:resource-1028", "name": "resource-1028", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "ap-southeast-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1028", "type": "elasticache", "uid": "arn:aws:elasticache:ap-southeast-2:123456789012:resource-1028"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.055752", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-1029", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1029 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.055762", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-ap-northeast-1-2865b474"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:ap-northeast-1:123456789012:resource-1029", "name": "resource-1029", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "ap-northeast-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1029", "type": "elb", "uid": "arn:aws:elb:ap-northeast-1:123456789012:resource-1029"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.055762", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1030", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1030 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.055771", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-1-e5de99af"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-east-1:123456789012:resource-1030", "name": "resource-1030", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-east-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1030", "type": "emr", "uid": "arn:aws:emr:us-east-1:123456789012:resource-1030"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.055771", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1031", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1031 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.055780", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-east-2-51277688"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-east-2:123456789012:resource-1031", "name": "resource-1031", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-east-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1031", "type": "guardduty", "uid": "arn:aws:guardduty:us-east-2:123456789012:resource-1031"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.055780", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-1032", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1032 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.055789", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-us-west-1-1935fc59"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-west-1:123456789012:resource-1032", "name": "resource-1032", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-west-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1032", "type": "iam", "uid": "arn:aws:iam:us-west-1:123456789012:resource-1032"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.055789", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1033", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1033 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.055799", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-2-925f520b"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-west-2:123456789012:resource-1033", "name": "resource-1033", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-west-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1033", "type": "kms", "uid": "arn:aws:kms:us-west-2:123456789012:resource-1033"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.055799", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-1034", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1034 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.055808", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-eu-west-1-eb75e3ae"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:eu-west-1:123456789012:resource-1034", "name": "resource-1034", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "eu-west-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1034", "type": "lambda", "uid": "arn:aws:lambda:eu-west-1:123456789012:resource-1034"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.055808", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-1035", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1035 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.055817", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-eu-west-2-5ade8af4"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:eu-west-2:123456789012:resource-1035", "name": "resource-1035", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "eu-west-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1035", "type": "rds", "uid": "arn:aws:rds:eu-west-2:123456789012:resource-1035"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.055817", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1036", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1036 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.055826", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-eu-central-1-bc7db059"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:eu-central-1:123456789012:resource-1036", "name": "resource-1036", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "eu-central-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1036", "type": "redshift", "uid": "arn:aws:redshift:eu-central-1:123456789012:resource-1036"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.055826", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-1037", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1037 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.055850", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-ap-southeast-1-299a1032"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:ap-southeast-1:123456789012:resource-1037", "name": "resource-1037", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "ap-southeast-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1037", "type": "s3", "uid": "arn:aws:s3:ap-southeast-1:123456789012:resource-1037"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.055850", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1038", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1038 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.055859", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-2-75aacda9"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:ap-southeast-2:123456789012:resource-1038", "name": "resource-1038", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "ap-southeast-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1038", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:ap-southeast-2:123456789012:resource-1038"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.055859", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1039", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1039 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.055869", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-northeast-1-2166a5b3"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:ap-northeast-1:123456789012:resource-1039", "name": "resource-1039", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "ap-northeast-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1039", "type": "sns", "uid": "arn:aws:sns:ap-northeast-1:123456789012:resource-1039"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.055869", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1040", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1040 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.055878", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-1-a4265431"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-east-1:123456789012:resource-1040", "name": "resource-1040", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-east-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1040", "type": "sqs", "uid": "arn:aws:sqs:us-east-1:123456789012:resource-1040"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.055878", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1041", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1041 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.055886", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-2-ffe4e5b2"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-east-2:123456789012:resource-1041", "name": "resource-1041", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-east-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1041", "type": "ssm", "uid": "arn:aws:ssm:us-east-2:123456789012:resource-1041"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.055886", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1042", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1042 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.055896", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-1-7975bf7e"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-west-1:123456789012:resource-1042", "name": "resource-1042", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-west-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1042", "type": "vpc", "uid": "arn:aws:vpc:us-west-1:123456789012:resource-1042"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.055896", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1043", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1043 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.055905", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-2-f49346a0"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-west-2:123456789012:resource-1043", "name": "resource-1043", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-west-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1043", "type": "waf", "uid": "arn:aws:waf:us-west-2:123456789012:resource-1043"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.055905", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-1044", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1044 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.055914", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-eu-west-1-5ce222d6"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:eu-west-1:123456789012:resource-1044", "name": "resource-1044", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "eu-west-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1044", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:eu-west-1:123456789012:resource-1044"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.055914", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-1045", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1045 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.055923", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-eu-west-2-b4ced2d7"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:eu-west-2:123456789012:resource-1045", "name": "resource-1045", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "eu-west-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1045", "type": "acm", "uid": "arn:aws:acm:eu-west-2:123456789012:resource-1045"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.055923", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-1046", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1046 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.055932", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-central-1-7118e466"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:eu-central-1:123456789012:resource-1046", "name": "resource-1046", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "eu-central-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1046", "type": "apigateway", "uid": "arn:aws:apigateway:eu-central-1:123456789012:resource-1046"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.055932", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-1047", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1047 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.055941", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-southeast-1-ee96598d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:ap-southeast-1:123456789012:resource-1047", "name": "resource-1047", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "ap-southeast-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1047", "type": "cloudfront", "uid": "arn:aws:cloudfront:ap-southeast-1:123456789012:resource-1047"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.055941", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-1048", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1048 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.055950", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-ap-southeast-2-ac92ce7f"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:ap-southeast-2:123456789012:resource-1048", "name": "resource-1048", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "ap-southeast-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1048", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:ap-southeast-2:123456789012:resource-1048"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.055950", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1049", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1049 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.055959", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-northeast-1-fc46e2ae"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:ap-northeast-1:123456789012:resource-1049", "name": "resource-1049", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "ap-northeast-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1049", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:ap-northeast-1:123456789012:resource-1049"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.055959", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1050", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1050 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.055968", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-1-6b418812"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-east-1:123456789012:resource-1050", "name": "resource-1050", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-east-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1050", "type": "config", "uid": "arn:aws:config:us-east-1:123456789012:resource-1050"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.055968", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-1051", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1051 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.055978", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-east-2-1b1ee8cc"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-east-2:123456789012:resource-1051", "name": "resource-1051", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-east-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1051", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-east-2:123456789012:resource-1051"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.055978", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-1052", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1052 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.055987", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-us-west-1-0530f770"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-west-1:123456789012:resource-1052", "name": "resource-1052", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-west-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1052", "type": "ec2", "uid": "arn:aws:ec2:us-west-1:123456789012:resource-1052"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.055987", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-1053", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1053 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.055996", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-west-2-16fd1102"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-west-2:123456789012:resource-1053", "name": "resource-1053", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-west-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1053", "type": "ecr", "uid": "arn:aws:ecr:us-west-2:123456789012:resource-1053"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.055996", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1054", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1054 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.056005", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-1-713ae672"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:eu-west-1:123456789012:resource-1054", "name": "resource-1054", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "eu-west-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1054", "type": "ecs", "uid": "arn:aws:ecs:eu-west-1:123456789012:resource-1054"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.056005", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1055", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1055 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.056014", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-2-5715d902"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:eu-west-2:123456789012:resource-1055", "name": "resource-1055", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "eu-west-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1055", "type": "efs", "uid": "arn:aws:efs:eu-west-2:123456789012:resource-1055"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.056014", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-1056", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1056 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.056024", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-eu-central-1-a224e1ba"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:eu-central-1:123456789012:resource-1056", "name": "resource-1056", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "eu-central-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1056", "type": "eks", "uid": "arn:aws:eks:eu-central-1:123456789012:resource-1056"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.056024", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1057", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1057 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.056034", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-1-5edb3430"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:ap-southeast-1:123456789012:resource-1057", "name": "resource-1057", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "ap-southeast-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1057", "type": "elasticache", "uid": "arn:aws:elasticache:ap-southeast-1:123456789012:resource-1057"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.056034", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-1058", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1058 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.056043", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-ap-southeast-2-eb02ab10"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:ap-southeast-2:123456789012:resource-1058", "name": "resource-1058", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "ap-southeast-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1058", "type": "elb", "uid": "arn:aws:elb:ap-southeast-2:123456789012:resource-1058"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.056043", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1059", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1059 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.056052", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-northeast-1-8b0c4e9a"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:ap-northeast-1:123456789012:resource-1059", "name": "resource-1059", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "ap-northeast-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1059", "type": "emr", "uid": "arn:aws:emr:ap-northeast-1:123456789012:resource-1059"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.056052", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1060", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1060 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.056061", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-east-1-a6ebfa8e"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-east-1:123456789012:resource-1060", "name": "resource-1060", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-east-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1060", "type": "guardduty", "uid": "arn:aws:guardduty:us-east-1:123456789012:resource-1060"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.056061", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-1061", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1061 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.056084", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-us-east-2-4071b855"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-east-2:123456789012:resource-1061", "name": "resource-1061", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-east-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1061", "type": "iam", "uid": "arn:aws:iam:us-east-2:123456789012:resource-1061"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.056084", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1062", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1062 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.056093", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-1-4f2a04db"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-west-1:123456789012:resource-1062", "name": "resource-1062", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-west-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1062", "type": "kms", "uid": "arn:aws:kms:us-west-1:123456789012:resource-1062"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.056093", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-1063", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1063 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.056103", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-west-2-1a7557d2"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-west-2:123456789012:resource-1063", "name": "resource-1063", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-west-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1063", "type": "lambda", "uid": "arn:aws:lambda:us-west-2:123456789012:resource-1063"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.056103", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-1064", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1064 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.056112", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-eu-west-1-c85203ce"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:eu-west-1:123456789012:resource-1064", "name": "resource-1064", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "eu-west-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1064", "type": "rds", "uid": "arn:aws:rds:eu-west-1:123456789012:resource-1064"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.056112", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1065", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1065 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.056121", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-2-b434e0ea"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:eu-west-2:123456789012:resource-1065", "name": "resource-1065", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "eu-west-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1065", "type": "redshift", "uid": "arn:aws:redshift:eu-west-2:123456789012:resource-1065"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.056121", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-1066", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1066 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.056130", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-eu-central-1-699477e0"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:eu-central-1:123456789012:resource-1066", "name": "resource-1066", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "eu-central-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1066", "type": "s3", "uid": "arn:aws:s3:eu-central-1:123456789012:resource-1066"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.056130", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1067", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1067 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.056140", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-1-ab5eaccc"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:ap-southeast-1:123456789012:resource-1067", "name": "resource-1067", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "ap-southeast-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1067", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:ap-southeast-1:123456789012:resource-1067"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.056140", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1068", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1068 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.056150", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-2-ef7c1469"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:ap-southeast-2:123456789012:resource-1068", "name": "resource-1068", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "ap-southeast-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1068", "type": "sns", "uid": "arn:aws:sns:ap-southeast-2:123456789012:resource-1068"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.056150", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1069", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1069 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.056160", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-northeast-1-333315cc"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:ap-northeast-1:123456789012:resource-1069", "name": "resource-1069", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "ap-northeast-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1069", "type": "sqs", "uid": "arn:aws:sqs:ap-northeast-1:123456789012:resource-1069"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.056160", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1070", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1070 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.056169", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-1-4321bde8"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-east-1:123456789012:resource-1070", "name": "resource-1070", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-east-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1070", "type": "ssm", "uid": "arn:aws:ssm:us-east-1:123456789012:resource-1070"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.056169", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1071", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1071 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.056177", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-2-249fc5f3"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-east-2:123456789012:resource-1071", "name": "resource-1071", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-east-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1071", "type": "vpc", "uid": "arn:aws:vpc:us-east-2:123456789012:resource-1071"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.056177", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1072", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1072 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.056187", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-1-24e71065"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-west-1:123456789012:resource-1072", "name": "resource-1072", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-west-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1072", "type": "waf", "uid": "arn:aws:waf:us-west-1:123456789012:resource-1072"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.056187", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-1073", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1073 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.056195", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-us-west-2-7e503402"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-west-2:123456789012:resource-1073", "name": "resource-1073", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-west-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1073", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-west-2:123456789012:resource-1073"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.056195", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-1074", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1074 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.056204", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-eu-west-1-4a279ed0"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:eu-west-1:123456789012:resource-1074", "name": "resource-1074", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "eu-west-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1074", "type": "acm", "uid": "arn:aws:acm:eu-west-1:123456789012:resource-1074"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.056204", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-1075", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1075 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.056214", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-eu-west-2-fe7d0db3"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:eu-west-2:123456789012:resource-1075", "name": "resource-1075", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "eu-west-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1075", "type": "apigateway", "uid": "arn:aws:apigateway:eu-west-2:123456789012:resource-1075"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.056214", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-1076", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1076 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.056223", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-central-1-a2369c27"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:eu-central-1:123456789012:resource-1076", "name": "resource-1076", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "eu-central-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1076", "type": "cloudfront", "uid": "arn:aws:cloudfront:eu-central-1:123456789012:resource-1076"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.056223", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-1077", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1077 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.056231", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-southeast-1-c1d44d65"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:ap-southeast-1:123456789012:resource-1077", "name": "resource-1077", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "ap-southeast-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1077", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:ap-southeast-1:123456789012:resource-1077"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.056231", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1078", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1078 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.056241", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-2-72e6e7c6"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:ap-southeast-2:123456789012:resource-1078", "name": "resource-1078", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "ap-southeast-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1078", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:ap-southeast-2:123456789012:resource-1078"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.056241", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1079", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1079 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.056251", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-northeast-1-dc79977d"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:ap-northeast-1:123456789012:resource-1079", "name": "resource-1079", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "ap-northeast-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1079", "type": "config", "uid": "arn:aws:config:ap-northeast-1:123456789012:resource-1079"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.056251", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-1080", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1080 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.056260", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-east-1-124885ae"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-east-1:123456789012:resource-1080", "name": "resource-1080", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-east-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1080", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-east-1:123456789012:resource-1080"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.056260", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-1081", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1081 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.056271", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-us-east-2-1603999a"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-east-2:123456789012:resource-1081", "name": "resource-1081", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-east-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1081", "type": "ec2", "uid": "arn:aws:ec2:us-east-2:123456789012:resource-1081"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.056271", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-1082", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1082 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.056279", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-west-1-3c57ee9e"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-west-1:123456789012:resource-1082", "name": "resource-1082", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-west-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1082", "type": "ecr", "uid": "arn:aws:ecr:us-west-1:123456789012:resource-1082"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.056279", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1083", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1083 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.056289", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-2-cf123137"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-west-2:123456789012:resource-1083", "name": "resource-1083", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-west-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1083", "type": "ecs", "uid": "arn:aws:ecs:us-west-2:123456789012:resource-1083"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.056289", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1084", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1084 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.056299", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-1-b2c28389"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:eu-west-1:123456789012:resource-1084", "name": "resource-1084", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "eu-west-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1084", "type": "efs", "uid": "arn:aws:efs:eu-west-1:123456789012:resource-1084"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.056299", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-1085", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1085 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.056322", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-eu-west-2-a63f7d19"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:eu-west-2:123456789012:resource-1085", "name": "resource-1085", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "eu-west-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1085", "type": "eks", "uid": "arn:aws:eks:eu-west-2:123456789012:resource-1085"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.056322", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1086", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1086 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.056332", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-central-1-ecfeddad"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:eu-central-1:123456789012:resource-1086", "name": "resource-1086", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "eu-central-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1086", "type": "elasticache", "uid": "arn:aws:elasticache:eu-central-1:123456789012:resource-1086"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.056332", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-1087", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1087 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.056342", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-ap-southeast-1-f739c46c"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:ap-southeast-1:123456789012:resource-1087", "name": "resource-1087", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "ap-southeast-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1087", "type": "elb", "uid": "arn:aws:elb:ap-southeast-1:123456789012:resource-1087"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.056342", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1088", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1088 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.056350", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-2-5d240448"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:ap-southeast-2:123456789012:resource-1088", "name": "resource-1088", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "ap-southeast-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1088", "type": "emr", "uid": "arn:aws:emr:ap-southeast-2:123456789012:resource-1088"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.056350", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1089", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1089 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.056359", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-ap-northeast-1-003adf6e"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:ap-northeast-1:123456789012:resource-1089", "name": "resource-1089", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "ap-northeast-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1089", "type": "guardduty", "uid": "arn:aws:guardduty:ap-northeast-1:123456789012:resource-1089"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.056359", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-1090", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1090 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.056369", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-us-east-1-1f30248d"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-east-1:123456789012:resource-1090", "name": "resource-1090", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-east-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1090", "type": "iam", "uid": "arn:aws:iam:us-east-1:123456789012:resource-1090"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.056369", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1091", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1091 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.056377", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-2-7f5b3ce8"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-east-2:123456789012:resource-1091", "name": "resource-1091", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-east-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1091", "type": "kms", "uid": "arn:aws:kms:us-east-2:123456789012:resource-1091"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.056377", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-1092", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1092 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.056386", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-us-west-1-b0a27a24"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-west-1:123456789012:resource-1092", "name": "resource-1092", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-west-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1092", "type": "lambda", "uid": "arn:aws:lambda:us-west-1:123456789012:resource-1092"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.056386", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-1093", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1093 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.056395", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-us-west-2-ee2f73c2"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-west-2:123456789012:resource-1093", "name": "resource-1093", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-west-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1093", "type": "rds", "uid": "arn:aws:rds:us-west-2:123456789012:resource-1093"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.056395", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1094", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1094 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.056404", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-1-32446850"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:eu-west-1:123456789012:resource-1094", "name": "resource-1094", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "eu-west-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1094", "type": "redshift", "uid": "arn:aws:redshift:eu-west-1:123456789012:resource-1094"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.056404", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-1095", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1095 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.056413", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-eu-west-2-9e7bc23b"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:eu-west-2:123456789012:resource-1095", "name": "resource-1095", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "eu-west-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1095", "type": "s3", "uid": "arn:aws:s3:eu-west-2:123456789012:resource-1095"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.056413", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1096", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1096 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.056422", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-central-1-079c8948"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:eu-central-1:123456789012:resource-1096", "name": "resource-1096", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "eu-central-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1096", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:eu-central-1:123456789012:resource-1096"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.056422", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1097", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1097 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.056431", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-1-b77f938a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:ap-southeast-1:123456789012:resource-1097", "name": "resource-1097", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "ap-southeast-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1097", "type": "sns", "uid": "arn:aws:sns:ap-southeast-1:123456789012:resource-1097"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.056431", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1098", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1098 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.056439", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-2-0637e83c"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:ap-southeast-2:123456789012:resource-1098", "name": "resource-1098", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "ap-southeast-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1098", "type": "sqs", "uid": "arn:aws:sqs:ap-southeast-2:123456789012:resource-1098"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.056439", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1099", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1099 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.056449", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-ap-northeast-1-93e0312b"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:ap-northeast-1:123456789012:resource-1099", "name": "resource-1099", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "ap-northeast-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1099", "type": "ssm", "uid": "arn:aws:ssm:ap-northeast-1:123456789012:resource-1099"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.056449", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1100", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1100 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.056457", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-1-ece2a144"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-east-1:123456789012:resource-1100", "name": "resource-1100", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-east-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1100", "type": "vpc", "uid": "arn:aws:vpc:us-east-1:123456789012:resource-1100"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.056457", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1101", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1101 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.056467", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-2-7a66b81f"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-east-2:123456789012:resource-1101", "name": "resource-1101", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-east-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1101", "type": "waf", "uid": "arn:aws:waf:us-east-2:123456789012:resource-1101"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.056467", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-1102", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1102 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.056476", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-us-west-1-7726b8e1"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-west-1:123456789012:resource-1102", "name": "resource-1102", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-west-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1102", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-west-1:123456789012:resource-1102"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.056476", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-1103", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1103 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.056485", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-west-2-43643c1e"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-west-2:123456789012:resource-1103", "name": "resource-1103", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-west-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1103", "type": "acm", "uid": "arn:aws:acm:us-west-2:123456789012:resource-1103"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.056485", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-1104", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1104 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.056494", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-west-1-e8dc8aaf"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:eu-west-1:123456789012:resource-1104", "name": "resource-1104", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "eu-west-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1104", "type": "apigateway", "uid": "arn:aws:apigateway:eu-west-1:123456789012:resource-1104"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.056494", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-1105", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1105 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.056503", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-eu-west-2-e17738d8"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:eu-west-2:123456789012:resource-1105", "name": "resource-1105", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "eu-west-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1105", "type": "cloudfront", "uid": "arn:aws:cloudfront:eu-west-2:123456789012:resource-1105"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.056503", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-1106", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1106 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.056513", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-central-1-ed2d6d0c"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-central-1:123456789012:resource-1106", "name": "resource-1106", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-central-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1106", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-central-1:123456789012:resource-1106"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.056513", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1107", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1107 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.056521", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-1-f11b7497"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:ap-southeast-1:123456789012:resource-1107", "name": "resource-1107", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "ap-southeast-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1107", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:ap-southeast-1:123456789012:resource-1107"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.056521", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1108", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1108 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.056531", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-2-7a235f1e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:ap-southeast-2:123456789012:resource-1108", "name": "resource-1108", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "ap-southeast-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1108", "type": "config", "uid": "arn:aws:config:ap-southeast-2:123456789012:resource-1108"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.056531", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-1109", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1109 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.056553", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-northeast-1-2ae4704b"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-northeast-1:123456789012:resource-1109", "name": "resource-1109", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-northeast-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1109", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-northeast-1:123456789012:resource-1109"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.056553", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-1110", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1110 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.056562", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-us-east-1-459f9bd4"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-east-1:123456789012:resource-1110", "name": "resource-1110", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-east-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1110", "type": "ec2", "uid": "arn:aws:ec2:us-east-1:123456789012:resource-1110"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.056562", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-1111", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1111 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.056572", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-east-2-737922d2"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-east-2:123456789012:resource-1111", "name": "resource-1111", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-east-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1111", "type": "ecr", "uid": "arn:aws:ecr:us-east-2:123456789012:resource-1111"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.056572", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1112", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1112 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.056580", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-1-34c8d1ad"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-west-1:123456789012:resource-1112", "name": "resource-1112", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-west-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1112", "type": "ecs", "uid": "arn:aws:ecs:us-west-1:123456789012:resource-1112"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.056580", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1113", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1113 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.056589", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-2-4f4f94e5"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-west-2:123456789012:resource-1113", "name": "resource-1113", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-west-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1113", "type": "efs", "uid": "arn:aws:efs:us-west-2:123456789012:resource-1113"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.056589", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-1114", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1114 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.056598", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-eu-west-1-7b33c65d"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:eu-west-1:123456789012:resource-1114", "name": "resource-1114", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "eu-west-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1114", "type": "eks", "uid": "arn:aws:eks:eu-west-1:123456789012:resource-1114"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.056598", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1115", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1115 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.056607", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-2-071b80b0"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:eu-west-2:123456789012:resource-1115", "name": "resource-1115", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "eu-west-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1115", "type": "elasticache", "uid": "arn:aws:elasticache:eu-west-2:123456789012:resource-1115"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.056607", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-1116", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1116 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.056616", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-eu-central-1-2ed42faf"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-central-1:123456789012:resource-1116", "name": "resource-1116", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-central-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1116", "type": "elb", "uid": "arn:aws:elb:eu-central-1:123456789012:resource-1116"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.056616", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1117", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1117 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.056625", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-1-06f599ed"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:ap-southeast-1:123456789012:resource-1117", "name": "resource-1117", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "ap-southeast-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1117", "type": "emr", "uid": "arn:aws:emr:ap-southeast-1:123456789012:resource-1117"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.056625", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1118", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1118 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.056634", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-2-90f2c04a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:ap-southeast-2:123456789012:resource-1118", "name": "resource-1118", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "ap-southeast-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1118", "type": "guardduty", "uid": "arn:aws:guardduty:ap-southeast-2:123456789012:resource-1118"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.056634", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-1119", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1119 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.056642", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-ap-northeast-1-9747f4ee"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-northeast-1:123456789012:resource-1119", "name": "resource-1119", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-northeast-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1119", "type": "iam", "uid": "arn:aws:iam:ap-northeast-1:123456789012:resource-1119"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.056642", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1120", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1120 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.056652", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-1-56d21cfe"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-east-1:123456789012:resource-1120", "name": "resource-1120", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-east-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1120", "type": "kms", "uid": "arn:aws:kms:us-east-1:123456789012:resource-1120"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.056652", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-1121", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1121 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.056660", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-east-2-b298eee5"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-east-2:123456789012:resource-1121", "name": "resource-1121", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-east-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1121", "type": "lambda", "uid": "arn:aws:lambda:us-east-2:123456789012:resource-1121"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.056660", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-1122", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1122 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.056669", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-us-west-1-d74fcaf2"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-west-1:123456789012:resource-1122", "name": "resource-1122", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-west-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1122", "type": "rds", "uid": "arn:aws:rds:us-west-1:123456789012:resource-1122"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.056669", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1123", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1123 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.056678", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-2-85a33051"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-west-2:123456789012:resource-1123", "name": "resource-1123", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-west-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1123", "type": "redshift", "uid": "arn:aws:redshift:us-west-2:123456789012:resource-1123"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.056678", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-1124", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1124 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.056700", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-eu-west-1-ac7473db"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:eu-west-1:123456789012:resource-1124", "name": "resource-1124", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "eu-west-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1124", "type": "s3", "uid": "arn:aws:s3:eu-west-1:123456789012:resource-1124"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.056700", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1125", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1125 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.056709", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-2-2c5bc72d"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:eu-west-2:123456789012:resource-1125", "name": "resource-1125", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "eu-west-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1125", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:eu-west-2:123456789012:resource-1125"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.056709", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1126", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1126 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.056720", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-central-1-c1c6d41e"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-central-1:123456789012:resource-1126", "name": "resource-1126", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-central-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1126", "type": "sns", "uid": "arn:aws:sns:eu-central-1:123456789012:resource-1126"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.056720", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1127", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1127 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.056729", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-1-51b16894"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:ap-southeast-1:123456789012:resource-1127", "name": "resource-1127", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "ap-southeast-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1127", "type": "sqs", "uid": "arn:aws:sqs:ap-southeast-1:123456789012:resource-1127"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.056729", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1128", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1128 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.056738", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-2-b903a447"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:ap-southeast-2:123456789012:resource-1128", "name": "resource-1128", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "ap-southeast-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1128", "type": "ssm", "uid": "arn:aws:ssm:ap-southeast-2:123456789012:resource-1128"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.056738", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1129", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1129 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.056747", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-northeast-1-f9df6043"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-northeast-1:123456789012:resource-1129", "name": "resource-1129", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-northeast-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1129", "type": "vpc", "uid": "arn:aws:vpc:ap-northeast-1:123456789012:resource-1129"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.056747", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1130", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1130 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.056756", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-1-855b0423"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-east-1:123456789012:resource-1130", "name": "resource-1130", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-east-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1130", "type": "waf", "uid": "arn:aws:waf:us-east-1:123456789012:resource-1130"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.056756", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-1131", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1131 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.056764", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-us-east-2-d572f42f"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-east-2:123456789012:resource-1131", "name": "resource-1131", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-east-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1131", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-east-2:123456789012:resource-1131"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.056764", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-1132", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1132 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.056775", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-us-west-1-156a7a72"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-west-1:123456789012:resource-1132", "name": "resource-1132", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-west-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1132", "type": "acm", "uid": "arn:aws:acm:us-west-1:123456789012:resource-1132"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.056775", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-1133", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1133 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.056798", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-west-2-199e31f0"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-west-2:123456789012:resource-1133", "name": "resource-1133", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-west-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1133", "type": "apigateway", "uid": "arn:aws:apigateway:us-west-2:123456789012:resource-1133"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.056798", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-1134", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1134 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.056807", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-west-1-f9bd885e"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:eu-west-1:123456789012:resource-1134", "name": "resource-1134", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "eu-west-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1134", "type": "cloudfront", "uid": "arn:aws:cloudfront:eu-west-1:123456789012:resource-1134"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.056807", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-1135", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1135 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.056817", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-eu-west-2-8244a9fc"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-west-2:123456789012:resource-1135", "name": "resource-1135", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-west-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1135", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-west-2:123456789012:resource-1135"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.056817", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1136", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1136 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.056826", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-central-1-b236fc64"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-central-1:123456789012:resource-1136", "name": "resource-1136", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-central-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1136", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-central-1:123456789012:resource-1136"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.056826", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1137", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1137 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.056834", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-1-94ff711b"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:ap-southeast-1:123456789012:resource-1137", "name": "resource-1137", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "ap-southeast-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1137", "type": "config", "uid": "arn:aws:config:ap-southeast-1:123456789012:resource-1137"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.056834", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-1138", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1138 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.056845", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-ap-southeast-2-3738fd1f"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-southeast-2:123456789012:resource-1138", "name": "resource-1138", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-southeast-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1138", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-southeast-2:123456789012:resource-1138"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.056845", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-1139", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1139 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.056854", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-ap-northeast-1-2eddb1cf"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-northeast-1:123456789012:resource-1139", "name": "resource-1139", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-northeast-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1139", "type": "ec2", "uid": "arn:aws:ec2:ap-northeast-1:123456789012:resource-1139"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.056854", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-1140", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1140 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.056865", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-east-1-05cca3f3"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-east-1:123456789012:resource-1140", "name": "resource-1140", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-east-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1140", "type": "ecr", "uid": "arn:aws:ecr:us-east-1:123456789012:resource-1140"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.056865", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1141", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1141 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.056875", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-2-3c27eb1c"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-east-2:123456789012:resource-1141", "name": "resource-1141", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-east-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1141", "type": "ecs", "uid": "arn:aws:ecs:us-east-2:123456789012:resource-1141"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.056875", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1142", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1142 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.056884", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-1-c1649151"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-west-1:123456789012:resource-1142", "name": "resource-1142", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-west-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1142", "type": "efs", "uid": "arn:aws:efs:us-west-1:123456789012:resource-1142"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.056884", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-1143", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1143 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.056892", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-west-2-d75bea98"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-west-2:123456789012:resource-1143", "name": "resource-1143", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-west-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1143", "type": "eks", "uid": "arn:aws:eks:us-west-2:123456789012:resource-1143"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.056892", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1144", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1144 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.056901", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-1-fc7fc6c9"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:eu-west-1:123456789012:resource-1144", "name": "resource-1144", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "eu-west-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1144", "type": "elasticache", "uid": "arn:aws:elasticache:eu-west-1:123456789012:resource-1144"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.056901", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-1145", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1145 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.056910", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-eu-west-2-4bcaceb8"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-west-2:123456789012:resource-1145", "name": "resource-1145", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-west-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1145", "type": "elb", "uid": "arn:aws:elb:eu-west-2:123456789012:resource-1145"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.056910", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1146", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1146 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.056919", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-central-1-4a720aba"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-central-1:123456789012:resource-1146", "name": "resource-1146", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-central-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1146", "type": "emr", "uid": "arn:aws:emr:eu-central-1:123456789012:resource-1146"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.056919", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1147", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1147 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.056928", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-1-32141f55"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:ap-southeast-1:123456789012:resource-1147", "name": "resource-1147", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "ap-southeast-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1147", "type": "guardduty", "uid": "arn:aws:guardduty:ap-southeast-1:123456789012:resource-1147"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.056928", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-1148", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1148 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.056939", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-ap-southeast-2-45ed009c"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-southeast-2:123456789012:resource-1148", "name": "resource-1148", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-southeast-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1148", "type": "iam", "uid": "arn:aws:iam:ap-southeast-2:123456789012:resource-1148"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.056939", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1149", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1149 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.056947", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-northeast-1-ea915316"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-northeast-1:123456789012:resource-1149", "name": "resource-1149", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-northeast-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1149", "type": "kms", "uid": "arn:aws:kms:ap-northeast-1:123456789012:resource-1149"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.056947", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-1150", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1150 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.056957", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-us-east-1-8687c1a2"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-east-1:123456789012:resource-1150", "name": "resource-1150", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-east-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1150", "type": "lambda", "uid": "arn:aws:lambda:us-east-1:123456789012:resource-1150"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.056957", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-1151", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1151 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.056968", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-us-east-2-99f42573"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-east-2:123456789012:resource-1151", "name": "resource-1151", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-east-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1151", "type": "rds", "uid": "arn:aws:rds:us-east-2:123456789012:resource-1151"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.056968", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1152", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1152 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.056976", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-1-7f10d5e0"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-west-1:123456789012:resource-1152", "name": "resource-1152", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-west-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1152", "type": "redshift", "uid": "arn:aws:redshift:us-west-1:123456789012:resource-1152"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.056976", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-1153", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1153 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.056985", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-us-west-2-ba2a15b3"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-west-2:123456789012:resource-1153", "name": "resource-1153", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-west-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1153", "type": "s3", "uid": "arn:aws:s3:us-west-2:123456789012:resource-1153"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.056985", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1154", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1154 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.056994", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-1-4c229c6e"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:eu-west-1:123456789012:resource-1154", "name": "resource-1154", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "eu-west-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1154", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:eu-west-1:123456789012:resource-1154"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.056994", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1155", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1155 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.057003", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-2-26ae7d5c"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-west-2:123456789012:resource-1155", "name": "resource-1155", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-west-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1155", "type": "sns", "uid": "arn:aws:sns:eu-west-2:123456789012:resource-1155"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.057003", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1156", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1156 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.057013", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-central-1-b9bbd0f1"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-central-1:123456789012:resource-1156", "name": "resource-1156", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-central-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1156", "type": "sqs", "uid": "arn:aws:sqs:eu-central-1:123456789012:resource-1156"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.057013", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1157", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1157 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.057036", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-1-3791666a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:ap-southeast-1:123456789012:resource-1157", "name": "resource-1157", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "ap-southeast-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1157", "type": "ssm", "uid": "arn:aws:ssm:ap-southeast-1:123456789012:resource-1157"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.057036", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1158", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1158 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.057046", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-2-2f6246af"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-southeast-2:123456789012:resource-1158", "name": "resource-1158", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-southeast-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1158", "type": "vpc", "uid": "arn:aws:vpc:ap-southeast-2:123456789012:resource-1158"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.057046", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1159", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1159 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.057057", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-northeast-1-ca19c2db"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-northeast-1:123456789012:resource-1159", "name": "resource-1159", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-northeast-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1159", "type": "waf", "uid": "arn:aws:waf:ap-northeast-1:123456789012:resource-1159"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.057057", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-1160", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1160 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.057065", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-us-east-1-608c1068"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-east-1:123456789012:resource-1160", "name": "resource-1160", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-east-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1160", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-east-1:123456789012:resource-1160"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.057065", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-1161", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1161 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.057074", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-east-2-2244a529"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-east-2:123456789012:resource-1161", "name": "resource-1161", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-east-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1161", "type": "acm", "uid": "arn:aws:acm:us-east-2:123456789012:resource-1161"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.057074", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-1162", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1162 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.057083", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-west-1-02ac861b"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-west-1:123456789012:resource-1162", "name": "resource-1162", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-west-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1162", "type": "apigateway", "uid": "arn:aws:apigateway:us-west-1:123456789012:resource-1162"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.057083", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-1163", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1163 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.057092", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-west-2-ddac66ad"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-west-2:123456789012:resource-1163", "name": "resource-1163", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-west-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1163", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-west-2:123456789012:resource-1163"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.057092", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-1164", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1164 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.057104", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-west-1-00c3ac6e"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-west-1:123456789012:resource-1164", "name": "resource-1164", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-west-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1164", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-west-1:123456789012:resource-1164"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.057104", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1165", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1165 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.057114", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-2-de04a145"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-west-2:123456789012:resource-1165", "name": "resource-1165", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-west-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1165", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-west-2:123456789012:resource-1165"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.057114", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1166", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1166 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.057122", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-central-1-1d420bad"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-central-1:123456789012:resource-1166", "name": "resource-1166", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-central-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1166", "type": "config", "uid": "arn:aws:config:eu-central-1:123456789012:resource-1166"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.057122", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-1167", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1167 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.057131", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-southeast-1-fdcf7751"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-southeast-1:123456789012:resource-1167", "name": "resource-1167", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-southeast-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1167", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-southeast-1:123456789012:resource-1167"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.057131", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-1168", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1168 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.057141", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-ap-southeast-2-04549230"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-southeast-2:123456789012:resource-1168", "name": "resource-1168", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-southeast-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1168", "type": "ec2", "uid": "arn:aws:ec2:ap-southeast-2:123456789012:resource-1168"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.057141", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-1169", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1169 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.057151", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-northeast-1-23721c86"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-northeast-1:123456789012:resource-1169", "name": "resource-1169", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-northeast-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1169", "type": "ecr", "uid": "arn:aws:ecr:ap-northeast-1:123456789012:resource-1169"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.057151", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1170", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1170 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.057160", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-1-c5c7d83c"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-east-1:123456789012:resource-1170", "name": "resource-1170", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-east-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1170", "type": "ecs", "uid": "arn:aws:ecs:us-east-1:123456789012:resource-1170"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.057160", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1171", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1171 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.057169", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-2-8f2892b6"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-east-2:123456789012:resource-1171", "name": "resource-1171", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-east-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1171", "type": "efs", "uid": "arn:aws:efs:us-east-2:123456789012:resource-1171"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.057169", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-1172", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1172 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.057179", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-us-west-1-9fb8a107"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-west-1:123456789012:resource-1172", "name": "resource-1172", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-west-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1172", "type": "eks", "uid": "arn:aws:eks:us-west-1:123456789012:resource-1172"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.057179", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1173", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1173 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.057188", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-2-688f0578"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-west-2:123456789012:resource-1173", "name": "resource-1173", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-west-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1173", "type": "elasticache", "uid": "arn:aws:elasticache:us-west-2:123456789012:resource-1173"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.057188", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-1174", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1174 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.057197", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-eu-west-1-8bb619b6"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-west-1:123456789012:resource-1174", "name": "resource-1174", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-west-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1174", "type": "elb", "uid": "arn:aws:elb:eu-west-1:123456789012:resource-1174"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.057197", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1175", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1175 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.057206", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-2-aff5f28d"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-west-2:123456789012:resource-1175", "name": "resource-1175", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-west-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1175", "type": "emr", "uid": "arn:aws:emr:eu-west-2:123456789012:resource-1175"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.057206", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1176", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1176 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.057216", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-central-1-3ccb8d37"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-central-1:123456789012:resource-1176", "name": "resource-1176", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-central-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1176", "type": "guardduty", "uid": "arn:aws:guardduty:eu-central-1:123456789012:resource-1176"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.057216", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-1177", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1177 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.057228", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-ap-southeast-1-d02567a8"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-southeast-1:123456789012:resource-1177", "name": "resource-1177", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-southeast-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1177", "type": "iam", "uid": "arn:aws:iam:ap-southeast-1:123456789012:resource-1177"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.057228", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1178", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1178 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.057236", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-2-eeef1d5e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-southeast-2:123456789012:resource-1178", "name": "resource-1178", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-southeast-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1178", "type": "kms", "uid": "arn:aws:kms:ap-southeast-2:123456789012:resource-1178"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.057236", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-1179", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1179 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.057245", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-northeast-1-d62b85c8"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-northeast-1:123456789012:resource-1179", "name": "resource-1179", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-northeast-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1179", "type": "lambda", "uid": "arn:aws:lambda:ap-northeast-1:123456789012:resource-1179"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.057245", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-1180", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1180 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.057256", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-us-east-1-ea12b967"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-east-1:123456789012:resource-1180", "name": "resource-1180", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-east-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1180", "type": "rds", "uid": "arn:aws:rds:us-east-1:123456789012:resource-1180"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.057256", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1181", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1181 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.057278", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-2-5b18e939"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-east-2:123456789012:resource-1181", "name": "resource-1181", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-east-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1181", "type": "redshift", "uid": "arn:aws:redshift:us-east-2:123456789012:resource-1181"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.057278", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-1182", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1182 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.057286", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-us-west-1-4207b2da"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-west-1:123456789012:resource-1182", "name": "resource-1182", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-west-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1182", "type": "s3", "uid": "arn:aws:s3:us-west-1:123456789012:resource-1182"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.057286", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1183", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1183 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.057295", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-2-6055adda"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-west-2:123456789012:resource-1183", "name": "resource-1183", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-west-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1183", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-west-2:123456789012:resource-1183"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.057295", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1184", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1184 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.057304", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-1-ee662c02"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-west-1:123456789012:resource-1184", "name": "resource-1184", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-west-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1184", "type": "sns", "uid": "arn:aws:sns:eu-west-1:123456789012:resource-1184"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.057304", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1185", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1185 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.057313", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-2-27c0d5e3"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-west-2:123456789012:resource-1185", "name": "resource-1185", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-west-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1185", "type": "sqs", "uid": "arn:aws:sqs:eu-west-2:123456789012:resource-1185"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.057313", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1186", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1186 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.057322", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-central-1-d2f4e756"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-central-1:123456789012:resource-1186", "name": "resource-1186", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-central-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1186", "type": "ssm", "uid": "arn:aws:ssm:eu-central-1:123456789012:resource-1186"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.057322", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1187", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1187 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.057332", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-1-c8b2065f"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-southeast-1:123456789012:resource-1187", "name": "resource-1187", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-southeast-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1187", "type": "vpc", "uid": "arn:aws:vpc:ap-southeast-1:123456789012:resource-1187"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.057332", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1188", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1188 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.057342", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-2-021bc163"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-southeast-2:123456789012:resource-1188", "name": "resource-1188", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-southeast-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1188", "type": "waf", "uid": "arn:aws:waf:ap-southeast-2:123456789012:resource-1188"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.057342", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-1189", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1189 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.057351", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-ap-northeast-1-1f086c4a"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-1189", "name": "resource-1189", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-northeast-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1189", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-1189"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.057351", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-1190", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1190 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.057363", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-us-east-1-29ad7c4a"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-east-1:123456789012:resource-1190", "name": "resource-1190", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-east-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1190", "type": "acm", "uid": "arn:aws:acm:us-east-1:123456789012:resource-1190"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.057363", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-1191", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1191 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.057372", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-east-2-f4cc8641"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-east-2:123456789012:resource-1191", "name": "resource-1191", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-east-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1191", "type": "apigateway", "uid": "arn:aws:apigateway:us-east-2:123456789012:resource-1191"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.057372", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-1192", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1192 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.057381", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-west-1-05d77028"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-west-1:123456789012:resource-1192", "name": "resource-1192", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-west-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1192", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-west-1:123456789012:resource-1192"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.057381", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-1193", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1193 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.057390", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-west-2-a0b6b6cb"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-west-2:123456789012:resource-1193", "name": "resource-1193", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-west-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1193", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-west-2:123456789012:resource-1193"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.057390", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1194", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1194 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.057399", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-1-b26ef502"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-west-1:123456789012:resource-1194", "name": "resource-1194", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-west-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1194", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-west-1:123456789012:resource-1194"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.057399", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1195", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1195 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.057410", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-2-77abdf7a"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-west-2:123456789012:resource-1195", "name": "resource-1195", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-west-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1195", "type": "config", "uid": "arn:aws:config:eu-west-2:123456789012:resource-1195"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.057410", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-1196", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1196 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.057420", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-central-1-65a7f71a"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-central-1:123456789012:resource-1196", "name": "resource-1196", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-central-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1196", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-central-1:123456789012:resource-1196"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.057420", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-1197", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1197 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.057429", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-ap-southeast-1-d7641846"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-southeast-1:123456789012:resource-1197", "name": "resource-1197", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-southeast-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1197", "type": "ec2", "uid": "arn:aws:ec2:ap-southeast-1:123456789012:resource-1197"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.057429", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-1198", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1198 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.057438", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-ap-southeast-2-12332f20"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-southeast-2:123456789012:resource-1198", "name": "resource-1198", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-southeast-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1198", "type": "ecr", "uid": "arn:aws:ecr:ap-southeast-2:123456789012:resource-1198"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.057438", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1199", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1199 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.057449", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-northeast-1-77065282"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-northeast-1:123456789012:resource-1199", "name": "resource-1199", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-northeast-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1199", "type": "ecs", "uid": "arn:aws:ecs:ap-northeast-1:123456789012:resource-1199"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.057449", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1200", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1200 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.057457", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-1-25627d27"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-east-1:123456789012:resource-1200", "name": "resource-1200", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-east-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1200", "type": "efs", "uid": "arn:aws:efs:us-east-1:123456789012:resource-1200"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.057457", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-1201", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1201 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.057467", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-east-2-64f91e78"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-east-2:123456789012:resource-1201", "name": "resource-1201", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-east-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1201", "type": "eks", "uid": "arn:aws:eks:us-east-2:123456789012:resource-1201"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.057467", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1202", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1202 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.057477", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-1-eef8a4ae"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-west-1:123456789012:resource-1202", "name": "resource-1202", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-west-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1202", "type": "elasticache", "uid": "arn:aws:elasticache:us-west-1:123456789012:resource-1202"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.057477", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-1203", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1203 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.057486", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-us-west-2-72f39c6f"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-west-2:123456789012:resource-1203", "name": "resource-1203", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-west-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1203", "type": "elb", "uid": "arn:aws:elb:us-west-2:123456789012:resource-1203"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.057486", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1204", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1204 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.057497", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-1-407e7ee3"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-west-1:123456789012:resource-1204", "name": "resource-1204", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-west-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1204", "type": "emr", "uid": "arn:aws:emr:eu-west-1:123456789012:resource-1204"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.057497", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1205", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1205 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.057521", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-west-2-84b749ff"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-west-2:123456789012:resource-1205", "name": "resource-1205", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-west-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1205", "type": "guardduty", "uid": "arn:aws:guardduty:eu-west-2:123456789012:resource-1205"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.057521", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-1206", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1206 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.057530", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-eu-central-1-61b11ddf"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-central-1:123456789012:resource-1206", "name": "resource-1206", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-central-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1206", "type": "iam", "uid": "arn:aws:iam:eu-central-1:123456789012:resource-1206"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.057530", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1207", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1207 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.057539", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-1-7efc60fb"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-southeast-1:123456789012:resource-1207", "name": "resource-1207", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-southeast-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1207", "type": "kms", "uid": "arn:aws:kms:ap-southeast-1:123456789012:resource-1207"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.057539", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-1208", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1208 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.057548", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-ap-southeast-2-a771085d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-southeast-2:123456789012:resource-1208", "name": "resource-1208", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-southeast-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1208", "type": "lambda", "uid": "arn:aws:lambda:ap-southeast-2:123456789012:resource-1208"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.057548", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-1209", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1209 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.057556", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-ap-northeast-1-db597f77"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-northeast-1:123456789012:resource-1209", "name": "resource-1209", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-northeast-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1209", "type": "rds", "uid": "arn:aws:rds:ap-northeast-1:123456789012:resource-1209"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.057556", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1210", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1210 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.057566", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-1-d8a1f740"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-east-1:123456789012:resource-1210", "name": "resource-1210", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-east-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1210", "type": "redshift", "uid": "arn:aws:redshift:us-east-1:123456789012:resource-1210"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.057566", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-1211", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1211 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.057575", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-us-east-2-d3c8b6a4"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-east-2:123456789012:resource-1211", "name": "resource-1211", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-east-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1211", "type": "s3", "uid": "arn:aws:s3:us-east-2:123456789012:resource-1211"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.057575", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1212", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1212 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.057585", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-1-73f52dd1"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-west-1:123456789012:resource-1212", "name": "resource-1212", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-west-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1212", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-west-1:123456789012:resource-1212"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.057585", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1213", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1213 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.057594", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-2-198ba790"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-west-2:123456789012:resource-1213", "name": "resource-1213", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-west-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1213", "type": "sns", "uid": "arn:aws:sns:us-west-2:123456789012:resource-1213"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.057594", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1214", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1214 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.057603", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-1-ada95e30"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-west-1:123456789012:resource-1214", "name": "resource-1214", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-west-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1214", "type": "sqs", "uid": "arn:aws:sqs:eu-west-1:123456789012:resource-1214"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.057603", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1215", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1215 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.057613", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-2-9a76fa54"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-west-2:123456789012:resource-1215", "name": "resource-1215", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-west-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1215", "type": "ssm", "uid": "arn:aws:ssm:eu-west-2:123456789012:resource-1215"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.057613", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1216", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1216 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.057622", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-eu-central-1-0974f39f"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:eu-central-1:123456789012:resource-1216", "name": "resource-1216", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "eu-central-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1216", "type": "vpc", "uid": "arn:aws:vpc:eu-central-1:123456789012:resource-1216"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.057622", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1217", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1217 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.057631", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-1-d909a805"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-southeast-1:123456789012:resource-1217", "name": "resource-1217", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-southeast-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1217", "type": "waf", "uid": "arn:aws:waf:ap-southeast-1:123456789012:resource-1217"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.057631", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-1218", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1218 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.057639", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-ap-southeast-2-3fd7e3b2"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-southeast-2:123456789012:resource-1218", "name": "resource-1218", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-southeast-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1218", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-southeast-2:123456789012:resource-1218"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.057639", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-1219", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1219 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.057648", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-northeast-1-606a4a85"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:ap-northeast-1:123456789012:resource-1219", "name": "resource-1219", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "ap-northeast-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1219", "type": "acm", "uid": "arn:aws:acm:ap-northeast-1:123456789012:resource-1219"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.057648", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-1220", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1220 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.057658", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-east-1-c4cd1e58"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-east-1:123456789012:resource-1220", "name": "resource-1220", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-east-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1220", "type": "apigateway", "uid": "arn:aws:apigateway:us-east-1:123456789012:resource-1220"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.057658", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-1221", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1221 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.057667", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-east-2-5e040b49"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-east-2:123456789012:resource-1221", "name": "resource-1221", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-east-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1221", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-east-2:123456789012:resource-1221"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.057667", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-1222", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1222 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.057676", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-west-1-ecb1c3c9"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-west-1:123456789012:resource-1222", "name": "resource-1222", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-west-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1222", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-west-1:123456789012:resource-1222"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.057676", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1223", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1223 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.057688", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-2-18beff1b"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-west-2:123456789012:resource-1223", "name": "resource-1223", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-west-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1223", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-west-2:123456789012:resource-1223"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.057688", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1224", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1224 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.057697", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-1-bc9ba87d"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-west-1:123456789012:resource-1224", "name": "resource-1224", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-west-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1224", "type": "config", "uid": "arn:aws:config:eu-west-1:123456789012:resource-1224"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.057697", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-1225", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1225 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.057706", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-eu-west-2-e56e8cb0"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-west-2:123456789012:resource-1225", "name": "resource-1225", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-west-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1225", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-west-2:123456789012:resource-1225"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.057706", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-1226", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1226 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.057715", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-eu-central-1-5258bb67"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:eu-central-1:123456789012:resource-1226", "name": "resource-1226", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "eu-central-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1226", "type": "ec2", "uid": "arn:aws:ec2:eu-central-1:123456789012:resource-1226"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.057715", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-1227", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1227 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.057723", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-southeast-1-0b09de71"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-southeast-1:123456789012:resource-1227", "name": "resource-1227", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-southeast-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1227", "type": "ecr", "uid": "arn:aws:ecr:ap-southeast-1:123456789012:resource-1227"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.057723", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1228", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1228 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.057735", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-2-83efa92f"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-southeast-2:123456789012:resource-1228", "name": "resource-1228", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-southeast-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1228", "type": "ecs", "uid": "arn:aws:ecs:ap-southeast-2:123456789012:resource-1228"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.057735", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1229", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1229 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.057961", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-northeast-1-25d49f93"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:ap-northeast-1:123456789012:resource-1229", "name": "resource-1229", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "ap-northeast-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1229", "type": "efs", "uid": "arn:aws:efs:ap-northeast-1:123456789012:resource-1229"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.057961", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-1230", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1230 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.057970", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-us-east-1-c3a63fa7"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-east-1:123456789012:resource-1230", "name": "resource-1230", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-east-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1230", "type": "eks", "uid": "arn:aws:eks:us-east-1:123456789012:resource-1230"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.057970", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1231", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1231 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.057980", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-2-62203ea3"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-east-2:123456789012:resource-1231", "name": "resource-1231", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-east-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1231", "type": "elasticache", "uid": "arn:aws:elasticache:us-east-2:123456789012:resource-1231"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.057980", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-1232", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1232 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.057989", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-us-west-1-907841e6"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-west-1:123456789012:resource-1232", "name": "resource-1232", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-west-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1232", "type": "elb", "uid": "arn:aws:elb:us-west-1:123456789012:resource-1232"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.057989", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1233", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1233 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.057998", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-2-45e1a8fb"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-west-2:123456789012:resource-1233", "name": "resource-1233", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-west-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1233", "type": "emr", "uid": "arn:aws:emr:us-west-2:123456789012:resource-1233"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.057998", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1234", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1234 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.058007", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-west-1-cc92213a"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-west-1:123456789012:resource-1234", "name": "resource-1234", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-west-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1234", "type": "guardduty", "uid": "arn:aws:guardduty:eu-west-1:123456789012:resource-1234"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.058007", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-1235", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1235 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.058016", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-eu-west-2-76f216e5"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-west-2:123456789012:resource-1235", "name": "resource-1235", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-west-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1235", "type": "iam", "uid": "arn:aws:iam:eu-west-2:123456789012:resource-1235"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.058016", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1236", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1236 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.058026", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-central-1-4b6e3fa9"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:eu-central-1:123456789012:resource-1236", "name": "resource-1236", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "eu-central-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1236", "type": "kms", "uid": "arn:aws:kms:eu-central-1:123456789012:resource-1236"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.058026", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-1237", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1237 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.058036", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-southeast-1-77a35afc"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-southeast-1:123456789012:resource-1237", "name": "resource-1237", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-southeast-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1237", "type": "lambda", "uid": "arn:aws:lambda:ap-southeast-1:123456789012:resource-1237"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.058036", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-1238", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1238 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.058046", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-ap-southeast-2-98ebd547"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-southeast-2:123456789012:resource-1238", "name": "resource-1238", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-southeast-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1238", "type": "rds", "uid": "arn:aws:rds:ap-southeast-2:123456789012:resource-1238"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.058046", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1239", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1239 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.058058", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-ap-northeast-1-92045847"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:ap-northeast-1:123456789012:resource-1239", "name": "resource-1239", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "ap-northeast-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1239", "type": "redshift", "uid": "arn:aws:redshift:ap-northeast-1:123456789012:resource-1239"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.058058", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-1240", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1240 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.058069", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-us-east-1-718e2bf6"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-east-1:123456789012:resource-1240", "name": "resource-1240", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-east-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1240", "type": "s3", "uid": "arn:aws:s3:us-east-1:123456789012:resource-1240"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.058069", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1241", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1241 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.058080", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-2-e38c00f7"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-east-2:123456789012:resource-1241", "name": "resource-1241", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-east-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1241", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-east-2:123456789012:resource-1241"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.058080", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1242", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1242 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.058090", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-west-1-651cd209"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-west-1:123456789012:resource-1242", "name": "resource-1242", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-west-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1242", "type": "sns", "uid": "arn:aws:sns:us-west-1:123456789012:resource-1242"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.058090", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1243", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1243 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.058100", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-2-1806d6af"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-west-2:123456789012:resource-1243", "name": "resource-1243", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-west-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1243", "type": "sqs", "uid": "arn:aws:sqs:us-west-2:123456789012:resource-1243"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.058100", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1244", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1244 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.058109", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-west-1-3e8f1760"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-west-1:123456789012:resource-1244", "name": "resource-1244", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-west-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1244", "type": "ssm", "uid": "arn:aws:ssm:eu-west-1:123456789012:resource-1244"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.058109", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1245", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1245 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.058120", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-2-832ad271"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:eu-west-2:123456789012:resource-1245", "name": "resource-1245", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "eu-west-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1245", "type": "vpc", "uid": "arn:aws:vpc:eu-west-2:123456789012:resource-1245"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.058120", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1246", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1246 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.058129", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-central-1-fe114b6c"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:eu-central-1:123456789012:resource-1246", "name": "resource-1246", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "eu-central-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1246", "type": "waf", "uid": "arn:aws:waf:eu-central-1:123456789012:resource-1246"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.058129", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-1247", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1247 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.058139", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-ap-southeast-1-a0209d8d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-southeast-1:123456789012:resource-1247", "name": "resource-1247", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-southeast-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1247", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-southeast-1:123456789012:resource-1247"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.058139", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-1248", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1248 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.058148", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-ap-southeast-2-f47e5205"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:ap-southeast-2:123456789012:resource-1248", "name": "resource-1248", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "ap-southeast-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1248", "type": "acm", "uid": "arn:aws:acm:ap-southeast-2:123456789012:resource-1248"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.058148", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-1249", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1249 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.058157", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-northeast-1-71287daf"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:ap-northeast-1:123456789012:resource-1249", "name": "resource-1249", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "ap-northeast-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1249", "type": "apigateway", "uid": "arn:aws:apigateway:ap-northeast-1:123456789012:resource-1249"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.058157", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-1250", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1250 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.058166", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-east-1-1302a969"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-east-1:123456789012:resource-1250", "name": "resource-1250", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-east-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1250", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-east-1:123456789012:resource-1250"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.058166", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-1251", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1251 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.058177", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-east-2-51871d99"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-east-2:123456789012:resource-1251", "name": "resource-1251", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-east-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1251", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-east-2:123456789012:resource-1251"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.058177", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1252", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1252 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.058187", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-west-1-425f8d05"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-west-1:123456789012:resource-1252", "name": "resource-1252", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-west-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1252", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-west-1:123456789012:resource-1252"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.058187", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1253", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1253 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.058212", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-2-c3189db5"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-west-2:123456789012:resource-1253", "name": "resource-1253", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-west-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1253", "type": "config", "uid": "arn:aws:config:us-west-2:123456789012:resource-1253"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.058212", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-1254", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1254 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.058221", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-west-1-43f13da2"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-west-1:123456789012:resource-1254", "name": "resource-1254", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-west-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1254", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-west-1:123456789012:resource-1254"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.058221", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-1255", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1255 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.058230", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-eu-west-2-f12dde2b"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:eu-west-2:123456789012:resource-1255", "name": "resource-1255", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "eu-west-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1255", "type": "ec2", "uid": "arn:aws:ec2:eu-west-2:123456789012:resource-1255"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.058230", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-1256", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1256 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.058240", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-central-1-250bbdc1"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:eu-central-1:123456789012:resource-1256", "name": "resource-1256", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "eu-central-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1256", "type": "ecr", "uid": "arn:aws:ecr:eu-central-1:123456789012:resource-1256"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.058240", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1257", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1257 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.058249", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-southeast-1-1189e6fa"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-southeast-1:123456789012:resource-1257", "name": "resource-1257", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-southeast-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1257", "type": "ecs", "uid": "arn:aws:ecs:ap-southeast-1:123456789012:resource-1257"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.058249", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1258", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1258 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.058259", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-2-31c98f61"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:ap-southeast-2:123456789012:resource-1258", "name": "resource-1258", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "ap-southeast-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1258", "type": "efs", "uid": "arn:aws:efs:ap-southeast-2:123456789012:resource-1258"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.058259", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-1259", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1259 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.058270", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-northeast-1-f13705b2"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:ap-northeast-1:123456789012:resource-1259", "name": "resource-1259", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "ap-northeast-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1259", "type": "eks", "uid": "arn:aws:eks:ap-northeast-1:123456789012:resource-1259"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.058270", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1260", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1260 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.058279", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-east-1-be641305"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-east-1:123456789012:resource-1260", "name": "resource-1260", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-east-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1260", "type": "elasticache", "uid": "arn:aws:elasticache:us-east-1:123456789012:resource-1260"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.058279", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-1261", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1261 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.058288", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-us-east-2-db65d037"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-east-2:123456789012:resource-1261", "name": "resource-1261", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-east-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1261", "type": "elb", "uid": "arn:aws:elb:us-east-2:123456789012:resource-1261"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.058288", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1262", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1262 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.058296", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-west-1-4c2bf574"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-west-1:123456789012:resource-1262", "name": "resource-1262", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-west-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1262", "type": "emr", "uid": "arn:aws:emr:us-west-1:123456789012:resource-1262"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.058296", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1263", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1263 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.058305", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-west-2-0563c2bc"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-west-2:123456789012:resource-1263", "name": "resource-1263", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-west-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1263", "type": "guardduty", "uid": "arn:aws:guardduty:us-west-2:123456789012:resource-1263"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.058305", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-1264", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1264 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.058314", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-eu-west-1-67c48084"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-west-1:123456789012:resource-1264", "name": "resource-1264", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-west-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1264", "type": "iam", "uid": "arn:aws:iam:eu-west-1:123456789012:resource-1264"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.058314", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1265", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1265 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.058323", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-2-af89e4a9"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:eu-west-2:123456789012:resource-1265", "name": "resource-1265", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "eu-west-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1265", "type": "kms", "uid": "arn:aws:kms:eu-west-2:123456789012:resource-1265"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.058323", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-1266", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1266 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.058333", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-eu-central-1-bfc52177"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:eu-central-1:123456789012:resource-1266", "name": "resource-1266", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "eu-central-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1266", "type": "lambda", "uid": "arn:aws:lambda:eu-central-1:123456789012:resource-1266"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.058333", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-1267", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1267 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.058344", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-ap-southeast-1-fef808e4"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-southeast-1:123456789012:resource-1267", "name": "resource-1267", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-southeast-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1267", "type": "rds", "uid": "arn:aws:rds:ap-southeast-1:123456789012:resource-1267"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.058344", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1268", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1268 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.058352", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-2-1206035e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:ap-southeast-2:123456789012:resource-1268", "name": "resource-1268", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "ap-southeast-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1268", "type": "redshift", "uid": "arn:aws:redshift:ap-southeast-2:123456789012:resource-1268"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.058352", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-1269", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1269 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.058361", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-ap-northeast-1-910cc08d"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:ap-northeast-1:123456789012:resource-1269", "name": "resource-1269", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "ap-northeast-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1269", "type": "s3", "uid": "arn:aws:s3:ap-northeast-1:123456789012:resource-1269"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.058361", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1270", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1270 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.058371", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-east-1-b451e7f1"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-east-1:123456789012:resource-1270", "name": "resource-1270", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-east-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1270", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-east-1:123456789012:resource-1270"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.058371", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1271", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1271 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.058379", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-2-da0dc7a2"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-east-2:123456789012:resource-1271", "name": "resource-1271", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-east-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1271", "type": "sns", "uid": "arn:aws:sns:us-east-2:123456789012:resource-1271"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.058379", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1272", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1272 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.058388", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-west-1-fa4e870d"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-west-1:123456789012:resource-1272", "name": "resource-1272", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-west-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1272", "type": "sqs", "uid": "arn:aws:sqs:us-west-1:123456789012:resource-1272"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.058388", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1273", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1273 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.058397", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-2-e68083bb"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-west-2:123456789012:resource-1273", "name": "resource-1273", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-west-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1273", "type": "ssm", "uid": "arn:aws:ssm:us-west-2:123456789012:resource-1273"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.058397", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1274", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1274 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.058406", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-eu-west-1-5ec69b61"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:eu-west-1:123456789012:resource-1274", "name": "resource-1274", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "eu-west-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1274", "type": "vpc", "uid": "arn:aws:vpc:eu-west-1:123456789012:resource-1274"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.058406", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1275", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1275 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.058416", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-2-5b433bdf"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:eu-west-2:123456789012:resource-1275", "name": "resource-1275", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "eu-west-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1275", "type": "waf", "uid": "arn:aws:waf:eu-west-2:123456789012:resource-1275"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.058416", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-1276", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1276 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.058425", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-eu-central-1-f44d87a6"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:eu-central-1:123456789012:resource-1276", "name": "resource-1276", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "eu-central-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1276", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:eu-central-1:123456789012:resource-1276"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.058425", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-1277", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1277 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.058450", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-ap-southeast-1-e045ec8e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:ap-southeast-1:123456789012:resource-1277", "name": "resource-1277", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "ap-southeast-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1277", "type": "acm", "uid": "arn:aws:acm:ap-southeast-1:123456789012:resource-1277"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.058450", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-1278", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1278 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.058459", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-ap-southeast-2-4fd8978d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:ap-southeast-2:123456789012:resource-1278", "name": "resource-1278", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "ap-southeast-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1278", "type": "apigateway", "uid": "arn:aws:apigateway:ap-southeast-2:123456789012:resource-1278"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.058459", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-1279", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1279 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.058470", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-northeast-1-e74dbc5e"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:ap-northeast-1:123456789012:resource-1279", "name": "resource-1279", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "ap-northeast-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1279", "type": "cloudfront", "uid": "arn:aws:cloudfront:ap-northeast-1:123456789012:resource-1279"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.058470", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-1280", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1280 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.058479", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-us-east-1-63d4231a"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-east-1:123456789012:resource-1280", "name": "resource-1280", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-east-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1280", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-east-1:123456789012:resource-1280"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.058479", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1281", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1281 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.058488", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-2-8d51d61d"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-east-2:123456789012:resource-1281", "name": "resource-1281", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-east-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1281", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-east-2:123456789012:resource-1281"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.058488", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1282", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1282 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.058497", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-west-1-cdb9b3f8"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-west-1:123456789012:resource-1282", "name": "resource-1282", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-west-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1282", "type": "config", "uid": "arn:aws:config:us-west-1:123456789012:resource-1282"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.058497", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-1283", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1283 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.058507", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-west-2-e22eba05"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-west-2:123456789012:resource-1283", "name": "resource-1283", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-west-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1283", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-west-2:123456789012:resource-1283"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.058507", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-1284", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1284 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.058516", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-eu-west-1-8bb6f827"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:eu-west-1:123456789012:resource-1284", "name": "resource-1284", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "eu-west-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1284", "type": "ec2", "uid": "arn:aws:ec2:eu-west-1:123456789012:resource-1284"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.058516", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-1285", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1285 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.058525", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-eu-west-2-d5904379"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:eu-west-2:123456789012:resource-1285", "name": "resource-1285", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "eu-west-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1285", "type": "ecr", "uid": "arn:aws:ecr:eu-west-2:123456789012:resource-1285"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.058525", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1286", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1286 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.058533", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-central-1-a9907e43"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:eu-central-1:123456789012:resource-1286", "name": "resource-1286", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "eu-central-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1286", "type": "ecs", "uid": "arn:aws:ecs:eu-central-1:123456789012:resource-1286"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.058533", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1287", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1287 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.058542", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-ap-southeast-1-874fe055"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:ap-southeast-1:123456789012:resource-1287", "name": "resource-1287", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "ap-southeast-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1287", "type": "efs", "uid": "arn:aws:efs:ap-southeast-1:123456789012:resource-1287"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.058542", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-1288", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1288 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.058551", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-ap-southeast-2-ac44caf7"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:ap-southeast-2:123456789012:resource-1288", "name": "resource-1288", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "ap-southeast-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1288", "type": "eks", "uid": "arn:aws:eks:ap-southeast-2:123456789012:resource-1288"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.058551", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1289", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1289 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.058560", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-northeast-1-3788fc47"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:ap-northeast-1:123456789012:resource-1289", "name": "resource-1289", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "ap-northeast-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1289", "type": "elasticache", "uid": "arn:aws:elasticache:ap-northeast-1:123456789012:resource-1289"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.058560", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-1290", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1290 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.058569", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-us-east-1-e3bcd5d5"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-east-1:123456789012:resource-1290", "name": "resource-1290", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-east-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1290", "type": "elb", "uid": "arn:aws:elb:us-east-1:123456789012:resource-1290"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.058569", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1291", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1291 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.058580", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-2-3a2ed57d"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-east-2:123456789012:resource-1291", "name": "resource-1291", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-east-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1291", "type": "emr", "uid": "arn:aws:emr:us-east-2:123456789012:resource-1291"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.058580", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1292", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1292 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.058590", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-west-1-cb543bfb"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-west-1:123456789012:resource-1292", "name": "resource-1292", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-west-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1292", "type": "guardduty", "uid": "arn:aws:guardduty:us-west-1:123456789012:resource-1292"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.058590", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-1293", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1293 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.058598", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-us-west-2-6d519447"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-west-2:123456789012:resource-1293", "name": "resource-1293", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-west-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1293", "type": "iam", "uid": "arn:aws:iam:us-west-2:123456789012:resource-1293"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.058598", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1294", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1294 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.058608", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-eu-west-1-5ebfb705"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:eu-west-1:123456789012:resource-1294", "name": "resource-1294", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "eu-west-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1294", "type": "kms", "uid": "arn:aws:kms:eu-west-1:123456789012:resource-1294"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.058608", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-1295", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1295 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.058618", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-eu-west-2-6f221546"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:eu-west-2:123456789012:resource-1295", "name": "resource-1295", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "eu-west-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1295", "type": "lambda", "uid": "arn:aws:lambda:eu-west-2:123456789012:resource-1295"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.058618", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-1296", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1296 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.058627", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-eu-central-1-3f9270e2"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:eu-central-1:123456789012:resource-1296", "name": "resource-1296", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "eu-central-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1296", "type": "rds", "uid": "arn:aws:rds:eu-central-1:123456789012:resource-1296"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.058627", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1297", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1297 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.058638", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-ap-southeast-1-044d9016"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:ap-southeast-1:123456789012:resource-1297", "name": "resource-1297", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "ap-southeast-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1297", "type": "redshift", "uid": "arn:aws:redshift:ap-southeast-1:123456789012:resource-1297"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.058638", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-1298", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1298 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.058647", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-ap-southeast-2-c3984d10"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:ap-southeast-2:123456789012:resource-1298", "name": "resource-1298", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "ap-southeast-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1298", "type": "s3", "uid": "arn:aws:s3:ap-southeast-2:123456789012:resource-1298"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.058647", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1299", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1299 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.058658", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-northeast-1-e01ffe6a"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:ap-northeast-1:123456789012:resource-1299", "name": "resource-1299", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "ap-northeast-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1299", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:ap-northeast-1:123456789012:resource-1299"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.058658", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1300", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1300 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.058667", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-us-east-1-7094ece5"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:us-east-1:123456789012:resource-1300", "name": "resource-1300", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "us-east-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1300", "type": "sns", "uid": "arn:aws:sns:us-east-1:123456789012:resource-1300"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.058667", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1301", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1301 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.058690", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-2-bbc92597"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-east-2:123456789012:resource-1301", "name": "resource-1301", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-east-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1301", "type": "sqs", "uid": "arn:aws:sqs:us-east-2:123456789012:resource-1301"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.058690", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1302", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1302 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.058698", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-west-1-756d5137"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-west-1:123456789012:resource-1302", "name": "resource-1302", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-west-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1302", "type": "ssm", "uid": "arn:aws:ssm:us-west-1:123456789012:resource-1302"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.058698", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1303", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1303 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.058707", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-2-5a48a8cf"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-west-2:123456789012:resource-1303", "name": "resource-1303", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-west-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1303", "type": "vpc", "uid": "arn:aws:vpc:us-west-2:123456789012:resource-1303"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.058707", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1304", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1304 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.058717", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-eu-west-1-8f79adbb"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:eu-west-1:123456789012:resource-1304", "name": "resource-1304", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "eu-west-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1304", "type": "waf", "uid": "arn:aws:waf:eu-west-1:123456789012:resource-1304"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.058717", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-1305", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1305 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.058727", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-eu-west-2-1448b90a"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:eu-west-2:123456789012:resource-1305", "name": "resource-1305", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "eu-west-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1305", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:eu-west-2:123456789012:resource-1305"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.058727", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-1306", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1306 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.058738", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-eu-central-1-2ef14552"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:eu-central-1:123456789012:resource-1306", "name": "resource-1306", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "eu-central-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1306", "type": "acm", "uid": "arn:aws:acm:eu-central-1:123456789012:resource-1306"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.058738", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-1307", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1307 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.058748", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-ap-southeast-1-d22b7c60"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:ap-southeast-1:123456789012:resource-1307", "name": "resource-1307", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "ap-southeast-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1307", "type": "apigateway", "uid": "arn:aws:apigateway:ap-southeast-1:123456789012:resource-1307"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.058748", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-1308", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1308 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.058757", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-ap-southeast-2-3a3339cb"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:ap-southeast-2:123456789012:resource-1308", "name": "resource-1308", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "ap-southeast-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1308", "type": "cloudfront", "uid": "arn:aws:cloudfront:ap-southeast-2:123456789012:resource-1308"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.058757", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-1309", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1309 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.058766", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-northeast-1-4ba4f6ec"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:ap-northeast-1:123456789012:resource-1309", "name": "resource-1309", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "ap-northeast-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1309", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:ap-northeast-1:123456789012:resource-1309"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.058766", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1310", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1310 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.058775", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-us-east-1-666ee17a"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:us-east-1:123456789012:resource-1310", "name": "resource-1310", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "us-east-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1310", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:us-east-1:123456789012:resource-1310"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.058775", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1311", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1311 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.058784", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-2-069ea61d"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-east-2:123456789012:resource-1311", "name": "resource-1311", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-east-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1311", "type": "config", "uid": "arn:aws:config:us-east-2:123456789012:resource-1311"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.058784", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-1312", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1312 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.058793", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-west-1-e544b2d6"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-west-1:123456789012:resource-1312", "name": "resource-1312", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-west-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1312", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-west-1:123456789012:resource-1312"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.058793", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-1313", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1313 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.058803", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-us-west-2-fdecd555"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-west-2:123456789012:resource-1313", "name": "resource-1313", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-west-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1313", "type": "ec2", "uid": "arn:aws:ec2:us-west-2:123456789012:resource-1313"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.058803", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-1314", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1314 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.058812", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-eu-west-1-d8f16abd"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:eu-west-1:123456789012:resource-1314", "name": "resource-1314", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "eu-west-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1314", "type": "ecr", "uid": "arn:aws:ecr:eu-west-1:123456789012:resource-1314"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.058812", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1315", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1315 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.058823", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-2-b1ce3e3d"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:eu-west-2:123456789012:resource-1315", "name": "resource-1315", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "eu-west-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1315", "type": "ecs", "uid": "arn:aws:ecs:eu-west-2:123456789012:resource-1315"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.058823", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1316", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1316 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.058833", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-central-1-97ec4ae5"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:eu-central-1:123456789012:resource-1316", "name": "resource-1316", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "eu-central-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1316", "type": "efs", "uid": "arn:aws:efs:eu-central-1:123456789012:resource-1316"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.058833", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-1317", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1317 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.058845", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-ap-southeast-1-b6677735"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:ap-southeast-1:123456789012:resource-1317", "name": "resource-1317", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "ap-southeast-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1317", "type": "eks", "uid": "arn:aws:eks:ap-southeast-1:123456789012:resource-1317"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.058845", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1318", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1318 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.058855", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-2-f22e63d2"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:ap-southeast-2:123456789012:resource-1318", "name": "resource-1318", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "ap-southeast-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1318", "type": "elasticache", "uid": "arn:aws:elasticache:ap-southeast-2:123456789012:resource-1318"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.058855", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-1319", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1319 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.058865", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-ap-northeast-1-9c4730e4"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:ap-northeast-1:123456789012:resource-1319", "name": "resource-1319", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "ap-northeast-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1319", "type": "elb", "uid": "arn:aws:elb:ap-northeast-1:123456789012:resource-1319"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.058865", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1320", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1320 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.058873", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-us-east-1-8eed3df1"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:us-east-1:123456789012:resource-1320", "name": "resource-1320", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "us-east-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1320", "type": "emr", "uid": "arn:aws:emr:us-east-1:123456789012:resource-1320"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.058873", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1321", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1321 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.058883", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-east-2-33232ba7"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-east-2:123456789012:resource-1321", "name": "resource-1321", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-east-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1321", "type": "guardduty", "uid": "arn:aws:guardduty:us-east-2:123456789012:resource-1321"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.058883", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-1322", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1322 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.058891", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-us-west-1-c1dccc3f"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-west-1:123456789012:resource-1322", "name": "resource-1322", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-west-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1322", "type": "iam", "uid": "arn:aws:iam:us-west-1:123456789012:resource-1322"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.058891", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1323", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1323 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.058901", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-2-8eeba5c2"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-west-2:123456789012:resource-1323", "name": "resource-1323", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-west-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1323", "type": "kms", "uid": "arn:aws:kms:us-west-2:123456789012:resource-1323"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.058901", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-1324", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1324 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.058910", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-eu-west-1-ae5ad332"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:eu-west-1:123456789012:resource-1324", "name": "resource-1324", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "eu-west-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1324", "type": "lambda", "uid": "arn:aws:lambda:eu-west-1:123456789012:resource-1324"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.058910", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-1325", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1325 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.058933", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-eu-west-2-4edd8cf6"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:eu-west-2:123456789012:resource-1325", "name": "resource-1325", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "eu-west-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1325", "type": "rds", "uid": "arn:aws:rds:eu-west-2:123456789012:resource-1325"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.058933", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1326", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1326 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.058943", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-eu-central-1-afbb75d7"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:eu-central-1:123456789012:resource-1326", "name": "resource-1326", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "eu-central-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1326", "type": "redshift", "uid": "arn:aws:redshift:eu-central-1:123456789012:resource-1326"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.058943", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-1327", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1327 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.058954", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-ap-southeast-1-d983ab55"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:ap-southeast-1:123456789012:resource-1327", "name": "resource-1327", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "ap-southeast-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1327", "type": "s3", "uid": "arn:aws:s3:ap-southeast-1:123456789012:resource-1327"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.058954", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1328", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1328 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.058964", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-2-04c65e81"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:ap-southeast-2:123456789012:resource-1328", "name": "resource-1328", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "ap-southeast-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1328", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:ap-southeast-2:123456789012:resource-1328"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.058964", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1329", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1329 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.058973", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-northeast-1-34820642"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:ap-northeast-1:123456789012:resource-1329", "name": "resource-1329", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "ap-northeast-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1329", "type": "sns", "uid": "arn:aws:sns:ap-northeast-1:123456789012:resource-1329"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.058973", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1330", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1330 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.058984", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-us-east-1-86ef5569"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:us-east-1:123456789012:resource-1330", "name": "resource-1330", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "us-east-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1330", "type": "sqs", "uid": "arn:aws:sqs:us-east-1:123456789012:resource-1330"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.058984", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1331", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1331 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.058995", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-2-2e1a4ac1"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-east-2:123456789012:resource-1331", "name": "resource-1331", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-east-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1331", "type": "ssm", "uid": "arn:aws:ssm:us-east-2:123456789012:resource-1331"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.058995", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1332", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1332 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.059004", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-west-1-cc5efc2c"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-west-1:123456789012:resource-1332", "name": "resource-1332", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-west-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1332", "type": "vpc", "uid": "arn:aws:vpc:us-west-1:123456789012:resource-1332"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.059004", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1333", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1333 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.059013", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-2-b1f1e801"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-west-2:123456789012:resource-1333", "name": "resource-1333", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-west-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1333", "type": "waf", "uid": "arn:aws:waf:us-west-2:123456789012:resource-1333"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.059013", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-1334", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1334 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.059022", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-eu-west-1-a8d4aeab"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:eu-west-1:123456789012:resource-1334", "name": "resource-1334", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "eu-west-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1334", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:eu-west-1:123456789012:resource-1334"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.059022", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-1335", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1335 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.059030", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-eu-west-2-c0f1e46b"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:eu-west-2:123456789012:resource-1335", "name": "resource-1335", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "eu-west-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1335", "type": "acm", "uid": "arn:aws:acm:eu-west-2:123456789012:resource-1335"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.059030", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-1336", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1336 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.059040", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-central-1-350ddc4a"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:eu-central-1:123456789012:resource-1336", "name": "resource-1336", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "eu-central-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1336", "type": "apigateway", "uid": "arn:aws:apigateway:eu-central-1:123456789012:resource-1336"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.059040", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-1337", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1337 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.059049", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-ap-southeast-1-0fb5c19b"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:ap-southeast-1:123456789012:resource-1337", "name": "resource-1337", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "ap-southeast-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1337", "type": "cloudfront", "uid": "arn:aws:cloudfront:ap-southeast-1:123456789012:resource-1337"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.059049", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-1338", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1338 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.059058", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-ap-southeast-2-6e572c09"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:ap-southeast-2:123456789012:resource-1338", "name": "resource-1338", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "ap-southeast-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1338", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:ap-southeast-2:123456789012:resource-1338"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.059058", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1339", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1339 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.059068", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-northeast-1-cf8856d9"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:ap-northeast-1:123456789012:resource-1339", "name": "resource-1339", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "ap-northeast-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1339", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:ap-northeast-1:123456789012:resource-1339"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.059068", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1340", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1340 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.059077", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-us-east-1-0da5e5e5"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:us-east-1:123456789012:resource-1340", "name": "resource-1340", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "us-east-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1340", "type": "config", "uid": "arn:aws:config:us-east-1:123456789012:resource-1340"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.059077", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-1341", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1341 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.059086", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-us-east-2-f40380ec"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-east-2:123456789012:resource-1341", "name": "resource-1341", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-east-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1341", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-east-2:123456789012:resource-1341"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.059086", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-1342", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1342 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.059096", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-us-west-1-0b3a3528"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-west-1:123456789012:resource-1342", "name": "resource-1342", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-west-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1342", "type": "ec2", "uid": "arn:aws:ec2:us-west-1:123456789012:resource-1342"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.059096", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-1343", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1343 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.059106", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-west-2-08438689"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-west-2:123456789012:resource-1343", "name": "resource-1343", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-west-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1343", "type": "ecr", "uid": "arn:aws:ecr:us-west-2:123456789012:resource-1343"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.059106", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1344", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1344 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.059114", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-eu-west-1-95e65c75"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:eu-west-1:123456789012:resource-1344", "name": "resource-1344", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "eu-west-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1344", "type": "ecs", "uid": "arn:aws:ecs:eu-west-1:123456789012:resource-1344"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.059114", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1345", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1345 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.059124", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-2-e70199b8"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:eu-west-2:123456789012:resource-1345", "name": "resource-1345", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "eu-west-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1345", "type": "efs", "uid": "arn:aws:efs:eu-west-2:123456789012:resource-1345"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.059124", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-1346", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1346 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.059132", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-eu-central-1-45aca9f2"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:eu-central-1:123456789012:resource-1346", "name": "resource-1346", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "eu-central-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1346", "type": "eks", "uid": "arn:aws:eks:eu-central-1:123456789012:resource-1346"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.059132", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1347", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1347 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.059142", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-ap-southeast-1-806d7e2d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:ap-southeast-1:123456789012:resource-1347", "name": "resource-1347", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "ap-southeast-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1347", "type": "elasticache", "uid": "arn:aws:elasticache:ap-southeast-1:123456789012:resource-1347"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.059142", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-1348", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1348 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.059152", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-ap-southeast-2-0d7d53ac"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:ap-southeast-2:123456789012:resource-1348", "name": "resource-1348", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "ap-southeast-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1348", "type": "elb", "uid": "arn:aws:elb:ap-southeast-2:123456789012:resource-1348"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.059152", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1349", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1349 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.059176", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-northeast-1-222f848b"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:ap-northeast-1:123456789012:resource-1349", "name": "resource-1349", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "ap-northeast-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1349", "type": "emr", "uid": "arn:aws:emr:ap-northeast-1:123456789012:resource-1349"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.059176", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1350", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1350 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.059186", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-us-east-1-0b2a6e4c"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:us-east-1:123456789012:resource-1350", "name": "resource-1350", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "us-east-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1350", "type": "guardduty", "uid": "arn:aws:guardduty:us-east-1:123456789012:resource-1350"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.059186", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-1351", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1351 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.059195", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-us-east-2-a1a15451"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-east-2:123456789012:resource-1351", "name": "resource-1351", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-east-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1351", "type": "iam", "uid": "arn:aws:iam:us-east-2:123456789012:resource-1351"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.059195", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1352", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1352 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.059205", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-west-1-14a44f7f"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-west-1:123456789012:resource-1352", "name": "resource-1352", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-west-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1352", "type": "kms", "uid": "arn:aws:kms:us-west-1:123456789012:resource-1352"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.059205", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-1353", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1353 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.059214", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-west-2-39d46ace"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-west-2:123456789012:resource-1353", "name": "resource-1353", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-west-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1353", "type": "lambda", "uid": "arn:aws:lambda:us-west-2:123456789012:resource-1353"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.059214", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-1354", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1354 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.059223", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-eu-west-1-4ac9e68b"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:eu-west-1:123456789012:resource-1354", "name": "resource-1354", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "eu-west-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1354", "type": "rds", "uid": "arn:aws:rds:eu-west-1:123456789012:resource-1354"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.059223", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1355", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1355 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.059234", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-2-3c1ed489"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:eu-west-2:123456789012:resource-1355", "name": "resource-1355", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "eu-west-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1355", "type": "redshift", "uid": "arn:aws:redshift:eu-west-2:123456789012:resource-1355"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.059234", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-1356", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1356 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.059243", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-eu-central-1-52a0cc31"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:eu-central-1:123456789012:resource-1356", "name": "resource-1356", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "eu-central-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1356", "type": "s3", "uid": "arn:aws:s3:eu-central-1:123456789012:resource-1356"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.059243", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1357", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1357 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.059253", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-ap-southeast-1-19b6858a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:ap-southeast-1:123456789012:resource-1357", "name": "resource-1357", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "ap-southeast-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1357", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:ap-southeast-1:123456789012:resource-1357"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.059253", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1358", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1358 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.059263", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-2-b847101c"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:ap-southeast-2:123456789012:resource-1358", "name": "resource-1358", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "ap-southeast-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1358", "type": "sns", "uid": "arn:aws:sns:ap-southeast-2:123456789012:resource-1358"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.059263", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1359", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1359 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.059273", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-northeast-1-98299b4b"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:ap-northeast-1:123456789012:resource-1359", "name": "resource-1359", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "ap-northeast-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1359", "type": "sqs", "uid": "arn:aws:sqs:ap-northeast-1:123456789012:resource-1359"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.059273", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1360", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1360 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.059282", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-us-east-1-3736b846"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:us-east-1:123456789012:resource-1360", "name": "resource-1360", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "us-east-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1360", "type": "ssm", "uid": "arn:aws:ssm:us-east-1:123456789012:resource-1360"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.059282", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1361", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1361 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.059292", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-2-fd968023"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-east-2:123456789012:resource-1361", "name": "resource-1361", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-east-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1361", "type": "vpc", "uid": "arn:aws:vpc:us-east-2:123456789012:resource-1361"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.059292", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1362", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1362 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.059301", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-west-1-7efb42d1"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-west-1:123456789012:resource-1362", "name": "resource-1362", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-west-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1362", "type": "waf", "uid": "arn:aws:waf:us-west-1:123456789012:resource-1362"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.059301", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-1363", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1363 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.059312", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-us-west-2-ec10be90"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-west-2:123456789012:resource-1363", "name": "resource-1363", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-west-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1363", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-west-2:123456789012:resource-1363"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.059312", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-1364", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1364 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.059320", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-eu-west-1-8a8b568b"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:eu-west-1:123456789012:resource-1364", "name": "resource-1364", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "eu-west-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1364", "type": "acm", "uid": "arn:aws:acm:eu-west-1:123456789012:resource-1364"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.059320", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-1365", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1365 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.059329", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-eu-west-2-52557319"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:eu-west-2:123456789012:resource-1365", "name": "resource-1365", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "eu-west-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1365", "type": "apigateway", "uid": "arn:aws:apigateway:eu-west-2:123456789012:resource-1365"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.059329", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-1366", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1366 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.059338", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-central-1-5652654a"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:eu-central-1:123456789012:resource-1366", "name": "resource-1366", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "eu-central-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1366", "type": "cloudfront", "uid": "arn:aws:cloudfront:eu-central-1:123456789012:resource-1366"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.059338", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-1367", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1367 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.059349", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-ap-southeast-1-629e5064"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:ap-southeast-1:123456789012:resource-1367", "name": "resource-1367", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "ap-southeast-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1367", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:ap-southeast-1:123456789012:resource-1367"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.059349", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1368", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1368 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.059359", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-2-0376a3eb"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:ap-southeast-2:123456789012:resource-1368", "name": "resource-1368", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "ap-southeast-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1368", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:ap-southeast-2:123456789012:resource-1368"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.059359", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1369", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1369 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.059369", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-northeast-1-56b1a8a2"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:ap-northeast-1:123456789012:resource-1369", "name": "resource-1369", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "ap-northeast-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1369", "type": "config", "uid": "arn:aws:config:ap-northeast-1:123456789012:resource-1369"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.059369", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-1370", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1370 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.059377", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-us-east-1-6ce10693"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:us-east-1:123456789012:resource-1370", "name": "resource-1370", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "us-east-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1370", "type": "dynamodb", "uid": "arn:aws:dynamodb:us-east-1:123456789012:resource-1370"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.059377", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-1371", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1371 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.059388", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-us-east-2-916ccfc6"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-east-2:123456789012:resource-1371", "name": "resource-1371", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-east-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1371", "type": "ec2", "uid": "arn:aws:ec2:us-east-2:123456789012:resource-1371"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.059388", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-1372", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1372 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.059397", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-west-1-5040dc4c"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-west-1:123456789012:resource-1372", "name": "resource-1372", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-west-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1372", "type": "ecr", "uid": "arn:aws:ecr:us-west-1:123456789012:resource-1372"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.059397", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1373", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1373 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.059419", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-2-2617a4b5"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-west-2:123456789012:resource-1373", "name": "resource-1373", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-west-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1373", "type": "ecs", "uid": "arn:aws:ecs:us-west-2:123456789012:resource-1373"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.059419", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1374", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1374 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.059428", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-eu-west-1-a2c6fe95"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:eu-west-1:123456789012:resource-1374", "name": "resource-1374", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "eu-west-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1374", "type": "efs", "uid": "arn:aws:efs:eu-west-1:123456789012:resource-1374"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.059428", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-1375", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1375 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.059437", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-eu-west-2-c06813c2"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:eu-west-2:123456789012:resource-1375", "name": "resource-1375", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "eu-west-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1375", "type": "eks", "uid": "arn:aws:eks:eu-west-2:123456789012:resource-1375"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.059437", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1376", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1376 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.059446", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-central-1-63f6ca40"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:eu-central-1:123456789012:resource-1376", "name": "resource-1376", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "eu-central-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1376", "type": "elasticache", "uid": "arn:aws:elasticache:eu-central-1:123456789012:resource-1376"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.059446", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-1377", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1377 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.059455", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-ap-southeast-1-f478c1f2"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:ap-southeast-1:123456789012:resource-1377", "name": "resource-1377", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "ap-southeast-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1377", "type": "elb", "uid": "arn:aws:elb:ap-southeast-1:123456789012:resource-1377"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.059455", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1378", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1378 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.059465", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-2-b02f1c0d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:ap-southeast-2:123456789012:resource-1378", "name": "resource-1378", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "ap-southeast-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1378", "type": "emr", "uid": "arn:aws:emr:ap-southeast-2:123456789012:resource-1378"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.059465", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1379", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1379 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.059475", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-ap-northeast-1-ec13d8b6"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:ap-northeast-1:123456789012:resource-1379", "name": "resource-1379", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "ap-northeast-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1379", "type": "guardduty", "uid": "arn:aws:guardduty:ap-northeast-1:123456789012:resource-1379"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.059475", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-1380", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1380 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.059483", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-us-east-1-edd3d208"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:us-east-1:123456789012:resource-1380", "name": "resource-1380", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "us-east-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1380", "type": "iam", "uid": "arn:aws:iam:us-east-1:123456789012:resource-1380"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.059483", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1381", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1381 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.059494", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-2-faebccb1"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-east-2:123456789012:resource-1381", "name": "resource-1381", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-east-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1381", "type": "kms", "uid": "arn:aws:kms:us-east-2:123456789012:resource-1381"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.059494", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-1382", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1382 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.059503", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-us-west-1-45659abb"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-west-1:123456789012:resource-1382", "name": "resource-1382", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-west-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1382", "type": "lambda", "uid": "arn:aws:lambda:us-west-1:123456789012:resource-1382"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.059503", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-1383", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1383 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.059511", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-us-west-2-275c3329"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-west-2:123456789012:resource-1383", "name": "resource-1383", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-west-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1383", "type": "rds", "uid": "arn:aws:rds:us-west-2:123456789012:resource-1383"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.059511", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1384", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1384 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.059520", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-eu-west-1-2a1b4af7"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:eu-west-1:123456789012:resource-1384", "name": "resource-1384", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "eu-west-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1384", "type": "redshift", "uid": "arn:aws:redshift:eu-west-1:123456789012:resource-1384"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.059520", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-1385", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1385 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.059531", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-eu-west-2-e454a68a"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:eu-west-2:123456789012:resource-1385", "name": "resource-1385", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "eu-west-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1385", "type": "s3", "uid": "arn:aws:s3:eu-west-2:123456789012:resource-1385"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.059531", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1386", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1386 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.059540", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-central-1-caa0c38c"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:eu-central-1:123456789012:resource-1386", "name": "resource-1386", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "eu-central-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1386", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:eu-central-1:123456789012:resource-1386"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.059540", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1387", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1387 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.059550", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-ap-southeast-1-850863b9"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:ap-southeast-1:123456789012:resource-1387", "name": "resource-1387", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "ap-southeast-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1387", "type": "sns", "uid": "arn:aws:sns:ap-southeast-1:123456789012:resource-1387"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.059550", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1388", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1388 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.059559", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-2-baf1ecea"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:ap-southeast-2:123456789012:resource-1388", "name": "resource-1388", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "ap-southeast-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1388", "type": "sqs", "uid": "arn:aws:sqs:ap-southeast-2:123456789012:resource-1388"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.059559", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1389", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1389 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.059568", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-ap-northeast-1-8da2f870"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:ap-northeast-1:123456789012:resource-1389", "name": "resource-1389", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "ap-northeast-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1389", "type": "ssm", "uid": "arn:aws:ssm:ap-northeast-1:123456789012:resource-1389"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.059568", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1390", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1390 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.059577", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-us-east-1-63782dcd"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:us-east-1:123456789012:resource-1390", "name": "resource-1390", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "us-east-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1390", "type": "vpc", "uid": "arn:aws:vpc:us-east-1:123456789012:resource-1390"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.059577", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1391", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1391 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.059585", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-2-12b95a2d"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-east-2:123456789012:resource-1391", "name": "resource-1391", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-east-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1391", "type": "waf", "uid": "arn:aws:waf:us-east-2:123456789012:resource-1391"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.059585", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-1392", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1392 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.059594", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-us-west-1-27e7abe9"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-west-1:123456789012:resource-1392", "name": "resource-1392", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-west-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1392", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-west-1:123456789012:resource-1392"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.059594", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-1393", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1393 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.059603", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-west-2-fc2a5012"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-west-2:123456789012:resource-1393", "name": "resource-1393", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-west-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1393", "type": "acm", "uid": "arn:aws:acm:us-west-2:123456789012:resource-1393"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.059603", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-1394", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1394 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.059614", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-eu-west-1-caa8420f"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:eu-west-1:123456789012:resource-1394", "name": "resource-1394", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "eu-west-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1394", "type": "apigateway", "uid": "arn:aws:apigateway:eu-west-1:123456789012:resource-1394"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.059614", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-1395", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1395 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.059625", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-eu-west-2-8a68f5d0"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:eu-west-2:123456789012:resource-1395", "name": "resource-1395", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "eu-west-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1395", "type": "cloudfront", "uid": "arn:aws:cloudfront:eu-west-2:123456789012:resource-1395"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.059625", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-1396", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1396 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.059634", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-central-1-8a819a25"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-central-1:123456789012:resource-1396", "name": "resource-1396", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-central-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1396", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-central-1:123456789012:resource-1396"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.059634", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1397", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1397 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.059656", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-ap-southeast-1-b57d9772"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:ap-southeast-1:123456789012:resource-1397", "name": "resource-1397", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "ap-southeast-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1397", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:ap-southeast-1:123456789012:resource-1397"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.059656", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1398", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1398 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.059665", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-2-3b2e5b79"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:ap-southeast-2:123456789012:resource-1398", "name": "resource-1398", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "ap-southeast-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1398", "type": "config", "uid": "arn:aws:config:ap-southeast-2:123456789012:resource-1398"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.059665", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-1399", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1399 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.059676", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-northeast-1-8e072009"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-northeast-1:123456789012:resource-1399", "name": "resource-1399", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-northeast-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1399", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-northeast-1:123456789012:resource-1399"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.059676", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-1400", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1400 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.059685", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-us-east-1-53140689"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:us-east-1:123456789012:resource-1400", "name": "resource-1400", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "us-east-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1400", "type": "ec2", "uid": "arn:aws:ec2:us-east-1:123456789012:resource-1400"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.059685", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-1401", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1401 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.059694", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-us-east-2-d041d904"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-east-2:123456789012:resource-1401", "name": "resource-1401", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-east-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1401", "type": "ecr", "uid": "arn:aws:ecr:us-east-2:123456789012:resource-1401"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.059694", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1402", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1402 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.059704", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-west-1-6f7af541"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-west-1:123456789012:resource-1402", "name": "resource-1402", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-west-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1402", "type": "ecs", "uid": "arn:aws:ecs:us-west-1:123456789012:resource-1402"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.059704", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1403", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1403 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.059715", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-2-1c8d7010"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-west-2:123456789012:resource-1403", "name": "resource-1403", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-west-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1403", "type": "efs", "uid": "arn:aws:efs:us-west-2:123456789012:resource-1403"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.059715", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-1404", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1404 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.059723", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-eu-west-1-10ccbf7b"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:eu-west-1:123456789012:resource-1404", "name": "resource-1404", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "eu-west-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1404", "type": "eks", "uid": "arn:aws:eks:eu-west-1:123456789012:resource-1404"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.059723", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1405", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1405 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.059734", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-2-aadce60b"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:eu-west-2:123456789012:resource-1405", "name": "resource-1405", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "eu-west-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1405", "type": "elasticache", "uid": "arn:aws:elasticache:eu-west-2:123456789012:resource-1405"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.059734", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-1406", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1406 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.059743", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-eu-central-1-76f123e8"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-central-1:123456789012:resource-1406", "name": "resource-1406", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-central-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1406", "type": "elb", "uid": "arn:aws:elb:eu-central-1:123456789012:resource-1406"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.059743", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1407", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1407 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.059754", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-ap-southeast-1-04131120"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:ap-southeast-1:123456789012:resource-1407", "name": "resource-1407", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "ap-southeast-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1407", "type": "emr", "uid": "arn:aws:emr:ap-southeast-1:123456789012:resource-1407"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.059754", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1408", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1408 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.059764", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-2-4bb8b101"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:ap-southeast-2:123456789012:resource-1408", "name": "resource-1408", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "ap-southeast-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1408", "type": "guardduty", "uid": "arn:aws:guardduty:ap-southeast-2:123456789012:resource-1408"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.059764", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-1409", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1409 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.059773", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-ap-northeast-1-14095750"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-northeast-1:123456789012:resource-1409", "name": "resource-1409", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-northeast-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1409", "type": "iam", "uid": "arn:aws:iam:ap-northeast-1:123456789012:resource-1409"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.059773", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1410", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1410 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.059783", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-us-east-1-9131c35f"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:us-east-1:123456789012:resource-1410", "name": "resource-1410", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "us-east-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1410", "type": "kms", "uid": "arn:aws:kms:us-east-1:123456789012:resource-1410"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.059783", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-1411", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1411 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.059792", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-us-east-2-26447014"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-east-2:123456789012:resource-1411", "name": "resource-1411", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-east-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1411", "type": "lambda", "uid": "arn:aws:lambda:us-east-2:123456789012:resource-1411"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.059792", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-1412", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1412 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.059801", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-us-west-1-77537227"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-west-1:123456789012:resource-1412", "name": "resource-1412", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-west-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1412", "type": "rds", "uid": "arn:aws:rds:us-west-1:123456789012:resource-1412"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.059801", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1413", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1413 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.059809", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-2-433fb09c"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-west-2:123456789012:resource-1413", "name": "resource-1413", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-west-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1413", "type": "redshift", "uid": "arn:aws:redshift:us-west-2:123456789012:resource-1413"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.059809", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_default_encryption for resource-1414", "metadata": {"event_code": "s3_bucket_default_encryption", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1414 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.059819", "desc": "Check s3_bucket_default_encryption for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Default Encryption", "types": ["S3"], "uid": "prowler-aws-s3_bucket_default_encryption-123456789012-eu-west-1-940e6596"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:eu-west-1:123456789012:resource-1414", "name": "resource-1414", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "eu-west-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1414", "type": "s3", "uid": "arn:aws:s3:eu-west-1:123456789012:resource-1414"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for s3_bucket_default_encryption", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_default_encryption", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.059819", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1415", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1415 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.059829", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-2-8b0b5ef0"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:eu-west-2:123456789012:resource-1415", "name": "resource-1415", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "eu-west-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1415", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:eu-west-2:123456789012:resource-1415"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.059829", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1416", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1416 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.059837", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-central-1-d4cb6d53"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-central-1:123456789012:resource-1416", "name": "resource-1416", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-central-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1416", "type": "sns", "uid": "arn:aws:sns:eu-central-1:123456789012:resource-1416"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.059837", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1417", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1417 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.059849", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-ap-southeast-1-2a1257f8"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:ap-southeast-1:123456789012:resource-1417", "name": "resource-1417", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "ap-southeast-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1417", "type": "sqs", "uid": "arn:aws:sqs:ap-southeast-1:123456789012:resource-1417"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.059849", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1418", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1418 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.059859", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-2-6cb07072"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:ap-southeast-2:123456789012:resource-1418", "name": "resource-1418", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "ap-southeast-2"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1418", "type": "ssm", "uid": "arn:aws:ssm:ap-southeast-2:123456789012:resource-1418"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.059859", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1419", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1419 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.059868", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-northeast-1-7369a407"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-northeast-1:123456789012:resource-1419", "name": "resource-1419", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-northeast-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1419", "type": "vpc", "uid": "arn:aws:vpc:ap-northeast-1:123456789012:resource-1419"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.059868", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1420", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1420 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.059879", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-us-east-1-ccc26b49"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:us-east-1:123456789012:resource-1420", "name": "resource-1420", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "us-east-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1420", "type": "waf", "uid": "arn:aws:waf:us-east-1:123456789012:resource-1420"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.059879", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-1421", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1421 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.059903", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-us-east-2-d54c59d4"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-east-2:123456789012:resource-1421", "name": "resource-1421", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-east-2"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1421", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-east-2:123456789012:resource-1421"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.059903", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-1422", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1422 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.059912", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-us-west-1-b8226d2f"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-west-1:123456789012:resource-1422", "name": "resource-1422", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-west-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1422", "type": "acm", "uid": "arn:aws:acm:us-west-1:123456789012:resource-1422"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.059912", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-1423", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1423 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.059921", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-west-2-4b5e2a1a"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-west-2:123456789012:resource-1423", "name": "resource-1423", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-west-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1423", "type": "apigateway", "uid": "arn:aws:apigateway:us-west-2:123456789012:resource-1423"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.059921", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-1424", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1424 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.059930", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-eu-west-1-2fefbe78"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:eu-west-1:123456789012:resource-1424", "name": "resource-1424", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "eu-west-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1424", "type": "cloudfront", "uid": "arn:aws:cloudfront:eu-west-1:123456789012:resource-1424"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.059930", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-1425", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1425 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.059939", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-eu-west-2-1db5b909"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-west-2:123456789012:resource-1425", "name": "resource-1425", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-west-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1425", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-west-2:123456789012:resource-1425"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.059939", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1426", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1426 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.059950", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-central-1-d930fac2"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-central-1:123456789012:resource-1426", "name": "resource-1426", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-central-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1426", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-central-1:123456789012:resource-1426"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.059950", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1427", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1427 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.059959", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-ap-southeast-1-7ce4ffe8"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:ap-southeast-1:123456789012:resource-1427", "name": "resource-1427", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "ap-southeast-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1427", "type": "config", "uid": "arn:aws:config:ap-southeast-1:123456789012:resource-1427"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.059959", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-1428", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1428 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.059968", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-ap-southeast-2-5a9c936c"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-southeast-2:123456789012:resource-1428", "name": "resource-1428", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-southeast-2"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1428", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-southeast-2:123456789012:resource-1428"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.059968", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_public_ip for resource-1429", "metadata": {"event_code": "ec2_instance_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1429 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.059977", "desc": "Check ec2_instance_public_ip for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Public Ip", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_public_ip-123456789012-ap-northeast-1-18e768f2"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-northeast-1:123456789012:resource-1429", "name": "resource-1429", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-northeast-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1429", "type": "ec2", "uid": "arn:aws:ec2:ap-northeast-1:123456789012:resource-1429"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ec2_instance_public_ip", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_public_ip", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.059977", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-1430", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1430 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.059986", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-us-east-1-76310520"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:us-east-1:123456789012:resource-1430", "name": "resource-1430", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "us-east-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1430", "type": "ecr", "uid": "arn:aws:ecr:us-east-1:123456789012:resource-1430"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.059986", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1431", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1431 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.059995", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-2-108bfe8e"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-east-2:123456789012:resource-1431", "name": "resource-1431", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-east-2"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1431", "type": "ecs", "uid": "arn:aws:ecs:us-east-2:123456789012:resource-1431"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.059995", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1432", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1432 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.060046", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-west-1-ab99afd6"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-west-1:123456789012:resource-1432", "name": "resource-1432", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-west-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1432", "type": "efs", "uid": "arn:aws:efs:us-west-1:123456789012:resource-1432"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.060046", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-1433", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1433 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.060055", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-west-2-398a0a5c"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-west-2:123456789012:resource-1433", "name": "resource-1433", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-west-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1433", "type": "eks", "uid": "arn:aws:eks:us-west-2:123456789012:resource-1433"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.060055", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1434", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1434 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.060066", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-eu-west-1-b6ea1ceb"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:eu-west-1:123456789012:resource-1434", "name": "resource-1434", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "eu-west-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1434", "type": "elasticache", "uid": "arn:aws:elasticache:eu-west-1:123456789012:resource-1434"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.060066", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-1435", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1435 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.060076", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-eu-west-2-f6bd1ded"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-west-2:123456789012:resource-1435", "name": "resource-1435", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-west-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1435", "type": "elb", "uid": "arn:aws:elb:eu-west-2:123456789012:resource-1435"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.060076", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1436", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1436 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.060085", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-central-1-6989b976"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-central-1:123456789012:resource-1436", "name": "resource-1436", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-central-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1436", "type": "emr", "uid": "arn:aws:emr:eu-central-1:123456789012:resource-1436"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.060085", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1437", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1437 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.060094", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-ap-southeast-1-2188aa2d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:ap-southeast-1:123456789012:resource-1437", "name": "resource-1437", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "ap-southeast-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1437", "type": "guardduty", "uid": "arn:aws:guardduty:ap-southeast-1:123456789012:resource-1437"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.060094", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_user_mfa_enabled_console_access for resource-1438", "metadata": {"event_code": "iam_user_mfa_enabled_console_access", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1438 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.060103", "desc": "Check iam_user_mfa_enabled_console_access for iam", "product_uid": "prowler", "title": "IAM Iam User Mfa Enabled Console Access", "types": ["IAM"], "uid": "prowler-aws-iam_user_mfa_enabled_console_access-123456789012-ap-southeast-2-0ec37d1b"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-southeast-2:123456789012:resource-1438", "name": "resource-1438", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-southeast-2"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1438", "type": "iam", "uid": "arn:aws:iam:ap-southeast-2:123456789012:resource-1438"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for iam_user_mfa_enabled_console_access", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_user_mfa_enabled_console_access", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.060103", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1439", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1439 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.060115", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-northeast-1-6c140042"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-northeast-1:123456789012:resource-1439", "name": "resource-1439", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-northeast-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1439", "type": "kms", "uid": "arn:aws:kms:ap-northeast-1:123456789012:resource-1439"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.060115", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-1440", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1440 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.060125", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-us-east-1-b1eda88a"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:us-east-1:123456789012:resource-1440", "name": "resource-1440", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "us-east-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1440", "type": "lambda", "uid": "arn:aws:lambda:us-east-1:123456789012:resource-1440"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.060125", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_multi_az for resource-1441", "metadata": {"event_code": "rds_instance_multi_az", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1441 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.060134", "desc": "Check rds_instance_multi_az for rds", "product_uid": "prowler", "title": "RDS Rds Instance Multi Az", "types": ["RDS"], "uid": "prowler-aws-rds_instance_multi_az-123456789012-us-east-2-223f12dd"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-east-2:123456789012:resource-1441", "name": "resource-1441", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-east-2"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1441", "type": "rds", "uid": "arn:aws:rds:us-east-2:123456789012:resource-1441"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for rds_instance_multi_az", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_multi_az", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.060134", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1442", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1442 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.060145", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-west-1-9cbcd1a5"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-west-1:123456789012:resource-1442", "name": "resource-1442", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-west-1"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1442", "type": "redshift", "uid": "arn:aws:redshift:us-west-1:123456789012:resource-1442"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.060145", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_public_access_block_enabled for resource-1443", "metadata": {"event_code": "s3_bucket_public_access_block_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1443 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.060154", "desc": "Check s3_bucket_public_access_block_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Public Access Block Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_public_access_block_enabled-123456789012-us-west-2-72e1f392"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-west-2:123456789012:resource-1443", "name": "resource-1443", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-west-2"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1443", "type": "s3", "uid": "arn:aws:s3:us-west-2:123456789012:resource-1443"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for s3_bucket_public_access_block_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_public_access_block_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.060154", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1444", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1444 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.060164", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-eu-west-1-3a2ca8c8"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:eu-west-1:123456789012:resource-1444", "name": "resource-1444", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "eu-west-1"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1444", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:eu-west-1:123456789012:resource-1444"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.060164", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1445", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1445 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.060189", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-2-bb86d9d2"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-west-2:123456789012:resource-1445", "name": "resource-1445", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-west-2"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1445", "type": "sns", "uid": "arn:aws:sns:eu-west-2:123456789012:resource-1445"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.060189", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1446", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1446 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.060198", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-central-1-a83f4f1b"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-central-1:123456789012:resource-1446", "name": "resource-1446", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-central-1"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1446", "type": "sqs", "uid": "arn:aws:sqs:eu-central-1:123456789012:resource-1446"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.060198", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1447", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1447 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.060208", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-ap-southeast-1-1766fcb8"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:ap-southeast-1:123456789012:resource-1447", "name": "resource-1447", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "ap-southeast-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1447", "type": "ssm", "uid": "arn:aws:ssm:ap-southeast-1:123456789012:resource-1447"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.060208", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1448", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1448 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.060216", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-2-4a7f8588"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-southeast-2:123456789012:resource-1448", "name": "resource-1448", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-southeast-2"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1448", "type": "vpc", "uid": "arn:aws:vpc:ap-southeast-2:123456789012:resource-1448"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.060216", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1449", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1449 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.060225", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-northeast-1-508efaa3"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-northeast-1:123456789012:resource-1449", "name": "resource-1449", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-northeast-1"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1449", "type": "waf", "uid": "arn:aws:waf:ap-northeast-1:123456789012:resource-1449"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.060225", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_enabled for resource-1450", "metadata": {"event_code": "accessanalyzer_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1450 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.060237", "desc": "Check accessanalyzer_enabled for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Enabled", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_enabled-123456789012-us-east-1-ecc1901f"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:us-east-1:123456789012:resource-1450", "name": "resource-1450", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "us-east-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1450", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:us-east-1:123456789012:resource-1450"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for accessanalyzer_enabled", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.060237", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_transparency_logs_enabled for resource-1451", "metadata": {"event_code": "acm_certificates_transparency_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1451 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.060246", "desc": "Check acm_certificates_transparency_logs_enabled for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Transparency Logs Enabled", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_transparency_logs_enabled-123456789012-us-east-2-7de3975d"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-east-2:123456789012:resource-1451", "name": "resource-1451", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-east-2"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1451", "type": "acm", "uid": "arn:aws:acm:us-east-2:123456789012:resource-1451"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for acm_certificates_transparency_logs_enabled", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_transparency_logs_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.060246", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_logging_enabled for resource-1452", "metadata": {"event_code": "apigateway_restapi_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1452 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.060256", "desc": "Check apigateway_restapi_logging_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Logging Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_logging_enabled-123456789012-us-west-1-2abf35a3"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-west-1:123456789012:resource-1452", "name": "resource-1452", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-west-1"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1452", "type": "apigateway", "uid": "arn:aws:apigateway:us-west-1:123456789012:resource-1452"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for apigateway_restapi_logging_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_logging_enabled", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.060256", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_logging_enabled for resource-1453", "metadata": {"event_code": "cloudfront_distributions_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1453 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.060265", "desc": "Check cloudfront_distributions_logging_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Logging Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_logging_enabled-123456789012-us-west-2-acf591a7"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-west-2:123456789012:resource-1453", "name": "resource-1453", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-west-2"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1453", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-west-2:123456789012:resource-1453"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudfront_distributions_logging_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_logging_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.060265", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_multi_region_enabled for resource-1454", "metadata": {"event_code": "cloudtrail_multi_region_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1454 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.060274", "desc": "Check cloudtrail_multi_region_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Multi Region Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_multi_region_enabled-123456789012-eu-west-1-d9abd7fd"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:eu-west-1:123456789012:resource-1454", "name": "resource-1454", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "eu-west-1"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1454", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:eu-west-1:123456789012:resource-1454"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudtrail_multi_region_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_multi_region_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.060274", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1455", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1455 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.060283", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-2-b6d97f19"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-west-2:123456789012:resource-1455", "name": "resource-1455", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-west-2"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1455", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-west-2:123456789012:resource-1455"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.060283", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1456", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1456 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.060293", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-central-1-6a0214cc"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-central-1:123456789012:resource-1456", "name": "resource-1456", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-central-1"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1456", "type": "config", "uid": "arn:aws:config:eu-central-1:123456789012:resource-1456"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.060293", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_kms_cmk_encryption_enabled for resource-1457", "metadata": {"event_code": "dynamodb_tables_kms_cmk_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1457 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.060303", "desc": "Check dynamodb_tables_kms_cmk_encryption_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Kms Cmk Encryption Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_kms_cmk_encryption_enabled-123456789012-ap-southeast-1-897f9386"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:ap-southeast-1:123456789012:resource-1457", "name": "resource-1457", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "ap-southeast-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1457", "type": "dynamodb", "uid": "arn:aws:dynamodb:ap-southeast-1:123456789012:resource-1457"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_kms_cmk_encryption_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_kms_cmk_encryption_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.060303", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_instance_imdsv2_enabled for resource-1458", "metadata": {"event_code": "ec2_instance_imdsv2_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1458 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.060317", "desc": "Check ec2_instance_imdsv2_enabled for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Instance Imdsv2 Enabled", "types": ["EC2"], "uid": "prowler-aws-ec2_instance_imdsv2_enabled-123456789012-ap-southeast-2-4df06c13"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-southeast-2:123456789012:resource-1458", "name": "resource-1458", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-southeast-2"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1458", "type": "ec2", "uid": "arn:aws:ec2:ap-southeast-2:123456789012:resource-1458"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ec2_instance_imdsv2_enabled", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_instance_imdsv2_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.060317", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_lifecycle_policy_enabled for resource-1459", "metadata": {"event_code": "ecr_repositories_lifecycle_policy_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1459 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.060326", "desc": "Check ecr_repositories_lifecycle_policy_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Lifecycle Policy Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_lifecycle_policy_enabled-123456789012-ap-northeast-1-42db39b5"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-northeast-1:123456789012:resource-1459", "name": "resource-1459", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-northeast-1"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1459", "type": "ecr", "uid": "arn:aws:ecr:ap-northeast-1:123456789012:resource-1459"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ecr_repositories_lifecycle_policy_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_lifecycle_policy_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.060326", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1460", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1460 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.060335", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-us-east-1-371ec2c5"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:us-east-1:123456789012:resource-1460", "name": "resource-1460", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "us-east-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1460", "type": "ecs", "uid": "arn:aws:ecs:us-east-1:123456789012:resource-1460"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.060335", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1461", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1461 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.060344", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-2-503848bf"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-east-2:123456789012:resource-1461", "name": "resource-1461", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-east-2"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1461", "type": "efs", "uid": "arn:aws:efs:us-east-2:123456789012:resource-1461"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.060344", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_cluster_logging_enabled for resource-1462", "metadata": {"event_code": "eks_cluster_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1462 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.060353", "desc": "Check eks_cluster_logging_enabled for eks", "product_uid": "prowler", "title": "EKS Eks Cluster Logging Enabled", "types": ["EKS"], "uid": "prowler-aws-eks_cluster_logging_enabled-123456789012-us-west-1-b7becbc2"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-west-1:123456789012:resource-1462", "name": "resource-1462", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-west-1"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1462", "type": "eks", "uid": "arn:aws:eks:us-west-1:123456789012:resource-1462"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for eks_cluster_logging_enabled", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_cluster_logging_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.060353", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1463", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1463 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.060362", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-2-9000c17c"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-west-2:123456789012:resource-1463", "name": "resource-1463", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-west-2"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1463", "type": "elasticache", "uid": "arn:aws:elasticache:us-west-2:123456789012:resource-1463"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.060362", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elb_logging_enabled for resource-1464", "metadata": {"event_code": "elb_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1464 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.060371", "desc": "Check elb_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elb Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elb_logging_enabled-123456789012-eu-west-1-615b7fad"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:eu-west-1:123456789012:resource-1464", "name": "resource-1464", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "eu-west-1"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1464", "type": "elb", "uid": "arn:aws:elb:eu-west-1:123456789012:resource-1464"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for elb_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elb_logging_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.060371", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1465", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1465 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.060379", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-2-cfbf3601"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-west-2:123456789012:resource-1465", "name": "resource-1465", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-west-2"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1465", "type": "emr", "uid": "arn:aws:emr:eu-west-2:123456789012:resource-1465"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.060379", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1466", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1466 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.060390", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-central-1-a223253c"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-central-1:123456789012:resource-1466", "name": "resource-1466", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-central-1"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1466", "type": "guardduty", "uid": "arn:aws:guardduty:eu-central-1:123456789012:resource-1466"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.060390", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_root_hardware_mfa_enabled for resource-1467", "metadata": {"event_code": "iam_root_hardware_mfa_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1467 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.060399", "desc": "Check iam_root_hardware_mfa_enabled for iam", "product_uid": "prowler", "title": "IAM Iam Root Hardware Mfa Enabled", "types": ["IAM"], "uid": "prowler-aws-iam_root_hardware_mfa_enabled-123456789012-ap-southeast-1-0482f212"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:ap-southeast-1:123456789012:resource-1467", "name": "resource-1467", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "ap-southeast-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1467", "type": "iam", "uid": "arn:aws:iam:ap-southeast-1:123456789012:resource-1467"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for iam_root_hardware_mfa_enabled", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_root_hardware_mfa_enabled", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.060399", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1468", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1468 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.060410", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-2-0166116a"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-southeast-2:123456789012:resource-1468", "name": "resource-1468", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-southeast-2"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1468", "type": "kms", "uid": "arn:aws:kms:ap-southeast-2:123456789012:resource-1468"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.060410", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_using_supported_runtimes for resource-1469", "metadata": {"event_code": "awslambda_function_using_supported_runtimes", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1469 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.060432", "desc": "Check awslambda_function_using_supported_runtimes for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Using Supported Runtimes", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_using_supported_runtimes-123456789012-ap-northeast-1-e2b4469a"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-northeast-1:123456789012:resource-1469", "name": "resource-1469", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-northeast-1"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1469", "type": "lambda", "uid": "arn:aws:lambda:ap-northeast-1:123456789012:resource-1469"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for awslambda_function_using_supported_runtimes", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_using_supported_runtimes", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.060432", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_storage_encrypted for resource-1470", "metadata": {"event_code": "rds_instance_storage_encrypted", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1470 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.060442", "desc": "Check rds_instance_storage_encrypted for rds", "product_uid": "prowler", "title": "RDS Rds Instance Storage Encrypted", "types": ["RDS"], "uid": "prowler-aws-rds_instance_storage_encrypted-123456789012-us-east-1-d2ed8946"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:us-east-1:123456789012:resource-1470", "name": "resource-1470", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "us-east-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1470", "type": "rds", "uid": "arn:aws:rds:us-east-1:123456789012:resource-1470"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for rds_instance_storage_encrypted", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_storage_encrypted", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.060442", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "REDSHIFT check redshift_cluster_audit_logging for resource-1471", "metadata": {"event_code": "redshift_cluster_audit_logging", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1471 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/redshift/", "categories": ["redshift"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.060453", "desc": "Check redshift_cluster_audit_logging for redshift", "product_uid": "prowler", "title": "REDSHIFT Redshift Cluster Audit Logging", "types": ["REDSHIFT"], "uid": "prowler-aws-redshift_cluster_audit_logging-123456789012-us-east-2-cb0e25c7"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:redshift:us-east-2:123456789012:resource-1471", "name": "resource-1471", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "redshift", "region": "us-east-2"}}, "group": {"name": "redshift"}, "labels": [], "name": "resource-1471", "type": "redshift", "uid": "arn:aws:redshift:us-east-2:123456789012:resource-1471"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for redshift_cluster_audit_logging", "references": ["https://docs.aws.amazon.com/redshift/"]}, "risk_details": "Risk details for redshift_cluster_audit_logging", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.060453", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "S3 check s3_bucket_versioning_enabled for resource-1472", "metadata": {"event_code": "s3_bucket_versioning_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1472 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/s3/", "categories": ["s3"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.060463", "desc": "Check s3_bucket_versioning_enabled for s3", "product_uid": "prowler", "title": "S3 S3 Bucket Versioning Enabled", "types": ["S3"], "uid": "prowler-aws-s3_bucket_versioning_enabled-123456789012-us-west-1-954a4642"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:s3:us-west-1:123456789012:resource-1472", "name": "resource-1472", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "s3", "region": "us-west-1"}}, "group": {"name": "s3"}, "labels": [], "name": "resource-1472", "type": "s3", "uid": "arn:aws:s3:us-west-1:123456789012:resource-1472"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for s3_bucket_versioning_enabled", "references": ["https://docs.aws.amazon.com/s3/"]}, "risk_details": "Risk details for s3_bucket_versioning_enabled", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.060463", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SECRETSMANAGER check secretsmanager_automatic_rotation_enabled for resource-1473", "metadata": {"event_code": "secretsmanager_automatic_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1473 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/secretsmanager/", "categories": ["secretsmanager"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.060471", "desc": "Check secretsmanager_automatic_rotation_enabled for secretsmanager", "product_uid": "prowler", "title": "SECRETSMANAGER Secretsmanager Automatic Rotation Enabled", "types": ["SECRETSMANAGER"], "uid": "prowler-aws-secretsmanager_automatic_rotation_enabled-123456789012-us-west-2-1b73e27e"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:secretsmanager:us-west-2:123456789012:resource-1473", "name": "resource-1473", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "secretsmanager", "region": "us-west-2"}}, "group": {"name": "secretsmanager"}, "labels": [], "name": "resource-1473", "type": "secretsmanager", "uid": "arn:aws:secretsmanager:us-west-2:123456789012:resource-1473"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for secretsmanager_automatic_rotation_enabled", "references": ["https://docs.aws.amazon.com/secretsmanager/"]}, "risk_details": "Risk details for secretsmanager_automatic_rotation_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.060471", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SNS check sns_topics_kms_encryption_at_rest_enabled for resource-1474", "metadata": {"event_code": "sns_topics_kms_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1474 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sns/", "categories": ["sns"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.060482", "desc": "Check sns_topics_kms_encryption_at_rest_enabled for sns", "product_uid": "prowler", "title": "SNS Sns Topics Kms Encryption At Rest Enabled", "types": ["SNS"], "uid": "prowler-aws-sns_topics_kms_encryption_at_rest_enabled-123456789012-eu-west-1-368d9416"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:sns:eu-west-1:123456789012:resource-1474", "name": "resource-1474", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sns", "region": "eu-west-1"}}, "group": {"name": "sns"}, "labels": [], "name": "resource-1474", "type": "sns", "uid": "arn:aws:sns:eu-west-1:123456789012:resource-1474"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for sns_topics_kms_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/sns/"]}, "risk_details": "Risk details for sns_topics_kms_encryption_at_rest_enabled", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.060482", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SQS check sqs_queues_server_side_encryption_enabled for resource-1475", "metadata": {"event_code": "sqs_queues_server_side_encryption_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1475 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/sqs/", "categories": ["sqs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.060492", "desc": "Check sqs_queues_server_side_encryption_enabled for sqs", "product_uid": "prowler", "title": "SQS Sqs Queues Server Side Encryption Enabled", "types": ["SQS"], "uid": "prowler-aws-sqs_queues_server_side_encryption_enabled-123456789012-eu-west-2-8f9fd89a"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:sqs:eu-west-2:123456789012:resource-1475", "name": "resource-1475", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "sqs", "region": "eu-west-2"}}, "group": {"name": "sqs"}, "labels": [], "name": "resource-1475", "type": "sqs", "uid": "arn:aws:sqs:eu-west-2:123456789012:resource-1475"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for sqs_queues_server_side_encryption_enabled", "references": ["https://docs.aws.amazon.com/sqs/"]}, "risk_details": "Risk details for sqs_queues_server_side_encryption_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.060492", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "SSM check ssm_managed_compliant_patching for resource-1476", "metadata": {"event_code": "ssm_managed_compliant_patching", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1476 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ssm/", "categories": ["ssm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.2"], "CIS-2.0": ["2.2"], "CIS-3.0": ["2.2"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767111469, "created_time_dt": "2025-12-30T11:17:49.060501", "desc": "Check ssm_managed_compliant_patching for ssm", "product_uid": "prowler", "title": "SSM Ssm Managed Compliant Patching", "types": ["SSM"], "uid": "prowler-aws-ssm_managed_compliant_patching-123456789012-eu-central-1-a8f2276a"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ssm:eu-central-1:123456789012:resource-1476", "name": "resource-1476", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ssm", "region": "eu-central-1"}}, "group": {"name": "ssm"}, "labels": [], "name": "resource-1476", "type": "ssm", "uid": "arn:aws:ssm:eu-central-1:123456789012:resource-1476"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for ssm_managed_compliant_patching", "references": ["https://docs.aws.amazon.com/ssm/"]}, "risk_details": "Risk details for ssm_managed_compliant_patching", "time": 1767111469, "time_dt": "2025-12-30T11:17:49.060501", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "VPC check vpc_flow_logs_enabled for resource-1477", "metadata": {"event_code": "vpc_flow_logs_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1477 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/vpc/", "categories": ["vpc"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767107869, "created_time_dt": "2025-12-30T10:17:49.060510", "desc": "Check vpc_flow_logs_enabled for vpc", "product_uid": "prowler", "title": "VPC Vpc Flow Logs Enabled", "types": ["VPC"], "uid": "prowler-aws-vpc_flow_logs_enabled-123456789012-ap-southeast-1-3f07e60d"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:vpc:ap-southeast-1:123456789012:resource-1477", "name": "resource-1477", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "vpc", "region": "ap-southeast-1"}}, "group": {"name": "vpc"}, "labels": [], "name": "resource-1477", "type": "vpc", "uid": "arn:aws:vpc:ap-southeast-1:123456789012:resource-1477"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for vpc_flow_logs_enabled", "references": ["https://docs.aws.amazon.com/vpc/"]}, "risk_details": "Risk details for vpc_flow_logs_enabled", "time": 1767107869, "time_dt": "2025-12-30T10:17:49.060510", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "WAF check wafv2_webacl_logging_enabled for resource-1478", "metadata": {"event_code": "wafv2_webacl_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1478 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/waf/", "categories": ["waf"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767104269, "created_time_dt": "2025-12-30T09:17:49.060519", "desc": "Check wafv2_webacl_logging_enabled for waf", "product_uid": "prowler", "title": "WAF Wafv2 Webacl Logging Enabled", "types": ["WAF"], "uid": "prowler-aws-wafv2_webacl_logging_enabled-123456789012-ap-southeast-2-bf7bb15e"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:waf:ap-southeast-2:123456789012:resource-1478", "name": "resource-1478", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "waf", "region": "ap-southeast-2"}}, "group": {"name": "waf"}, "labels": [], "name": "resource-1478", "type": "waf", "uid": "arn:aws:waf:ap-southeast-2:123456789012:resource-1478"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for wafv2_webacl_logging_enabled", "references": ["https://docs.aws.amazon.com/waf/"]}, "risk_details": "Risk details for wafv2_webacl_logging_enabled", "time": 1767104269, "time_dt": "2025-12-30T09:17:49.060519", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACCESSANALYZER check accessanalyzer_findings for resource-1479", "metadata": {"event_code": "accessanalyzer_findings", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1479 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/accessanalyzer/", "categories": ["accessanalyzer"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["5.1"], "CIS-2.0": ["5.1"], "CIS-3.0": ["5.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767100669, "created_time_dt": "2025-12-30T08:17:49.060529", "desc": "Check accessanalyzer_findings for accessanalyzer", "product_uid": "prowler", "title": "ACCESSANALYZER Accessanalyzer Findings", "types": ["ACCESSANALYZER"], "uid": "prowler-aws-accessanalyzer_findings-123456789012-ap-northeast-1-e101615d"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-1479", "name": "resource-1479", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "accessanalyzer", "region": "ap-northeast-1"}}, "group": {"name": "accessanalyzer"}, "labels": [], "name": "resource-1479", "type": "accessanalyzer", "uid": "arn:aws:accessanalyzer:ap-northeast-1:123456789012:resource-1479"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for accessanalyzer_findings", "references": ["https://docs.aws.amazon.com/accessanalyzer/"]}, "risk_details": "Risk details for accessanalyzer_findings", "time": 1767100669, "time_dt": "2025-12-30T08:17:49.060529", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ACM check acm_certificates_expiration_check for resource-1480", "metadata": {"event_code": "acm_certificates_expiration_check", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1480 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/acm/", "categories": ["acm"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767097069, "created_time_dt": "2025-12-30T07:17:49.060538", "desc": "Check acm_certificates_expiration_check for acm", "product_uid": "prowler", "title": "ACM Acm Certificates Expiration Check", "types": ["ACM"], "uid": "prowler-aws-acm_certificates_expiration_check-123456789012-us-east-1-de6f3dbc"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:acm:us-east-1:123456789012:resource-1480", "name": "resource-1480", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "acm", "region": "us-east-1"}}, "group": {"name": "acm"}, "labels": [], "name": "resource-1480", "type": "acm", "uid": "arn:aws:acm:us-east-1:123456789012:resource-1480"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for acm_certificates_expiration_check", "references": ["https://docs.aws.amazon.com/acm/"]}, "risk_details": "Risk details for acm_certificates_expiration_check", "time": 1767097069, "time_dt": "2025-12-30T07:17:49.060538", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "APIGATEWAY check apigateway_restapi_authorizers_enabled for resource-1481", "metadata": {"event_code": "apigateway_restapi_authorizers_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1481 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/apigateway/", "categories": ["apigateway"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767093469, "created_time_dt": "2025-12-30T06:17:49.060547", "desc": "Check apigateway_restapi_authorizers_enabled for apigateway", "product_uid": "prowler", "title": "APIGATEWAY Apigateway Restapi Authorizers Enabled", "types": ["APIGATEWAY"], "uid": "prowler-aws-apigateway_restapi_authorizers_enabled-123456789012-us-east-2-b836b7c0"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:apigateway:us-east-2:123456789012:resource-1481", "name": "resource-1481", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "apigateway", "region": "us-east-2"}}, "group": {"name": "apigateway"}, "labels": [], "name": "resource-1481", "type": "apigateway", "uid": "arn:aws:apigateway:us-east-2:123456789012:resource-1481"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for apigateway_restapi_authorizers_enabled", "references": ["https://docs.aws.amazon.com/apigateway/"]}, "risk_details": "Risk details for apigateway_restapi_authorizers_enabled", "time": 1767093469, "time_dt": "2025-12-30T06:17:49.060547", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDFRONT check cloudfront_distributions_https_enabled for resource-1482", "metadata": {"event_code": "cloudfront_distributions_https_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1482 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudfront/", "categories": ["cloudfront"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.3"], "CIS-2.0": ["1.3"], "CIS-3.0": ["1.3"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767089869, "created_time_dt": "2025-12-30T05:17:49.060557", "desc": "Check cloudfront_distributions_https_enabled for cloudfront", "product_uid": "prowler", "title": "CLOUDFRONT Cloudfront Distributions Https Enabled", "types": ["CLOUDFRONT"], "uid": "prowler-aws-cloudfront_distributions_https_enabled-123456789012-us-west-1-88ec9a44"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudfront:us-west-1:123456789012:resource-1482", "name": "resource-1482", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudfront", "region": "us-west-1"}}, "group": {"name": "cloudfront"}, "labels": [], "name": "resource-1482", "type": "cloudfront", "uid": "arn:aws:cloudfront:us-west-1:123456789012:resource-1482"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for cloudfront_distributions_https_enabled", "references": ["https://docs.aws.amazon.com/cloudfront/"]}, "risk_details": "Risk details for cloudfront_distributions_https_enabled", "time": 1767089869, "time_dt": "2025-12-30T05:17:49.060557", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDTRAIL check cloudtrail_log_file_validation_enabled for resource-1483", "metadata": {"event_code": "cloudtrail_log_file_validation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1483 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudtrail/", "categories": ["cloudtrail"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767086269, "created_time_dt": "2025-12-30T04:17:49.060568", "desc": "Check cloudtrail_log_file_validation_enabled for cloudtrail", "product_uid": "prowler", "title": "CLOUDTRAIL Cloudtrail Log File Validation Enabled", "types": ["CLOUDTRAIL"], "uid": "prowler-aws-cloudtrail_log_file_validation_enabled-123456789012-us-west-2-5939c0b9"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudtrail:us-west-2:123456789012:resource-1483", "name": "resource-1483", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudtrail", "region": "us-west-2"}}, "group": {"name": "cloudtrail"}, "labels": [], "name": "resource-1483", "type": "cloudtrail", "uid": "arn:aws:cloudtrail:us-west-2:123456789012:resource-1483"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for cloudtrail_log_file_validation_enabled", "references": ["https://docs.aws.amazon.com/cloudtrail/"]}, "risk_details": "Risk details for cloudtrail_log_file_validation_enabled", "time": 1767086269, "time_dt": "2025-12-30T04:17:49.060568", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CLOUDWATCH check cloudwatch_log_group_retention_policy_specific_days_enabled for resource-1484", "metadata": {"event_code": "cloudwatch_log_group_retention_policy_specific_days_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1484 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/cloudwatch/", "categories": ["cloudwatch"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767082669, "created_time_dt": "2025-12-30T03:17:49.060577", "desc": "Check cloudwatch_log_group_retention_policy_specific_days_enabled for cloudwatch", "product_uid": "prowler", "title": "CLOUDWATCH Cloudwatch Log Group Retention Policy Specific Days Enabled", "types": ["CLOUDWATCH"], "uid": "prowler-aws-cloudwatch_log_group_retention_policy_specific_days_enabled-123456789012-eu-west-1-739623d3"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:cloudwatch:eu-west-1:123456789012:resource-1484", "name": "resource-1484", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "cloudwatch", "region": "eu-west-1"}}, "group": {"name": "cloudwatch"}, "labels": [], "name": "resource-1484", "type": "cloudwatch", "uid": "arn:aws:cloudwatch:eu-west-1:123456789012:resource-1484"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for cloudwatch_log_group_retention_policy_specific_days_enabled", "references": ["https://docs.aws.amazon.com/cloudwatch/"]}, "risk_details": "Risk details for cloudwatch_log_group_retention_policy_specific_days_enabled", "time": 1767082669, "time_dt": "2025-12-30T03:17:49.060577", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "CONFIG check config_recorder_all_regions_enabled for resource-1485", "metadata": {"event_code": "config_recorder_all_regions_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1485 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/config/", "categories": ["config"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["3.1"], "CIS-2.0": ["3.1"], "CIS-3.0": ["3.1"], "PCI-DSS-3.2.1": ["1.2.1"], "SOC2": ["CC6.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767079069, "created_time_dt": "2025-12-30T02:17:49.060586", "desc": "Check config_recorder_all_regions_enabled for config", "product_uid": "prowler", "title": "CONFIG Config Recorder All Regions Enabled", "types": ["CONFIG"], "uid": "prowler-aws-config_recorder_all_regions_enabled-123456789012-eu-west-2-ecfb2627"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:config:eu-west-2:123456789012:resource-1485", "name": "resource-1485", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "config", "region": "eu-west-2"}}, "group": {"name": "config"}, "labels": [], "name": "resource-1485", "type": "config", "uid": "arn:aws:config:eu-west-2:123456789012:resource-1485"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for config_recorder_all_regions_enabled", "references": ["https://docs.aws.amazon.com/config/"]}, "risk_details": "Risk details for config_recorder_all_regions_enabled", "time": 1767079069, "time_dt": "2025-12-30T02:17:49.060586", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "DYNAMODB check dynamodb_tables_pitr_enabled for resource-1486", "metadata": {"event_code": "dynamodb_tables_pitr_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1486 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/dynamodb/", "categories": ["dynamodb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767075469, "created_time_dt": "2025-12-30T01:17:49.060596", "desc": "Check dynamodb_tables_pitr_enabled for dynamodb", "product_uid": "prowler", "title": "DYNAMODB Dynamodb Tables Pitr Enabled", "types": ["DYNAMODB"], "uid": "prowler-aws-dynamodb_tables_pitr_enabled-123456789012-eu-central-1-a6d5a524"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:dynamodb:eu-central-1:123456789012:resource-1486", "name": "resource-1486", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "dynamodb", "region": "eu-central-1"}}, "group": {"name": "dynamodb"}, "labels": [], "name": "resource-1486", "type": "dynamodb", "uid": "arn:aws:dynamodb:eu-central-1:123456789012:resource-1486"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for dynamodb_tables_pitr_enabled", "references": ["https://docs.aws.amazon.com/dynamodb/"]}, "risk_details": "Risk details for dynamodb_tables_pitr_enabled", "time": 1767075469, "time_dt": "2025-12-30T01:17:49.060596", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EC2 check ec2_securitygroup_default_restrict_traffic for resource-1487", "metadata": {"event_code": "ec2_securitygroup_default_restrict_traffic", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1487 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ec2/", "categories": ["ec2"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767071869, "created_time_dt": "2025-12-30T00:17:49.060605", "desc": "Check ec2_securitygroup_default_restrict_traffic for ec2", "product_uid": "prowler", "title": "EC2 Ec2 Securitygroup Default Restrict Traffic", "types": ["EC2"], "uid": "prowler-aws-ec2_securitygroup_default_restrict_traffic-123456789012-ap-southeast-1-003517bb"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ec2:ap-southeast-1:123456789012:resource-1487", "name": "resource-1487", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ec2", "region": "ap-southeast-1"}}, "group": {"name": "ec2"}, "labels": [], "name": "resource-1487", "type": "ec2", "uid": "arn:aws:ec2:ap-southeast-1:123456789012:resource-1487"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for ec2_securitygroup_default_restrict_traffic", "references": ["https://docs.aws.amazon.com/ec2/"]}, "risk_details": "Risk details for ec2_securitygroup_default_restrict_traffic", "time": 1767071869, "time_dt": "2025-12-30T00:17:49.060605", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECR check ecr_repositories_scan_images_on_push_enabled for resource-1488", "metadata": {"event_code": "ecr_repositories_scan_images_on_push_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1488 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecr/", "categories": ["ecr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.1"], "CIS-2.0": ["1.1"], "CIS-3.0": ["1.1"], "PCI-DSS-3.2.1": ["3.4"], "SOC2": ["CC7.1"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767154669, "created_time_dt": "2025-12-30T23:17:49.060614", "desc": "Check ecr_repositories_scan_images_on_push_enabled for ecr", "product_uid": "prowler", "title": "ECR Ecr Repositories Scan Images On Push Enabled", "types": ["ECR"], "uid": "prowler-aws-ecr_repositories_scan_images_on_push_enabled-123456789012-ap-southeast-2-fb5f7b40"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:ecr:ap-southeast-2:123456789012:resource-1488", "name": "resource-1488", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecr", "region": "ap-southeast-2"}}, "group": {"name": "ecr"}, "labels": [], "name": "resource-1488", "type": "ecr", "uid": "arn:aws:ecr:ap-southeast-2:123456789012:resource-1488"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for ecr_repositories_scan_images_on_push_enabled", "references": ["https://docs.aws.amazon.com/ecr/"]}, "risk_details": "Risk details for ecr_repositories_scan_images_on_push_enabled", "time": 1767154669, "time_dt": "2025-12-30T23:17:49.060614", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ECS check ecs_task_definitions_no_environment_secrets for resource-1489", "metadata": {"event_code": "ecs_task_definitions_no_environment_secrets", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1489 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/ecs/", "categories": ["ecs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767151069, "created_time_dt": "2025-12-30T22:17:49.060623", "desc": "Check ecs_task_definitions_no_environment_secrets for ecs", "product_uid": "prowler", "title": "ECS Ecs Task Definitions No Environment Secrets", "types": ["ECS"], "uid": "prowler-aws-ecs_task_definitions_no_environment_secrets-123456789012-ap-northeast-1-f5d76441"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:ecs:ap-northeast-1:123456789012:resource-1489", "name": "resource-1489", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "ecs", "region": "ap-northeast-1"}}, "group": {"name": "ecs"}, "labels": [], "name": "resource-1489", "type": "ecs", "uid": "arn:aws:ecs:ap-northeast-1:123456789012:resource-1489"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for ecs_task_definitions_no_environment_secrets", "references": ["https://docs.aws.amazon.com/ecs/"]}, "risk_details": "Risk details for ecs_task_definitions_no_environment_secrets", "time": 1767151069, "time_dt": "2025-12-30T22:17:49.060623", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EFS check efs_encryption_at_rest_enabled for resource-1490", "metadata": {"event_code": "efs_encryption_at_rest_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1490 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/efs/", "categories": ["efs"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767147469, "created_time_dt": "2025-12-30T21:17:49.060634", "desc": "Check efs_encryption_at_rest_enabled for efs", "product_uid": "prowler", "title": "EFS Efs Encryption At Rest Enabled", "types": ["EFS"], "uid": "prowler-aws-efs_encryption_at_rest_enabled-123456789012-us-east-1-e180df29"}, "resources": [{"cloud_partition": "aws", "region": "us-east-1", "data": {"details": "", "metadata": {"arn": "arn:aws:efs:us-east-1:123456789012:resource-1490", "name": "resource-1490", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "efs", "region": "us-east-1"}}, "group": {"name": "efs"}, "labels": [], "name": "resource-1490", "type": "efs", "uid": "arn:aws:efs:us-east-1:123456789012:resource-1490"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-1"}, "remediation": {"desc": "Remediation for efs_encryption_at_rest_enabled", "references": ["https://docs.aws.amazon.com/efs/"]}, "risk_details": "Risk details for efs_encryption_at_rest_enabled", "time": 1767147469, "time_dt": "2025-12-30T21:17:49.060634", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EKS check eks_endpoints_not_publicly_accessible for resource-1491", "metadata": {"event_code": "eks_endpoints_not_publicly_accessible", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1491 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/eks/", "categories": ["eks"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["2.1"], "CIS-2.0": ["2.1"], "CIS-3.0": ["2.1"], "PCI-DSS-3.2.1": ["1.3.1"], "SOC2": ["CC6.6"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AC-3"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767143869, "created_time_dt": "2025-12-30T20:17:49.060643", "desc": "Check eks_endpoints_not_publicly_accessible for eks", "product_uid": "prowler", "title": "EKS Eks Endpoints Not Publicly Accessible", "types": ["EKS"], "uid": "prowler-aws-eks_endpoints_not_publicly_accessible-123456789012-us-east-2-86bbe9fb"}, "resources": [{"cloud_partition": "aws", "region": "us-east-2", "data": {"details": "", "metadata": {"arn": "arn:aws:eks:us-east-2:123456789012:resource-1491", "name": "resource-1491", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "eks", "region": "us-east-2"}}, "group": {"name": "eks"}, "labels": [], "name": "resource-1491", "type": "eks", "uid": "arn:aws:eks:us-east-2:123456789012:resource-1491"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-east-2"}, "remediation": {"desc": "Remediation for eks_endpoints_not_publicly_accessible", "references": ["https://docs.aws.amazon.com/eks/"]}, "risk_details": "Risk details for eks_endpoints_not_publicly_accessible", "time": 1767143869, "time_dt": "2025-12-30T20:17:49.060643", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELASTICACHE check elasticache_redis_cluster_automatic_backup_enabled for resource-1492", "metadata": {"event_code": "elasticache_redis_cluster_automatic_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1492 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elasticache/", "categories": ["elasticache"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767140269, "created_time_dt": "2025-12-30T19:17:49.060652", "desc": "Check elasticache_redis_cluster_automatic_backup_enabled for elasticache", "product_uid": "prowler", "title": "ELASTICACHE Elasticache Redis Cluster Automatic Backup Enabled", "types": ["ELASTICACHE"], "uid": "prowler-aws-elasticache_redis_cluster_automatic_backup_enabled-123456789012-us-west-1-30cf0925"}, "resources": [{"cloud_partition": "aws", "region": "us-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:elasticache:us-west-1:123456789012:resource-1492", "name": "resource-1492", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elasticache", "region": "us-west-1"}}, "group": {"name": "elasticache"}, "labels": [], "name": "resource-1492", "type": "elasticache", "uid": "arn:aws:elasticache:us-west-1:123456789012:resource-1492"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-1"}, "remediation": {"desc": "Remediation for elasticache_redis_cluster_automatic_backup_enabled", "references": ["https://docs.aws.amazon.com/elasticache/"]}, "risk_details": "Risk details for elasticache_redis_cluster_automatic_backup_enabled", "time": 1767140269, "time_dt": "2025-12-30T19:17:49.060652", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "ELB check elbv2_logging_enabled for resource-1493", "metadata": {"event_code": "elbv2_logging_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1493 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/elb/", "categories": ["elb"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767136669, "created_time_dt": "2025-12-30T18:17:49.060677", "desc": "Check elbv2_logging_enabled for elb", "product_uid": "prowler", "title": "ELB Elbv2 Logging Enabled", "types": ["ELB"], "uid": "prowler-aws-elbv2_logging_enabled-123456789012-us-west-2-82f1bb84"}, "resources": [{"cloud_partition": "aws", "region": "us-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:elb:us-west-2:123456789012:resource-1493", "name": "resource-1493", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "elb", "region": "us-west-2"}}, "group": {"name": "elb"}, "labels": [], "name": "resource-1493", "type": "elb", "uid": "arn:aws:elb:us-west-2:123456789012:resource-1493"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "us-west-2"}, "remediation": {"desc": "Remediation for elbv2_logging_enabled", "references": ["https://docs.aws.amazon.com/elb/"]}, "risk_details": "Risk details for elbv2_logging_enabled", "time": 1767136669, "time_dt": "2025-12-30T18:17:49.060677", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "EMR check emr_cluster_master_nodes_no_public_ip for resource-1494", "metadata": {"event_code": "emr_cluster_master_nodes_no_public_ip", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1494 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/emr/", "categories": ["emr"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["4.1"], "CIS-2.0": ["4.1"], "CIS-3.0": ["4.1"], "PCI-DSS-3.2.1": ["8.2.1"], "SOC2": ["CC7.2"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["CM-6"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767133069, "created_time_dt": "2025-12-30T17:17:49.060686", "desc": "Check emr_cluster_master_nodes_no_public_ip for emr", "product_uid": "prowler", "title": "EMR Emr Cluster Master Nodes No Public Ip", "types": ["EMR"], "uid": "prowler-aws-emr_cluster_master_nodes_no_public_ip-123456789012-eu-west-1-bd815361"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-1", "data": {"details": "", "metadata": {"arn": "arn:aws:emr:eu-west-1:123456789012:resource-1494", "name": "resource-1494", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "emr", "region": "eu-west-1"}}, "group": {"name": "emr"}, "labels": [], "name": "resource-1494", "type": "emr", "uid": "arn:aws:emr:eu-west-1:123456789012:resource-1494"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-1"}, "remediation": {"desc": "Remediation for emr_cluster_master_nodes_no_public_ip", "references": ["https://docs.aws.amazon.com/emr/"]}, "risk_details": "Risk details for emr_cluster_master_nodes_no_public_ip", "time": 1767133069, "time_dt": "2025-12-30T17:17:49.060686", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "GUARDDUTY check guardduty_is_enabled for resource-1495", "metadata": {"event_code": "guardduty_is_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 1, "severity": "Critical", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1495 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/guardduty/", "categories": ["guardduty"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767129469, "created_time_dt": "2025-12-30T16:17:49.060695", "desc": "Check guardduty_is_enabled for guardduty", "product_uid": "prowler", "title": "GUARDDUTY Guardduty Is Enabled", "types": ["GUARDDUTY"], "uid": "prowler-aws-guardduty_is_enabled-123456789012-eu-west-2-3eb18f7c"}, "resources": [{"cloud_partition": "aws", "region": "eu-west-2", "data": {"details": "", "metadata": {"arn": "arn:aws:guardduty:eu-west-2:123456789012:resource-1495", "name": "resource-1495", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "guardduty", "region": "eu-west-2"}}, "group": {"name": "guardduty"}, "labels": [], "name": "resource-1495", "type": "guardduty", "uid": "arn:aws:guardduty:eu-west-2:123456789012:resource-1495"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-west-2"}, "remediation": {"desc": "Remediation for guardduty_is_enabled", "references": ["https://docs.aws.amazon.com/guardduty/"]}, "risk_details": "Risk details for guardduty_is_enabled", "time": 1767129469, "time_dt": "2025-12-30T16:17:49.060695", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "IAM check iam_password_policy_minimum_length_14 for resource-1496", "metadata": {"event_code": "iam_password_policy_minimum_length_14", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 2, "severity": "High", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1496 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/iam/", "categories": ["iam"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767125869, "created_time_dt": "2025-12-30T15:17:49.060705", "desc": "Check iam_password_policy_minimum_length_14 for iam", "product_uid": "prowler", "title": "IAM Iam Password Policy Minimum Length 14", "types": ["IAM"], "uid": "prowler-aws-iam_password_policy_minimum_length_14-123456789012-eu-central-1-8d889eff"}, "resources": [{"cloud_partition": "aws", "region": "eu-central-1", "data": {"details": "", "metadata": {"arn": "arn:aws:iam:eu-central-1:123456789012:resource-1496", "name": "resource-1496", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "iam", "region": "eu-central-1"}}, "group": {"name": "iam"}, "labels": [], "name": "resource-1496", "type": "iam", "uid": "arn:aws:iam:eu-central-1:123456789012:resource-1496"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "eu-central-1"}, "remediation": {"desc": "Remediation for iam_password_policy_minimum_length_14", "references": ["https://docs.aws.amazon.com/iam/"]}, "risk_details": "Risk details for iam_password_policy_minimum_length_14", "time": 1767125869, "time_dt": "2025-12-30T15:17:49.060705", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "KMS check kms_cmk_rotation_enabled for resource-1497", "metadata": {"event_code": "kms_cmk_rotation_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 3, "severity": "Medium", "status": "New", "status_code": "PASS", "status_detail": "Resource resource-1497 check result: PASS", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/kms/", "categories": ["kms"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {"CIS-1.4": ["1.2"], "CIS-2.0": ["1.2"], "CIS-3.0": ["1.2"], "PCI-DSS-3.2.1": ["2.2.1"], "SOC2": ["CC6.7"], "HIPAA": ["164.312(a)(1)"], "NIST-800-53": ["AU-2"]}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767122269, "created_time_dt": "2025-12-30T14:17:49.060714", "desc": "Check kms_cmk_rotation_enabled for kms", "product_uid": "prowler", "title": "KMS Kms Cmk Rotation Enabled", "types": ["KMS"], "uid": "prowler-aws-kms_cmk_rotation_enabled-123456789012-ap-southeast-1-64258788"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:kms:ap-southeast-1:123456789012:resource-1497", "name": "resource-1497", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "kms", "region": "ap-southeast-1"}}, "group": {"name": "kms"}, "labels": [], "name": "resource-1497", "type": "kms", "uid": "arn:aws:kms:ap-southeast-1:123456789012:resource-1497"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-1"}, "remediation": {"desc": "Remediation for kms_cmk_rotation_enabled", "references": ["https://docs.aws.amazon.com/kms/"]}, "risk_details": "Risk details for kms_cmk_rotation_enabled", "time": 1767122269, "time_dt": "2025-12-30T14:17:49.060714", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "LAMBDA check awslambda_function_url_public for resource-1498", "metadata": {"event_code": "awslambda_function_url_public", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 4, "severity": "Low", "status": "New", "status_code": "FAIL", "status_detail": "Resource resource-1498 check result: FAIL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/lambda/", "categories": ["lambda"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767118669, "created_time_dt": "2025-12-30T13:17:49.060725", "desc": "Check awslambda_function_url_public for lambda", "product_uid": "prowler", "title": "LAMBDA Awslambda Function Url Public", "types": ["LAMBDA"], "uid": "prowler-aws-awslambda_function_url_public-123456789012-ap-southeast-2-09ae59d0"}, "resources": [{"cloud_partition": "aws", "region": "ap-southeast-2", "data": {"details": "", "metadata": {"arn": "arn:aws:lambda:ap-southeast-2:123456789012:resource-1498", "name": "resource-1498", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "lambda", "region": "ap-southeast-2"}}, "group": {"name": "lambda"}, "labels": [], "name": "resource-1498", "type": "lambda", "uid": "arn:aws:lambda:ap-southeast-2:123456789012:resource-1498"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-southeast-2"}, "remediation": {"desc": "Remediation for awslambda_function_url_public", "references": ["https://docs.aws.amazon.com/lambda/"]}, "risk_details": "Risk details for awslambda_function_url_public", "time": 1767118669, "time_dt": "2025-12-30T13:17:49.060725", "type_uid": 200401, "type_name": "Detection Finding: Create"}, {"message": "RDS check rds_instance_backup_enabled for resource-1499", "metadata": {"event_code": "rds_instance_backup_enabled", "product": {"name": "Prowler", "uid": "prowler", "vendor_name": "Prowler", "version": "5.0.0"}, "profiles": ["cloud", "datetime"], "tenant_uid": "", "version": "1.4.0"}, "severity_id": 5, "severity": "Informational", "status": "New", "status_code": "MANUAL", "status_detail": "Resource resource-1499 check result: MANUAL", "status_id": 1, "unmapped": {"related_url": "https://docs.aws.amazon.com/rds/", "categories": ["rds"], "depends_on": [], "related_to": [], "additional_urls": [], "notes": "", "compliance": {}}, "activity_name": "Create", "activity_id": 1, "finding_info": {"created_time": 1767115069, "created_time_dt": "2025-12-30T12:17:49.060733", "desc": "Check rds_instance_backup_enabled for rds", "product_uid": "prowler", "title": "RDS Rds Instance Backup Enabled", "types": ["RDS"], "uid": "prowler-aws-rds_instance_backup_enabled-123456789012-ap-northeast-1-cccb9fea"}, "resources": [{"cloud_partition": "aws", "region": "ap-northeast-1", "data": {"details": "", "metadata": {"arn": "arn:aws:rds:ap-northeast-1:123456789012:resource-1499", "name": "resource-1499", "status": "AVAILABLE", "findings": [], "tags": [{"Key": "Environment", "Value": "Test"}], "type": "rds", "region": "ap-northeast-1"}}, "group": {"name": "rds"}, "labels": [], "name": "resource-1499", "type": "rds", "uid": "arn:aws:rds:ap-northeast-1:123456789012:resource-1499"}], "category_name": "Findings", "category_uid": 2, "class_name": "Detection Finding", "class_uid": 2004, "cloud": {"account": {"name": "Test AWS Account", "type": "AWS Account", "type_id": 10, "uid": "123456789012", "labels": []}, "org": {"name": "", "uid": ""}, "provider": "aws", "region": "ap-northeast-1"}, "remediation": {"desc": "Remediation for rds_instance_backup_enabled", "references": ["https://docs.aws.amazon.com/rds/"]}, "risk_details": "Risk details for rds_instance_backup_enabled", "time": 1767115069, "time_dt": "2025-12-30T12:17:49.060733", "type_uid": 200401, "type_name": "Detection Finding: Create"}] \ No newline at end of file diff --git a/api/tests/manual/test_scan_import_error_scenarios.py b/api/tests/manual/test_scan_import_error_scenarios.py new file mode 100644 index 0000000000..643a044160 --- /dev/null +++ b/api/tests/manual/test_scan_import_error_scenarios.py @@ -0,0 +1,1007 @@ +#!/usr/bin/env python3 +""" +Manual test script for testing scan import error scenarios. + +This module provides comprehensive error scenario testing for the scan import +functionality. It validates that the OCSF and CSV parsers correctly handle +various error conditions including invalid files, missing fields, and +malformed data. + +Module Overview +--------------- +The test suite covers three main categories of error scenarios: + +1. **JSON/OCSF Parser Errors**: Invalid JSON syntax, missing required fields, + unsupported provider types, and malformed OCSF structures. + +2. **CSV Parser Errors**: Missing required columns, empty field values, + and malformed CSV content. + +3. **Format Detection Errors**: Binary files, XML content, and plain text + that should be rejected by both parsers. + +Usage +----- +Run directly from the repository root:: + + python api/tests/manual/test_scan_import_error_scenarios.py + +Or with poetry:: + + poetry run python api/tests/manual/test_scan_import_error_scenarios.py + +Prerequisites +------------- +- Python 3.10+ +- api/src/backend in PYTHONPATH (handled automatically by the script) + +Test Categories +--------------- +JSON/OCSF Parser Tests: + - ``test_invalid_json_format``: Validates rejection of unparseable JSON + - ``test_non_array_json``: Validates rejection of non-array JSON root + - ``test_json_with_non_object_elements``: Validates array element types + - ``test_ocsf_missing_metadata_event_code``: Required field validation + - ``test_ocsf_missing_finding_uid``: Required field validation + - ``test_ocsf_missing_cloud_provider``: Required field validation + - ``test_ocsf_missing_account_uid``: Required field validation + - ``test_ocsf_all_invalid_findings``: Bulk validation failure + - ``test_invalid_utf8``: Encoding validation + +CSV Parser Tests: + - ``test_csv_missing_finding_uid_column``: Required column validation + - ``test_csv_missing_provider_column``: Required column validation + - ``test_csv_missing_multiple_columns``: Multiple missing columns + - ``test_csv_empty_finding_uid_value``: Empty value validation + - ``test_csv_empty_check_id_value``: Empty value validation + +Structure Validation Tests: + - ``test_ocsf_structure_validation_invalid_json``: Lightweight validation + - ``test_ocsf_structure_validation_non_array``: Structure checks + - ``test_csv_structure_validation_missing_columns``: Column validation + +Content Validation Tests: + - ``test_ocsf_content_validation``: Comprehensive OCSF validation + - ``test_csv_content_validation``: Comprehensive CSV validation + +Format Detection Tests: + - ``test_format_detection_binary``: Binary file rejection + - ``test_format_detection_xml``: XML content rejection + - ``test_format_detection_plain_text``: Plain text rejection + +Exit Codes +---------- +- 0: All tests passed +- 1: One or more tests failed + +See Also +-------- +- ``api.parsers.ocsf_parser``: OCSF parser implementation +- ``api.parsers.csv_parser``: CSV parser implementation +- ``test_scan_import_real_json.py``: Tests with valid JSON data +- ``test_scan_import_real_csv.py``: Tests with valid CSV data + +Examples +-------- +Running the test suite:: + + $ python api/tests/manual/test_scan_import_error_scenarios.py + ====================================================================== + Manual Test: Scan Import Error Scenarios + ====================================================================== + + [Test] Invalid JSON format + ✓ PASSED: Invalid JSON correctly rejected: Invalid JSON: ... + + ... + + ====================================================================== + Test Results: 22 passed, 0 failed + ====================================================================== + + ✓ All error scenario tests passed! +""" + +import json +import sys +from pathlib import Path +from uuid import uuid4 + +# Add the API backend to the path for imports +PROJECT_ROOT = Path(__file__).parent.parent.parent +API_BACKEND = PROJECT_ROOT / "src" / "backend" +sys.path.insert(0, str(API_BACKEND)) + + +# ============================================================================ +# Test Data Generators for Error Scenarios +# ============================================================================ + + +def create_invalid_json_content() -> bytes: + """ + Create invalid JSON content that cannot be parsed. + + Returns: + bytes: Malformed JSON content with syntax errors. + + Example: + >>> content = create_invalid_json_content() + >>> import json + >>> json.loads(content) # Raises JSONDecodeError + Traceback (most recent call last): + ... + json.decoder.JSONDecodeError: ... + """ + return b"{ this is not valid json }" + + +def create_non_array_json_content() -> bytes: + """ + Create JSON content that is an object instead of an array. + + OCSF format requires the root element to be a JSON array of findings. + This function creates valid JSON that violates that requirement. + + Returns: + bytes: Valid JSON containing an object (not an array). + + Example: + >>> content = create_non_array_json_content() + >>> import json + >>> data = json.loads(content) + >>> isinstance(data, list) + False + """ + return json.dumps({"message": "This is an object, not an array"}).encode("utf-8") + + +def create_json_with_non_object_elements() -> bytes: + """ + Create JSON array containing non-object elements. + + OCSF format requires each array element to be a JSON object + representing a finding. This function creates an array with + primitive values instead. + + Returns: + bytes: JSON array containing strings, numbers, and booleans. + + Example: + >>> content = create_json_with_non_object_elements() + >>> import json + >>> data = json.loads(content) + >>> all(isinstance(item, dict) for item in data) + False + """ + return json.dumps(["string1", "string2", 123, True]).encode("utf-8") + + +def create_ocsf_missing_metadata_event_code() -> bytes: + """ + Create OCSF JSON with missing ``metadata.event_code`` field. + + The ``metadata.event_code`` field is required and contains the + check ID that identifies the security check performed. + + Returns: + bytes: OCSF JSON with empty metadata object. + + Note: + The parser should either skip this finding or raise an error + depending on the validation mode. + """ + data = [ + { + "message": "Test finding", + "metadata": {}, # Missing event_code + "severity": "Low", + "status_code": "FAIL", + "finding_info": {"uid": f"finding-{uuid4()}", "title": "Test"}, + "cloud": {"provider": "aws", "account": {"uid": "123456789012"}}, + "resources": [{"uid": f"resource-{uuid4()}", "name": "test"}], + } + ] + return json.dumps(data).encode("utf-8") + + +def create_ocsf_missing_finding_uid() -> bytes: + """ + Create OCSF JSON with missing ``finding_info.uid`` field. + + The ``finding_info.uid`` field is required and provides a unique + identifier for each finding. + + Returns: + bytes: OCSF JSON with finding_info missing the uid field. + """ + data = [ + { + "message": "Test finding", + "metadata": {"event_code": "test_check"}, + "severity": "Low", + "status_code": "FAIL", + "finding_info": {"title": "Test"}, # Missing uid + "cloud": {"provider": "aws", "account": {"uid": "123456789012"}}, + "resources": [{"uid": f"resource-{uuid4()}", "name": "test"}], + } + ] + return json.dumps(data).encode("utf-8") + + +def create_ocsf_missing_cloud_provider() -> bytes: + """ + Create OCSF JSON with missing ``cloud.provider`` field. + + The ``cloud.provider`` field is required and identifies the cloud + platform (aws, azure, gcp, etc.) where the finding was detected. + + Returns: + bytes: OCSF JSON with cloud object missing the provider field. + """ + data = [ + { + "message": "Test finding", + "metadata": {"event_code": "test_check"}, + "severity": "Low", + "status_code": "FAIL", + "finding_info": {"uid": f"finding-{uuid4()}", "title": "Test"}, + "cloud": {"account": {"uid": "123456789012"}}, # Missing provider + "resources": [{"uid": f"resource-{uuid4()}", "name": "test"}], + } + ] + return json.dumps(data).encode("utf-8") + + +def create_ocsf_missing_account_uid() -> bytes: + """ + Create OCSF JSON with missing ``cloud.account.uid`` field. + + The ``cloud.account.uid`` field is required and identifies the + cloud account where the finding was detected. + + Returns: + bytes: OCSF JSON with cloud.account missing the uid field. + """ + data = [ + { + "message": "Test finding", + "metadata": {"event_code": "test_check"}, + "severity": "Low", + "status_code": "FAIL", + "finding_info": {"uid": f"finding-{uuid4()}", "title": "Test"}, + "cloud": {"provider": "aws", "account": {}}, # Missing uid + "resources": [{"uid": f"resource-{uuid4()}", "name": "test"}], + } + ] + return json.dumps(data).encode("utf-8") + + +def create_ocsf_unsupported_provider() -> bytes: + """ + Create OCSF JSON with an unsupported provider type. + + Supported providers are: aws, azure, gcp, kubernetes, github, m365, + alibabacloud, nhn, oraclecloud, mongodbatlas. + + Returns: + bytes: OCSF JSON with an invalid provider type. + + Note: + The parser may log a warning but should not fail for unknown + providers to allow forward compatibility. + """ + data = [ + { + "message": "Test finding", + "metadata": {"event_code": "test_check"}, + "severity": "Low", + "status_code": "FAIL", + "finding_info": {"uid": f"finding-{uuid4()}", "title": "Test"}, + "cloud": { + "provider": "unsupported_cloud", + "account": {"uid": "123456789012"}, + }, + "resources": [{"uid": f"resource-{uuid4()}", "name": "test"}], + } + ] + return json.dumps(data).encode("utf-8") + + +def create_ocsf_empty_array() -> bytes: + """ + Create OCSF JSON with an empty array. + + An empty array is technically valid JSON but contains no findings + to import. + + Returns: + bytes: Empty JSON array. + """ + return b"[]" + + +def create_ocsf_all_invalid_findings() -> bytes: + """ + Create OCSF JSON where all findings are invalid. + + When all findings fail validation, the parser should raise an error + rather than returning an empty list. + + Returns: + bytes: OCSF JSON with multiple invalid findings. + """ + data = [ + {"message": "Invalid 1"}, # Missing all required fields + {"message": "Invalid 2"}, # Missing all required fields + ] + return json.dumps(data).encode("utf-8") + + +def create_csv_missing_finding_uid_column() -> bytes: + """ + Create CSV content missing the required FINDING_UID column. + + Required CSV columns are: FINDING_UID, PROVIDER, CHECK_ID, STATUS, + ACCOUNT_UID. + + Returns: + bytes: CSV content without FINDING_UID column. + """ + csv = """PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +aws;check_1;PASS;123456789012;resource-1""" + return csv.encode("utf-8") + + +def create_csv_missing_provider_column() -> bytes: + """ + Create CSV content missing the required PROVIDER column. + + Returns: + bytes: CSV content without PROVIDER column. + """ + csv = """FINDING_UID;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +finding-001;check_1;PASS;123456789012;resource-1""" + return csv.encode("utf-8") + + +def create_csv_missing_multiple_columns() -> bytes: + """ + Create CSV content missing multiple required columns. + + This tests that the parser reports all missing columns, not just + the first one found. + + Returns: + bytes: CSV content with only RESOURCE_UID and REGION columns. + """ + csv = """RESOURCE_UID;REGION +resource-1;us-east-1""" + return csv.encode("utf-8") + + +def create_csv_empty_finding_uid_value() -> bytes: + """ + Create CSV content with an empty FINDING_UID value. + + Even when the column exists, empty values for required fields + should be rejected. + + Returns: + bytes: CSV content with empty FINDING_UID in data row. + """ + csv = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +;aws;check_1;PASS;123456789012;resource-1""" + return csv.encode("utf-8") + + +def create_csv_empty_check_id_value() -> bytes: + """ + Create CSV content with an empty CHECK_ID value. + + Returns: + bytes: CSV content with empty CHECK_ID in data row. + """ + csv = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID +finding-001;aws;;PASS;123456789012;resource-1""" + return csv.encode("utf-8") + + +def create_csv_whitespace_only_value() -> bytes: + """ + Create CSV content with whitespace-only required value. + + Whitespace-only values should be treated as empty after stripping. + + Returns: + bytes: CSV content with whitespace-only FINDING_UID. + """ + csv = """FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;RESOURCE_UID + ;aws;check_1;PASS;123456789012;resource-1""" + return csv.encode("utf-8") + + +def create_binary_content() -> bytes: + """ + Create binary content (PNG file header). + + Binary files should be rejected by both JSON and CSV parsers. + + Returns: + bytes: PNG file magic bytes. + """ + return bytes([0x89, 0x50, 0x4E, 0x47, 0x0D, 0x0A, 0x1A, 0x0A]) + + +def create_xml_content() -> bytes: + """ + Create XML content. + + XML is not a supported format and should be rejected. + + Returns: + bytes: Valid XML document. + """ + return b""" + + + test_check + PASS + +""" + + +def create_plain_text_content() -> bytes: + """ + Create plain text content. + + Plain text is not a supported format and should be rejected. + + Returns: + bytes: Plain text string. + """ + return b"This is just plain text, not JSON or CSV format." + + +def create_invalid_utf8_content() -> bytes: + """ + Create invalid UTF-8 content. + + Invalid byte sequences should cause a decode error. + + Returns: + bytes: Invalid UTF-8 byte sequence (BOM without valid continuation). + """ + return b"\xff\xfe" + + +# ============================================================================ +# Test Functions +# ============================================================================ + + +def test_invalid_json_format(): + """Test that invalid JSON raises appropriate error.""" + from api.parsers.ocsf_parser import parse_ocsf_json, OCSFParseError + + content = create_invalid_json_content() + + try: + parse_ocsf_json(content) + print("✗ FAILED: Expected OCSFParseError for invalid JSON") + return False + except OCSFParseError as e: + print(f"✓ PASSED: Invalid JSON correctly rejected: {e}") + return True + except Exception as e: + print(f"✗ FAILED: Unexpected error type: {type(e).__name__}: {e}") + return False + + +def test_non_array_json(): + """Test that non-array JSON raises appropriate error.""" + from api.parsers.ocsf_parser import parse_ocsf_json, OCSFParseError + + content = create_non_array_json_content() + + try: + parse_ocsf_json(content) + print("✗ FAILED: Expected OCSFParseError for non-array JSON") + return False + except OCSFParseError as e: + print(f"✓ PASSED: Non-array JSON correctly rejected: {e}") + return True + except Exception as e: + print(f"✗ FAILED: Unexpected error type: {type(e).__name__}: {e}") + return False + + +def test_json_with_non_object_elements(): + """Test that JSON array with non-object elements raises error.""" + from api.parsers.ocsf_parser import parse_ocsf_json, OCSFParseError + + content = create_json_with_non_object_elements() + + try: + parse_ocsf_json(content) + print("✗ FAILED: Expected OCSFParseError for non-object elements") + return False + except OCSFParseError as e: + print(f"✓ PASSED: Non-object elements correctly rejected: {e}") + return True + except Exception as e: + print(f"✗ FAILED: Unexpected error type: {type(e).__name__}: {e}") + return False + + +def test_ocsf_missing_metadata_event_code(): + """Test that missing metadata.event_code raises error.""" + from api.parsers.ocsf_parser import parse_ocsf_json, OCSFParseError + + content = create_ocsf_missing_metadata_event_code() + + try: + findings = parse_ocsf_json(content) + if len(findings) == 0: + print("✓ PASSED: Missing metadata.event_code - no valid findings parsed") + return True + print(f"✗ FAILED: Expected no findings, got {len(findings)}") + return False + except OCSFParseError as e: + print(f"✓ PASSED: Missing metadata.event_code correctly rejected: {e}") + return True + except Exception as e: + print(f"✗ FAILED: Unexpected error type: {type(e).__name__}: {e}") + return False + + +def test_ocsf_missing_finding_uid(): + """Test that missing finding_info.uid raises error.""" + from api.parsers.ocsf_parser import parse_ocsf_json, OCSFParseError + + content = create_ocsf_missing_finding_uid() + + try: + findings = parse_ocsf_json(content) + if len(findings) == 0: + print("✓ PASSED: Missing finding_info.uid - no valid findings parsed") + return True + print(f"✗ FAILED: Expected no findings, got {len(findings)}") + return False + except OCSFParseError as e: + print(f"✓ PASSED: Missing finding_info.uid correctly rejected: {e}") + return True + except Exception as e: + print(f"✗ FAILED: Unexpected error type: {type(e).__name__}: {e}") + return False + + +def test_ocsf_missing_cloud_provider(): + """Test that missing cloud.provider raises error.""" + from api.parsers.ocsf_parser import parse_ocsf_json, OCSFParseError + + content = create_ocsf_missing_cloud_provider() + + try: + findings = parse_ocsf_json(content) + if len(findings) == 0: + print("✓ PASSED: Missing cloud.provider - no valid findings parsed") + return True + print(f"✗ FAILED: Expected no findings, got {len(findings)}") + return False + except OCSFParseError as e: + print(f"✓ PASSED: Missing cloud.provider correctly rejected: {e}") + return True + except Exception as e: + print(f"✗ FAILED: Unexpected error type: {type(e).__name__}: {e}") + return False + + +def test_ocsf_missing_account_uid(): + """Test that missing cloud.account.uid raises error.""" + from api.parsers.ocsf_parser import parse_ocsf_json, OCSFParseError + + content = create_ocsf_missing_account_uid() + + try: + findings = parse_ocsf_json(content) + if len(findings) == 0: + print("✓ PASSED: Missing cloud.account.uid - no valid findings parsed") + return True + print(f"✗ FAILED: Expected no findings, got {len(findings)}") + return False + except OCSFParseError as e: + print(f"✓ PASSED: Missing cloud.account.uid correctly rejected: {e}") + return True + except Exception as e: + print(f"✗ FAILED: Unexpected error type: {type(e).__name__}: {e}") + return False + + +def test_ocsf_all_invalid_findings(): + """Test that all invalid findings raises error.""" + from api.parsers.ocsf_parser import parse_ocsf_json, OCSFParseError + + content = create_ocsf_all_invalid_findings() + + try: + parse_ocsf_json(content) + print("✗ FAILED: Expected OCSFParseError for all invalid findings") + return False + except OCSFParseError as e: + print(f"✓ PASSED: All invalid findings correctly rejected: {e}") + return True + except Exception as e: + print(f"✗ FAILED: Unexpected error type: {type(e).__name__}: {e}") + return False + + +def test_invalid_utf8(): + """Test that invalid UTF-8 raises error.""" + from api.parsers.ocsf_parser import parse_ocsf_json, OCSFParseError + + content = create_invalid_utf8_content() + + try: + parse_ocsf_json(content) + print("✗ FAILED: Expected OCSFParseError for invalid UTF-8") + return False + except OCSFParseError as e: + print(f"✓ PASSED: Invalid UTF-8 correctly rejected: {e}") + return True + except Exception as e: + print(f"✗ FAILED: Unexpected error type: {type(e).__name__}: {e}") + return False + + +def test_csv_missing_finding_uid_column(): + """Test that CSV missing FINDING_UID column raises error.""" + from api.parsers.csv_parser import parse_csv, CSVParseError + + content = create_csv_missing_finding_uid_column() + + try: + parse_csv(content) + print("✗ FAILED: Expected CSVParseError for missing FINDING_UID column") + return False + except CSVParseError as e: + if "FINDING_UID" in str(e): + print(f"✓ PASSED: Missing FINDING_UID column correctly rejected: {e}") + return True + print(f"✗ FAILED: Error doesn't mention FINDING_UID: {e}") + return False + except Exception as e: + print(f"✗ FAILED: Unexpected error type: {type(e).__name__}: {e}") + return False + + +def test_csv_missing_provider_column(): + """Test that CSV missing PROVIDER column raises error.""" + from api.parsers.csv_parser import parse_csv, CSVParseError + + content = create_csv_missing_provider_column() + + try: + parse_csv(content) + print("✗ FAILED: Expected CSVParseError for missing PROVIDER column") + return False + except CSVParseError as e: + if "PROVIDER" in str(e): + print(f"✓ PASSED: Missing PROVIDER column correctly rejected: {e}") + return True + print(f"✗ FAILED: Error doesn't mention PROVIDER: {e}") + return False + except Exception as e: + print(f"✗ FAILED: Unexpected error type: {type(e).__name__}: {e}") + return False + + +def test_csv_missing_multiple_columns(): + """Test that CSV missing multiple columns reports all.""" + from api.parsers.csv_parser import parse_csv, CSVParseError + + content = create_csv_missing_multiple_columns() + + try: + parse_csv(content) + print("✗ FAILED: Expected CSVParseError for missing columns") + return False + except CSVParseError as e: + error_msg = str(e) + missing_cols = ["FINDING_UID", "PROVIDER", "CHECK_ID", "STATUS", "ACCOUNT_UID"] + found_cols = [col for col in missing_cols if col in error_msg] + if len(found_cols) >= 3: # At least 3 missing columns mentioned + print(f"✓ PASSED: Multiple missing columns correctly reported: {e}") + return True + print(f"✗ FAILED: Not all missing columns reported: {e}") + return False + except Exception as e: + print(f"✗ FAILED: Unexpected error type: {type(e).__name__}: {e}") + return False + + +def test_csv_empty_finding_uid_value(): + """Test that CSV with empty FINDING_UID value raises error.""" + from api.parsers.csv_parser import parse_csv, CSVParseError + + content = create_csv_empty_finding_uid_value() + + try: + parse_csv(content) + print("✗ FAILED: Expected CSVParseError for empty FINDING_UID value") + return False + except CSVParseError as e: + if "FINDING_UID" in str(e): + print(f"✓ PASSED: Empty FINDING_UID value correctly rejected: {e}") + return True + print(f"✗ FAILED: Error doesn't mention FINDING_UID: {e}") + return False + except Exception as e: + print(f"✗ FAILED: Unexpected error type: {type(e).__name__}: {e}") + return False + + +def test_csv_empty_check_id_value(): + """Test that CSV with empty CHECK_ID value raises error.""" + from api.parsers.csv_parser import parse_csv, CSVParseError + + content = create_csv_empty_check_id_value() + + try: + parse_csv(content) + print("✗ FAILED: Expected CSVParseError for empty CHECK_ID value") + return False + except CSVParseError as e: + if "CHECK_ID" in str(e): + print(f"✓ PASSED: Empty CHECK_ID value correctly rejected: {e}") + return True + print(f"✗ FAILED: Error doesn't mention CHECK_ID: {e}") + return False + except Exception as e: + print(f"✗ FAILED: Unexpected error type: {type(e).__name__}: {e}") + return False + + +def test_ocsf_structure_validation_invalid_json(): + """Test OCSF structure validation with invalid JSON.""" + from api.parsers.ocsf_parser import validate_ocsf_structure + + content = create_invalid_json_content() + is_valid, error = validate_ocsf_structure(content) + + if not is_valid and error: + print(f"✓ PASSED: Invalid JSON structure validation failed: {error}") + return True + print("✗ FAILED: Invalid JSON should fail structure validation") + return False + + +def test_ocsf_structure_validation_non_array(): + """Test OCSF structure validation with non-array JSON.""" + from api.parsers.ocsf_parser import validate_ocsf_structure + + content = create_non_array_json_content() + is_valid, error = validate_ocsf_structure(content) + + if not is_valid and error: + print(f"✓ PASSED: Non-array JSON structure validation failed: {error}") + return True + print("✗ FAILED: Non-array JSON should fail structure validation") + return False + + +def test_csv_structure_validation_missing_columns(): + """Test CSV structure validation with missing columns.""" + # Import inside function to isolate test dependencies; noqa suppresses + # false-positive F401 since the function is used immediately below. + from api.parsers.csv_parser import validate_csv_structure # noqa: F401 + + content = create_csv_missing_finding_uid_column() + is_valid, error = validate_csv_structure(content) + + if not is_valid and error and "FINDING_UID" in error: + print(f"✓ PASSED: Missing column structure validation failed: {error}") + return True + print(f"✗ FAILED: Missing column should fail structure validation: {error}") + return False + + +def test_ocsf_content_validation(): + """Test OCSF content validation with missing fields.""" + # Import inside function to isolate test dependencies; noqa suppresses + # false-positive F401 since the function is used immediately below. + from api.parsers.ocsf_parser import validate_ocsf_content # noqa: F401 + + content = create_ocsf_missing_metadata_event_code() + result = validate_ocsf_content(content) + + if not result.is_valid and len(result.errors) > 0: + print(f"✓ PASSED: Content validation found errors: {len(result.errors)} errors") + for err in result.errors[:3]: # Show first 3 errors + print(f" - {err.field}: {err.message}") + return True + print("✗ FAILED: Content validation should find errors") + return False + + +def test_csv_content_validation(): + """Test CSV content validation with empty values.""" + # Import inside function to isolate test dependencies; noqa suppresses + # false-positive F401 since the function is used immediately below. + from api.parsers.csv_parser import validate_csv_content # noqa: F401 + + content = create_csv_empty_finding_uid_value() + result = validate_csv_content(content) + + if not result.is_valid and len(result.errors) > 0: + print( + f"✓ PASSED: CSV content validation found errors: {len(result.errors)} errors" + ) + for err in result.errors[:3]: # Show first 3 errors + print(f" - {err.field}: {err.message}") + return True + print("✗ FAILED: CSV content validation should find errors") + return False + + +def test_format_detection_binary(): + """Test format detection with binary content using parsers directly.""" + # Import inside function to isolate test dependencies; noqa suppresses + # false-positive F401 since the functions are used immediately below. + from api.parsers.ocsf_parser import validate_ocsf_structure # noqa: F401 + from api.parsers.csv_parser import validate_csv_structure # noqa: F401 + + content = create_binary_content() + + # Binary content should fail both JSON and CSV validation + json_valid, json_error = validate_ocsf_structure(content) + csv_valid, csv_error = validate_csv_structure(content) + + if not json_valid and not csv_valid: + print("✓ PASSED: Binary content rejected by both parsers") + print(f" JSON error: {json_error}") + print(f" CSV error: {csv_error}") + return True + print("✗ FAILED: Binary content should be rejected by both parsers") + return False + + +def test_format_detection_xml(): + """Test format detection with XML content using parsers directly.""" + from api.parsers.ocsf_parser import validate_ocsf_structure # noqa: F401 + from api.parsers.csv_parser import validate_csv_structure # noqa: F401 + + content = create_xml_content() + + # XML content should fail JSON validation + json_valid, json_error = validate_ocsf_structure(content) + + if not json_valid: + print(f"✓ PASSED: XML content rejected by JSON parser: {json_error}") + return True + print("✗ FAILED: XML content should be rejected by JSON parser") + return False + + +def test_format_detection_plain_text(): + """Test format detection with plain text content using parsers directly.""" + from api.parsers.ocsf_parser import validate_ocsf_structure # noqa: F401 + from api.parsers.csv_parser import validate_csv_structure # noqa: F401 + + content = create_plain_text_content() + + # Plain text should fail JSON validation + json_valid, json_error = validate_ocsf_structure(content) + + if not json_valid: + print(f"✓ PASSED: Plain text rejected by JSON parser: {json_error}") + return True + print("✗ FAILED: Plain text should be rejected by JSON parser") + return False + + +# ============================================================================ +# Main Test Runner +# ============================================================================ + + +def run_all_tests() -> tuple[int, int]: + """ + Run all error scenario tests and return results. + + Executes each test function in sequence, catching any unexpected + exceptions and reporting results. + + Returns: + tuple[int, int]: A tuple of (passed_count, failed_count). + + Example: + >>> passed, failed = run_all_tests() + >>> print(f"Results: {passed} passed, {failed} failed") + """ + # List of test cases as (name, test_function) tuples. + # Each test function takes no arguments and returns bool (True=pass, False=fail). + # Type annotation omitted for Python 3.9 compatibility. + tests = [ + # JSON/OCSF Parser Tests + ("Invalid JSON format", test_invalid_json_format), + ("Non-array JSON", test_non_array_json), + ("JSON with non-object elements", test_json_with_non_object_elements), + ("OCSF missing metadata.event_code", test_ocsf_missing_metadata_event_code), + ("OCSF missing finding_info.uid", test_ocsf_missing_finding_uid), + ("OCSF missing cloud.provider", test_ocsf_missing_cloud_provider), + ("OCSF missing cloud.account.uid", test_ocsf_missing_account_uid), + ("OCSF all invalid findings", test_ocsf_all_invalid_findings), + ("Invalid UTF-8", test_invalid_utf8), + # CSV Parser Tests + ("CSV missing FINDING_UID column", test_csv_missing_finding_uid_column), + ("CSV missing PROVIDER column", test_csv_missing_provider_column), + ("CSV missing multiple columns", test_csv_missing_multiple_columns), + ("CSV empty FINDING_UID value", test_csv_empty_finding_uid_value), + ("CSV empty CHECK_ID value", test_csv_empty_check_id_value), + # Structure Validation Tests + ( + "OCSF structure validation - invalid JSON", + test_ocsf_structure_validation_invalid_json, + ), + ( + "OCSF structure validation - non-array", + test_ocsf_structure_validation_non_array, + ), + ( + "CSV structure validation - missing columns", + test_csv_structure_validation_missing_columns, + ), + # Content Validation Tests + ("OCSF content validation", test_ocsf_content_validation), + ("CSV content validation", test_csv_content_validation), + # Format Detection Tests + ("Format detection - binary", test_format_detection_binary), + ("Format detection - XML", test_format_detection_xml), + ("Format detection - plain text", test_format_detection_plain_text), + ] + + passed = 0 + failed = 0 + + for name, test_func in tests: + print(f"\n[Test] {name}") + try: + if test_func(): + passed += 1 + else: + failed += 1 + except Exception as e: + print(f"✗ FAILED: Unexpected exception: {type(e).__name__}: {e}") + failed += 1 + + return passed, failed + + +if __name__ == "__main__": + print("=" * 70) + print("Manual Test: Scan Import Error Scenarios") + print("=" * 70) + print( + """ +This script tests various error scenarios for the scan import feature: +- Invalid file formats (binary, XML, plain text) +- Missing required fields in JSON/OCSF +- Missing required columns in CSV +- Empty required field values +- Malformed JSON/CSV content +""" + ) + + passed, failed = run_all_tests() + + print("\n" + "=" * 70) + print(f"Test Results: {passed} passed, {failed} failed") + print("=" * 70) + + if failed > 0: + print("\n⚠ Some tests failed. Review the output above for details.") + sys.exit(1) + else: + print("\n✓ All error scenario tests passed!") + sys.exit(0) diff --git a/api/tests/manual/test_scan_import_large_file.py b/api/tests/manual/test_scan_import_large_file.py new file mode 100644 index 0000000000..571c763988 --- /dev/null +++ b/api/tests/manual/test_scan_import_large_file.py @@ -0,0 +1,846 @@ +#!/usr/bin/env python3 +""" +Manual test script for testing scan import with large files (1000+ findings). + +This script tests the scan import functionality with large datasets to verify: +- Performance with 1000+ findings +- Memory usage during bulk operations +- Correct handling of many unique resources +- Database bulk insert efficiency + +Usage: + # Run directly from the repository root: + python api/tests/manual/test_scan_import_large_file.py + + # Or with poetry: + poetry run python api/tests/manual/test_scan_import_large_file.py + + # Run with custom finding count: + python api/tests/manual/test_scan_import_large_file.py --count 5000 + +Prerequisites: + - Python 3.10+ + - api/src/backend in PYTHONPATH (handled automatically) + +This script tests: + - OCSF parser performance with 1000+ findings + - CSV parser performance with 1000+ findings + - Memory efficiency during parsing + - Bulk operation performance +""" + +import argparse +import gc +import json +import sys +import time +from datetime import datetime, timedelta +from pathlib import Path +from uuid import uuid4 + +# Add the API backend to the path for imports +PROJECT_ROOT = Path(__file__).parent.parent.parent +API_BACKEND = PROJECT_ROOT / "src" / "backend" +sys.path.insert(0, str(API_BACKEND)) + +# Default number of findings to generate +DEFAULT_FINDING_COUNT = 1500 + +# AWS services and check IDs for realistic test data +AWS_SERVICES = [ + ("accessanalyzer", ["accessanalyzer_enabled", "accessanalyzer_findings"]), + ( + "acm", + [ + "acm_certificates_expiration_check", + "acm_certificates_transparency_logs_enabled", + ], + ), + ( + "apigateway", + [ + "apigateway_restapi_logging_enabled", + "apigateway_restapi_authorizers_enabled", + ], + ), + ( + "cloudfront", + [ + "cloudfront_distributions_https_enabled", + "cloudfront_distributions_logging_enabled", + ], + ), + ( + "cloudtrail", + ["cloudtrail_multi_region_enabled", "cloudtrail_log_file_validation_enabled"], + ), + ("cloudwatch", ["cloudwatch_log_group_retention_policy_specific_days_enabled"]), + ("config", ["config_recorder_all_regions_enabled"]), + ( + "dynamodb", + ["dynamodb_tables_pitr_enabled", "dynamodb_tables_kms_cmk_encryption_enabled"], + ), + ( + "ec2", + [ + "ec2_instance_imdsv2_enabled", + "ec2_instance_public_ip", + "ec2_securitygroup_default_restrict_traffic", + ], + ), + ( + "ecr", + [ + "ecr_repositories_scan_images_on_push_enabled", + "ecr_repositories_lifecycle_policy_enabled", + ], + ), + ("ecs", ["ecs_task_definitions_no_environment_secrets"]), + ("efs", ["efs_encryption_at_rest_enabled"]), + ("eks", ["eks_cluster_logging_enabled", "eks_endpoints_not_publicly_accessible"]), + ("elasticache", ["elasticache_redis_cluster_automatic_backup_enabled"]), + ("elb", ["elb_logging_enabled", "elbv2_logging_enabled"]), + ("emr", ["emr_cluster_master_nodes_no_public_ip"]), + ("guardduty", ["guardduty_is_enabled"]), + ( + "iam", + [ + "iam_root_hardware_mfa_enabled", + "iam_user_mfa_enabled_console_access", + "iam_password_policy_minimum_length_14", + ], + ), + ("kms", ["kms_cmk_rotation_enabled"]), + ( + "lambda", + [ + "awslambda_function_url_public", + "awslambda_function_using_supported_runtimes", + ], + ), + ( + "rds", + [ + "rds_instance_storage_encrypted", + "rds_instance_multi_az", + "rds_instance_backup_enabled", + ], + ), + ("redshift", ["redshift_cluster_audit_logging"]), + ( + "s3", + [ + "s3_bucket_public_access_block_enabled", + "s3_bucket_default_encryption", + "s3_bucket_versioning_enabled", + ], + ), + ("secretsmanager", ["secretsmanager_automatic_rotation_enabled"]), + ("sns", ["sns_topics_kms_encryption_at_rest_enabled"]), + ("sqs", ["sqs_queues_server_side_encryption_enabled"]), + ("ssm", ["ssm_managed_compliant_patching"]), + ("vpc", ["vpc_flow_logs_enabled"]), + ("waf", ["wafv2_webacl_logging_enabled"]), +] + +# Severity levels +SEVERITIES = ["critical", "high", "medium", "low", "informational"] + +# Status codes +STATUSES = ["PASS", "FAIL", "MANUAL"] + +# Compliance frameworks +COMPLIANCE_FRAMEWORKS = { + "CIS-1.4": ["1.1", "1.2", "1.3", "2.1", "2.2", "3.1", "4.1", "5.1"], + "CIS-2.0": ["1.1", "1.2", "1.3", "2.1", "2.2", "3.1", "4.1", "5.1"], + "CIS-3.0": ["1.1", "1.2", "1.3", "2.1", "2.2", "3.1", "4.1", "5.1"], + "PCI-DSS-3.2.1": ["1.2.1", "1.3.1", "2.2.1", "3.4", "8.2.1"], + "SOC2": ["CC6.1", "CC6.6", "CC6.7", "CC7.1", "CC7.2"], + "HIPAA": ["164.312(a)(1)", "164.312(b)", "164.312(c)(1)"], + "NIST-800-53": ["AC-2", "AC-3", "AU-2", "AU-3", "CM-6"], +} + +# AWS regions +AWS_REGIONS = [ + "us-east-1", + "us-east-2", + "us-west-1", + "us-west-2", + "eu-west-1", + "eu-west-2", + "eu-central-1", + "ap-southeast-1", + "ap-southeast-2", + "ap-northeast-1", +] + + +def generate_ocsf_finding( + index: int, + account_uid: str = "123456789012", + account_name: str = "Test AWS Account", +) -> dict: + """ + Generate a single OCSF finding with realistic data. + + Args: + index: Index of the finding (used for unique IDs). + account_uid: AWS account ID. + account_name: AWS account name. + + Returns: + Dictionary representing an OCSF finding. + """ + # Select service and check based on index for variety + service_idx = index % len(AWS_SERVICES) + service_name, check_ids = AWS_SERVICES[service_idx] + check_id = check_ids[index % len(check_ids)] + + # Select other attributes + severity = SEVERITIES[index % len(SEVERITIES)] + status = STATUSES[index % len(STATUSES)] + region = AWS_REGIONS[index % len(AWS_REGIONS)] + + # Generate unique IDs + finding_uid = f"prowler-aws-{check_id}-{account_uid}-{region}-{uuid4().hex[:8]}" + resource_uid = f"arn:aws:{service_name}:{region}:{account_uid}:resource-{index}" + + # Generate timestamp with slight variation + base_time = datetime.now() - timedelta(hours=index % 24) + timestamp = base_time.isoformat() + unix_timestamp = int(base_time.timestamp()) + + # Generate compliance data + compliance = {} + for framework, controls in COMPLIANCE_FRAMEWORKS.items(): + if index % 3 == 0: # Add compliance to ~1/3 of findings + compliance[framework] = [controls[index % len(controls)]] + + return { + "message": f"{service_name.upper()} check {check_id} for resource-{index}", + "metadata": { + "event_code": check_id, + "product": { + "name": "Prowler", + "uid": "prowler", + "vendor_name": "Prowler", + "version": "5.0.0", + }, + "profiles": ["cloud", "datetime"], + "tenant_uid": "", + "version": "1.4.0", + }, + "severity_id": SEVERITIES.index(severity) + 1, + "severity": severity.capitalize(), + "status": "New", + "status_code": status, + "status_detail": f"Resource resource-{index} check result: {status}", + "status_id": 1, + "unmapped": { + "related_url": f"https://docs.aws.amazon.com/{service_name}/", + "categories": [service_name], + "depends_on": [], + "related_to": [], + "additional_urls": [], + "notes": "", + "compliance": compliance, + }, + "activity_name": "Create", + "activity_id": 1, + "finding_info": { + "created_time": unix_timestamp, + "created_time_dt": timestamp, + "desc": f"Check {check_id} for {service_name}", + "product_uid": "prowler", + "title": f"{service_name.upper()} {check_id.replace('_', ' ').title()}", + "types": [service_name.upper()], + "uid": finding_uid, + }, + "resources": [ + { + "cloud_partition": "aws", + "region": region, + "data": { + "details": "", + "metadata": { + "arn": resource_uid, + "name": f"resource-{index}", + "status": "AVAILABLE", + "findings": [], + "tags": [{"Key": "Environment", "Value": "Test"}], + "type": service_name, + "region": region, + }, + }, + "group": {"name": service_name}, + "labels": [], + "name": f"resource-{index}", + "type": service_name, + "uid": resource_uid, + } + ], + "category_name": "Findings", + "category_uid": 2, + "class_name": "Detection Finding", + "class_uid": 2004, + "cloud": { + "account": { + "name": account_name, + "type": "AWS Account", + "type_id": 10, + "uid": account_uid, + "labels": [], + }, + "org": {"name": "", "uid": ""}, + "provider": "aws", + "region": region, + }, + "remediation": { + "desc": f"Remediation for {check_id}", + "references": [f"https://docs.aws.amazon.com/{service_name}/"], + }, + "risk_details": f"Risk details for {check_id}", + "time": unix_timestamp, + "time_dt": timestamp, + "type_uid": 200401, + "type_name": "Detection Finding: Create", + } + + +def generate_large_ocsf_data(count: int) -> list[dict]: + """ + Generate a large list of OCSF findings. + + Args: + count: Number of findings to generate. + + Returns: + List of OCSF finding dictionaries. + """ + print(f"Generating {count} OCSF findings...") + start_time = time.time() + + findings = [generate_ocsf_finding(i) for i in range(count)] + + elapsed = time.time() - start_time + print(f"✓ Generated {count} findings in {elapsed:.2f}s") + + return findings + + +def generate_csv_row( + index: int, + account_uid: str = "123456789012", + account_name: str = "Test AWS Account", +) -> str: + """ + Generate a single CSV row with realistic data. + + Args: + index: Index of the finding (used for unique IDs). + account_uid: AWS account ID. + account_name: AWS account name. + + Returns: + Semicolon-delimited CSV row string. + """ + # Select service and check based on index for variety + service_idx = index % len(AWS_SERVICES) + service_name, check_ids = AWS_SERVICES[service_idx] + check_id = check_ids[index % len(check_ids)] + + # Select other attributes + severity = SEVERITIES[index % len(SEVERITIES)] + status = STATUSES[index % len(STATUSES)] + region = AWS_REGIONS[index % len(AWS_REGIONS)] + + # Generate unique IDs + finding_uid = f"prowler-aws-{check_id}-{account_uid}-{region}-{uuid4().hex[:8]}" + resource_uid = f"arn:aws:{service_name}:{region}:{account_uid}:resource-{index}" + + # Generate timestamp + base_time = datetime.now() - timedelta(hours=index % 24) + timestamp = base_time.strftime("%Y-%m-%d %H:%M:%S.%f") + + # Generate compliance string + compliance_parts = [] + for framework, controls in COMPLIANCE_FRAMEWORKS.items(): + if index % 3 == 0: + control = controls[index % len(controls)] + compliance_parts.append(f"{framework}: {control}") + compliance_str = " | ".join(compliance_parts) + + # Build row fields (42 columns) + fields = [ + "profile", # AUTH_METHOD + timestamp, # TIMESTAMP + account_uid, # ACCOUNT_UID + account_name, # ACCOUNT_NAME + "", # ACCOUNT_EMAIL + "", # ACCOUNT_ORGANIZATION_UID + "", # ACCOUNT_ORGANIZATION_NAME + "", # ACCOUNT_TAGS + finding_uid, # FINDING_UID + "aws", # PROVIDER + check_id, # CHECK_ID + f"{service_name.upper()} {check_id.replace('_', ' ').title()}", # CHECK_TITLE + service_name.upper(), # CHECK_TYPE + status, # STATUS + f"Resource resource-{index} check result: {status}", # STATUS_EXTENDED + "False", # MUTED + service_name, # SERVICE_NAME + "", # SUBSERVICE_NAME + severity, # SEVERITY + service_name, # RESOURCE_TYPE + resource_uid, # RESOURCE_UID + f"resource-{index}", # RESOURCE_NAME + "", # RESOURCE_DETAILS + "", # RESOURCE_TAGS + "aws", # PARTITION + region, # REGION + f"Check {check_id} for {service_name}", # DESCRIPTION + f"Risk details for {check_id}", # RISK + f"https://docs.aws.amazon.com/{service_name}/", # RELATED_URL + f"Remediation for {check_id}", # REMEDIATION_RECOMMENDATION_TEXT + f"https://docs.aws.amazon.com/{service_name}/", # REMEDIATION_RECOMMENDATION_URL + "", # REMEDIATION_CODE_NATIVEIAC + "", # REMEDIATION_CODE_TERRAFORM + "", # REMEDIATION_CODE_CLI + "", # REMEDIATION_CODE_OTHER + compliance_str, # COMPLIANCE + "", # CATEGORIES + "", # DEPENDS_ON + "", # RELATED_TO + "", # NOTES + "5.0.0", # PROWLER_VERSION + "", # ADDITIONAL_URLS + ] + + return ";".join(fields) + + +def generate_large_csv_data(count: int) -> str: + """ + Generate a large CSV file content. + + Args: + count: Number of findings to generate. + + Returns: + CSV content as string (semicolon-delimited). + """ + print(f"Generating {count} CSV rows...") + start_time = time.time() + + # CSV header (42 columns) + header = "AUTH_METHOD;TIMESTAMP;ACCOUNT_UID;ACCOUNT_NAME;ACCOUNT_EMAIL;ACCOUNT_ORGANIZATION_UID;ACCOUNT_ORGANIZATION_NAME;ACCOUNT_TAGS;FINDING_UID;PROVIDER;CHECK_ID;CHECK_TITLE;CHECK_TYPE;STATUS;STATUS_EXTENDED;MUTED;SERVICE_NAME;SUBSERVICE_NAME;SEVERITY;RESOURCE_TYPE;RESOURCE_UID;RESOURCE_NAME;RESOURCE_DETAILS;RESOURCE_TAGS;PARTITION;REGION;DESCRIPTION;RISK;RELATED_URL;REMEDIATION_RECOMMENDATION_TEXT;REMEDIATION_RECOMMENDATION_URL;REMEDIATION_CODE_NATIVEIAC;REMEDIATION_CODE_TERRAFORM;REMEDIATION_CODE_CLI;REMEDIATION_CODE_OTHER;COMPLIANCE;CATEGORIES;DEPENDS_ON;RELATED_TO;NOTES;PROWLER_VERSION;ADDITIONAL_URLS" + + rows = [header] + for i in range(count): + rows.append(generate_csv_row(i)) + + elapsed = time.time() - start_time + print(f"✓ Generated {count} CSV rows in {elapsed:.2f}s") + + return "\n".join(rows) + + +def measure_memory() -> float: + """Get current memory usage in MB.""" + import resource + + return resource.getrusage(resource.RUSAGE_SELF).ru_maxrss / 1024 / 1024 + + +def test_ocsf_parser_large_file(count: int) -> dict: + """ + Test OCSF parser with a large number of findings. + + Args: + count: Number of findings to test with. + + Returns: + Dictionary with test results. + """ + from api.parsers.ocsf_parser import parse_ocsf_json, validate_ocsf_structure + + print(f"\n{'=' * 60}") + print(f"Testing OCSF Parser with {count} findings") + print(f"{'=' * 60}") + + results = { + "format": "ocsf", + "count": count, + "success": False, + } + + # Generate test data + gc.collect() + mem_before_gen = measure_memory() + + test_data = generate_large_ocsf_data(count) + content = json.dumps(test_data).encode("utf-8") + + mem_after_gen = measure_memory() + results["generation_memory_mb"] = mem_after_gen - mem_before_gen + results["file_size_mb"] = len(content) / (1024 * 1024) + + print(f"File size: {results['file_size_mb']:.2f} MB") + print(f"Memory used for generation: {results['generation_memory_mb']:.2f} MB") + + # Validate structure + print("\nValidating OCSF structure...") + start_time = time.time() + is_valid, error = validate_ocsf_structure(content) + results["validation_time_s"] = time.time() - start_time + + if not is_valid: + print(f"✗ Validation failed: {error}") + return results + + print(f"✓ Validation passed in {results['validation_time_s']:.2f}s") + + # Parse content + print("\nParsing OCSF content...") + gc.collect() + mem_before_parse = measure_memory() + start_time = time.time() + + findings = parse_ocsf_json(content) + + results["parse_time_s"] = time.time() - start_time + mem_after_parse = measure_memory() + results["parse_memory_mb"] = mem_after_parse - mem_before_parse + + print(f"✓ Parsed {len(findings)} findings in {results['parse_time_s']:.2f}s") + print(f"Memory used for parsing: {results['parse_memory_mb']:.2f} MB") + + # Verify results + assert len(findings) == count, f"Expected {count} findings, got {len(findings)}" + + # Verify data integrity + print("\nVerifying data integrity...") + + # Check first finding + first = findings[0] + assert first.provider_type == "aws" + assert first.account_uid == "123456789012" + assert first.check_id is not None + assert first.status in ("PASS", "FAIL", "MANUAL") + print(f"✓ First finding: {first.check_id} ({first.status})") + + # Check last finding + last = findings[-1] + assert last.provider_type == "aws" + assert last.check_id is not None + print(f"✓ Last finding: {last.check_id} ({last.status})") + + # Check unique resources + unique_resources = set() + for f in findings: + for r in f.resources: + unique_resources.add(r.uid) + + results["unique_resources"] = len(unique_resources) + print(f"✓ Unique resources: {len(unique_resources)}") + + # Check compliance data + findings_with_compliance = sum(1 for f in findings if f.compliance) + results["findings_with_compliance"] = findings_with_compliance + print(f"✓ Findings with compliance: {findings_with_compliance}") + + results["success"] = True + results["findings_parsed"] = len(findings) + + # Performance metrics + results["findings_per_second"] = count / results["parse_time_s"] + print(f"\nPerformance: {results['findings_per_second']:.0f} findings/second") + + return results + + +def test_csv_parser_large_file(count: int) -> dict: + """ + Test CSV parser with a large number of findings. + + Args: + count: Number of findings to test with. + + Returns: + Dictionary with test results. + """ + from api.parsers.csv_parser import parse_csv, validate_csv_structure + + print(f"\n{'=' * 60}") + print(f"Testing CSV Parser with {count} findings") + print(f"{'=' * 60}") + + results = { + "format": "csv", + "count": count, + "success": False, + } + + # Generate test data + gc.collect() + mem_before_gen = measure_memory() + + test_data = generate_large_csv_data(count) + content = test_data.encode("utf-8") + + mem_after_gen = measure_memory() + results["generation_memory_mb"] = mem_after_gen - mem_before_gen + results["file_size_mb"] = len(content) / (1024 * 1024) + + print(f"File size: {results['file_size_mb']:.2f} MB") + print(f"Memory used for generation: {results['generation_memory_mb']:.2f} MB") + + # Validate structure + print("\nValidating CSV structure...") + start_time = time.time() + is_valid, error = validate_csv_structure(content) + results["validation_time_s"] = time.time() - start_time + + if not is_valid: + print(f"✗ Validation failed: {error}") + return results + + print(f"✓ Validation passed in {results['validation_time_s']:.2f}s") + + # Parse content + print("\nParsing CSV content...") + gc.collect() + mem_before_parse = measure_memory() + start_time = time.time() + + findings = parse_csv(content) + + results["parse_time_s"] = time.time() - start_time + mem_after_parse = measure_memory() + results["parse_memory_mb"] = mem_after_parse - mem_before_parse + + print(f"✓ Parsed {len(findings)} findings in {results['parse_time_s']:.2f}s") + print(f"Memory used for parsing: {results['parse_memory_mb']:.2f} MB") + + # Verify results + assert len(findings) == count, f"Expected {count} findings, got {len(findings)}" + + # Verify data integrity + print("\nVerifying data integrity...") + + # Check first finding + first = findings[0] + assert first.provider_type == "aws" + assert first.account_uid == "123456789012" + assert first.check_id is not None + assert first.status in ("PASS", "FAIL", "MANUAL") + print(f"✓ First finding: {first.check_id} ({first.status})") + + # Check last finding + last = findings[-1] + assert last.provider_type == "aws" + assert last.check_id is not None + print(f"✓ Last finding: {last.check_id} ({last.status})") + + # Check unique resources + unique_resources = set() + for f in findings: + unique_resources.add(f.resource.uid) + + results["unique_resources"] = len(unique_resources) + print(f"✓ Unique resources: {len(unique_resources)}") + + # Check compliance data + findings_with_compliance = sum(1 for f in findings if f.compliance) + results["findings_with_compliance"] = findings_with_compliance + print(f"✓ Findings with compliance: {findings_with_compliance}") + + results["success"] = True + results["findings_parsed"] = len(findings) + + # Performance metrics + results["findings_per_second"] = count / results["parse_time_s"] + print(f"\nPerformance: {results['findings_per_second']:.0f} findings/second") + + return results + + +def save_large_test_files(count: int) -> tuple[Path, Path]: + """ + Save large test files for manual API testing. + + Args: + count: Number of findings to generate. + + Returns: + Tuple of (json_path, csv_path). + """ + output_dir = Path(__file__).parent + + # Generate and save OCSF JSON + print(f"\nGenerating large OCSF JSON file ({count} findings)...") + ocsf_data = generate_large_ocsf_data(count) + json_path = output_dir / f"test_prowler_output_large_{count}.ocsf.json" + + with open(json_path, "w") as f: + json.dump(ocsf_data, f) + + json_size = json_path.stat().st_size / (1024 * 1024) + print(f"✓ Saved: {json_path} ({json_size:.2f} MB)") + + # Generate and save CSV + print(f"\nGenerating large CSV file ({count} findings)...") + csv_data = generate_large_csv_data(count) + csv_path = output_dir / f"test_prowler_output_large_{count}.csv" + + with open(csv_path, "w") as f: + f.write(csv_data) + + csv_size = csv_path.stat().st_size / (1024 * 1024) + print(f"✓ Saved: {csv_path} ({csv_size:.2f} MB)") + + return json_path, csv_path + + +def print_summary(results: list[dict]) -> None: + """Print a summary of all test results.""" + print(f"\n{'=' * 60}") + print("TEST SUMMARY") + print(f"{'=' * 60}") + + for r in results: + status = "✓ PASS" if r["success"] else "✗ FAIL" + print(f"\n{r['format'].upper()} ({r['count']} findings): {status}") + + if r["success"]: + print(f" File size: {r['file_size_mb']:.2f} MB") + print(f" Parse time: {r['parse_time_s']:.2f}s") + print(f" Performance: {r['findings_per_second']:.0f} findings/second") + print(f" Unique resources: {r['unique_resources']}") + print(f" Findings with compliance: {r['findings_with_compliance']}") + + # Check if all tests passed + all_passed = all(r["success"] for r in results) + + print(f"\n{'=' * 60}") + if all_passed: + print("ALL TESTS PASSED ✓") + else: + print("SOME TESTS FAILED ✗") + print(f"{'=' * 60}") + + +def main(): + """Main entry point for the test script.""" + parser = argparse.ArgumentParser( + description="Test scan import with large files (1000+ findings)" + ) + parser.add_argument( + "--count", + "-c", + type=int, + default=DEFAULT_FINDING_COUNT, + help=f"Number of findings to generate (default: {DEFAULT_FINDING_COUNT})", + ) + parser.add_argument( + "--save-files", + "-s", + action="store_true", + help="Save generated test files for manual API testing", + ) + parser.add_argument( + "--ocsf-only", action="store_true", help="Only test OCSF/JSON format" + ) + parser.add_argument("--csv-only", action="store_true", help="Only test CSV format") + + args = parser.parse_args() + + print("=" * 60) + print("Large File Test: Scan Import with 1000+ Findings") + print("=" * 60) + print(f"Finding count: {args.count}") + + results = [] + + # Test OCSF parser + if not args.csv_only: + try: + ocsf_results = test_ocsf_parser_large_file(args.count) + results.append(ocsf_results) + except Exception as e: + print(f"✗ OCSF test failed: {e}") + import traceback + + traceback.print_exc() + results.append( + { + "format": "ocsf", + "count": args.count, + "success": False, + "error": str(e), + } + ) + + # Test CSV parser + if not args.ocsf_only: + try: + csv_results = test_csv_parser_large_file(args.count) + results.append(csv_results) + except Exception as e: + print(f"✗ CSV test failed: {e}") + import traceback + + traceback.print_exc() + results.append( + { + "format": "csv", + "count": args.count, + "success": False, + "error": str(e), + } + ) + + # Print summary + print_summary(results) + + # Save files if requested + if args.save_files: + print("\nSaving test files for manual API testing...") + json_path, csv_path = save_large_test_files(args.count) + + print( + f""" +{'=' * 60} +Manual API Testing Instructions +{'=' * 60} + +To test the scan import API endpoint with large files: + +1. Start the development environment: + docker-compose -f docker-compose-dev.yml up -d + +2. Get an authentication token (login via UI or API) + +3. Import the large JSON file: + curl -X POST http://localhost:8080/api/v1/scans/import \\ + -H "Authorization: Bearer " \\ + -H "Content-Type: multipart/form-data" \\ + -F "file=@{json_path}" + +4. Import the large CSV file: + curl -X POST http://localhost:8080/api/v1/scans/import \\ + -H "Authorization: Bearer " \\ + -H "Content-Type: multipart/form-data" \\ + -F "file=@{csv_path}" + +5. Verify the imports in the UI at http://localhost:3000/scans +""" + ) + + # Exit with appropriate code + all_passed = all(r["success"] for r in results) + sys.exit(0 if all_passed else 1) + + +if __name__ == "__main__": + main() diff --git a/api/tests/manual/test_scan_import_real_csv.py b/api/tests/manual/test_scan_import_real_csv.py new file mode 100644 index 0000000000..ee78e4b1ce --- /dev/null +++ b/api/tests/manual/test_scan_import_real_csv.py @@ -0,0 +1,508 @@ +#!/usr/bin/env python3 +""" +Manual test script for testing scan import with real Prowler CSV output. + +This script tests the scan import functionality using real Prowler CSV output. +It validates that the CSV parser correctly handles real Prowler CLI output format. + +Usage: + # Run directly from the repository root: + python api/tests/manual/test_scan_import_real_csv.py + + # Or with poetry: + poetry run python api/tests/manual/test_scan_import_real_csv.py + +Prerequisites: + - Python 3.10+ + - api/src/backend in PYTHONPATH (handled automatically) + +This script tests: + - CSV structure validation + - Parsing of real Prowler CSV format (semicolon-delimited) + - Extraction of findings, resources, and compliance data + - Provider information extraction + - Comparison with example output files +""" + +import sys +from datetime import datetime +from pathlib import Path +from uuid import uuid4 + +# Add the API backend to the path for imports +PROJECT_ROOT = Path(__file__).parent.parent.parent +API_BACKEND = PROJECT_ROOT / "src" / "backend" +sys.path.insert(0, str(API_BACKEND)) + +# Path to example output files +EXAMPLES_DIR = PROJECT_ROOT.parent / "examples" / "output" + + +def create_real_csv_test_data( + account_uid: str = "123456789012", + account_name: str = "Test AWS Account", +) -> str: + """ + Create realistic CSV test data based on actual Prowler output format. + + This generates test data that matches the structure of real Prowler CLI output + as seen in examples/output/example_output_aws.csv. + + The CSV has 42 columns (semicolon-delimited): + AUTH_METHOD, TIMESTAMP, ACCOUNT_UID, ACCOUNT_NAME, ACCOUNT_EMAIL, + ACCOUNT_ORGANIZATION_UID, ACCOUNT_ORGANIZATION_NAME, ACCOUNT_TAGS, + FINDING_UID, PROVIDER, CHECK_ID, CHECK_TITLE, CHECK_TYPE, STATUS, + STATUS_EXTENDED, MUTED, SERVICE_NAME, SUBSERVICE_NAME, SEVERITY, + RESOURCE_TYPE, RESOURCE_UID, RESOURCE_NAME, RESOURCE_DETAILS, RESOURCE_TAGS, + PARTITION, REGION, DESCRIPTION, RISK, RELATED_URL, REMEDIATION_RECOMMENDATION_TEXT, + REMEDIATION_RECOMMENDATION_URL, REMEDIATION_CODE_NATIVEIAC, REMEDIATION_CODE_TERRAFORM, + REMEDIATION_CODE_CLI, REMEDIATION_CODE_OTHER, COMPLIANCE, CATEGORIES, DEPENDS_ON, + RELATED_TO, NOTES, PROWLER_VERSION, ADDITIONAL_URLS + + Args: + account_uid: AWS account ID to use in the test data. + account_name: AWS account name to use in the test data. + + Returns: + CSV content as string (semicolon-delimited). + """ + timestamp = datetime.now().strftime("%Y-%m-%d %H:%M:%S.%f") + + # Generate unique IDs for this test run + finding_uid_1 = ( + f"prowler-aws-accessanalyzer_enabled-{account_uid}-us-east-1-{uuid4().hex[:8]}" + ) + finding_uid_2 = ( + f"prowler-aws-s3_bucket_public_access-{account_uid}-us-west-2-{uuid4().hex[:8]}" + ) + finding_uid_3 = f"prowler-aws-ec2_imdsv2-{account_uid}-us-east-1-{uuid4().hex[:8]}" + + resource_uid_1 = f"arn:aws:iam::{account_uid}:root" + resource_uid_2 = f"arn:aws:s3:::test-bucket-{uuid4().hex[:8]}" + resource_uid_3 = ( + f"arn:aws:ec2:us-east-1:{account_uid}:instance/i-{uuid4().hex[:12]}" + ) + + # CSV header (matching real Prowler output - 42 columns) + header = "AUTH_METHOD;TIMESTAMP;ACCOUNT_UID;ACCOUNT_NAME;ACCOUNT_EMAIL;ACCOUNT_ORGANIZATION_UID;ACCOUNT_ORGANIZATION_NAME;ACCOUNT_TAGS;FINDING_UID;PROVIDER;CHECK_ID;CHECK_TITLE;CHECK_TYPE;STATUS;STATUS_EXTENDED;MUTED;SERVICE_NAME;SUBSERVICE_NAME;SEVERITY;RESOURCE_TYPE;RESOURCE_UID;RESOURCE_NAME;RESOURCE_DETAILS;RESOURCE_TAGS;PARTITION;REGION;DESCRIPTION;RISK;RELATED_URL;REMEDIATION_RECOMMENDATION_TEXT;REMEDIATION_RECOMMENDATION_URL;REMEDIATION_CODE_NATIVEIAC;REMEDIATION_CODE_TERRAFORM;REMEDIATION_CODE_CLI;REMEDIATION_CODE_OTHER;COMPLIANCE;CATEGORIES;DEPENDS_ON;RELATED_TO;NOTES;PROWLER_VERSION;ADDITIONAL_URLS" + + # Row 1: IAM Access Analyzer (FAIL) - 42 fields + # Fields: AUTH_METHOD(1), TIMESTAMP(2), ACCOUNT_UID(3), ACCOUNT_NAME(4), ACCOUNT_EMAIL(5), + # ACCOUNT_ORGANIZATION_UID(6), ACCOUNT_ORGANIZATION_NAME(7), ACCOUNT_TAGS(8), + # FINDING_UID(9), PROVIDER(10), CHECK_ID(11), CHECK_TITLE(12), CHECK_TYPE(13), + # STATUS(14), STATUS_EXTENDED(15), MUTED(16), SERVICE_NAME(17), SUBSERVICE_NAME(18), + # SEVERITY(19), RESOURCE_TYPE(20), RESOURCE_UID(21), RESOURCE_NAME(22), + # RESOURCE_DETAILS(23), RESOURCE_TAGS(24), PARTITION(25), REGION(26), + # DESCRIPTION(27), RISK(28), RELATED_URL(29), REMEDIATION_RECOMMENDATION_TEXT(30), + # REMEDIATION_RECOMMENDATION_URL(31), REMEDIATION_CODE_NATIVEIAC(32), + # REMEDIATION_CODE_TERRAFORM(33), REMEDIATION_CODE_CLI(34), REMEDIATION_CODE_OTHER(35), + # COMPLIANCE(36), CATEGORIES(37), DEPENDS_ON(38), RELATED_TO(39), NOTES(40), + # PROWLER_VERSION(41), ADDITIONAL_URLS(42) + row1_fields = [ + "profile", # AUTH_METHOD + timestamp, # TIMESTAMP + account_uid, # ACCOUNT_UID + account_name, # ACCOUNT_NAME + "", # ACCOUNT_EMAIL + "", # ACCOUNT_ORGANIZATION_UID + "", # ACCOUNT_ORGANIZATION_NAME + "", # ACCOUNT_TAGS + finding_uid_1, # FINDING_UID + "aws", # PROVIDER + "accessanalyzer_enabled", # CHECK_ID + "Check if IAM Access Analyzer is enabled", # CHECK_TITLE + "IAM", # CHECK_TYPE + "FAIL", # STATUS + f"IAM Access Analyzer in account {account_uid} is not enabled.", # STATUS_EXTENDED + "False", # MUTED + "accessanalyzer", # SERVICE_NAME + "", # SUBSERVICE_NAME + "low", # SEVERITY + "Other", # RESOURCE_TYPE + resource_uid_1, # RESOURCE_UID + account_uid, # RESOURCE_NAME + "", # RESOURCE_DETAILS + "", # RESOURCE_TAGS + "aws", # PARTITION + "us-east-1", # REGION + "Check if IAM Access Analyzer is enabled", # DESCRIPTION + "AWS IAM Access Analyzer helps identify resources shared with external entities.", # RISK + "https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html", # RELATED_URL + "Enable IAM Access Analyzer for all accounts.", # REMEDIATION_RECOMMENDATION_TEXT + "https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html", # REMEDIATION_RECOMMENDATION_URL + "", # REMEDIATION_CODE_NATIVEIAC + "", # REMEDIATION_CODE_TERRAFORM + "aws accessanalyzer create-analyzer --analyzer-name --type ", # REMEDIATION_CODE_CLI + "", # REMEDIATION_CODE_OTHER + "CIS-1.4: 1.20 | CIS-1.5: 1.20 | CIS-2.0: 1.20 | CIS-3.0: 1.20 | AWS-Account-Security-Onboarding: Enabled security services, Create analyzers in each active regions", # COMPLIANCE + "", # CATEGORIES + "", # DEPENDS_ON + "", # RELATED_TO + "", # NOTES + "5.0.0", # PROWLER_VERSION + "https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html", # ADDITIONAL_URLS + ] + row1 = ";".join(row1_fields) + + # Row 2: S3 Bucket Public Access (PASS) - 42 fields + row2_fields = [ + "profile", # AUTH_METHOD + timestamp, # TIMESTAMP + account_uid, # ACCOUNT_UID + account_name, # ACCOUNT_NAME + "", # ACCOUNT_EMAIL + "", # ACCOUNT_ORGANIZATION_UID + "", # ACCOUNT_ORGANIZATION_NAME + "", # ACCOUNT_TAGS + finding_uid_2, # FINDING_UID + "aws", # PROVIDER + "s3_bucket_public_access_block_enabled", # CHECK_ID + "S3 Bucket Public Access Block Check", # CHECK_TITLE + "S3", # CHECK_TYPE + "PASS", # STATUS + "S3 bucket test-bucket has public access block enabled.", # STATUS_EXTENDED + "False", # MUTED + "s3", # SERVICE_NAME + "", # SUBSERVICE_NAME + "informational", # SEVERITY + "bucket", # RESOURCE_TYPE + resource_uid_2, # RESOURCE_UID + "test-bucket", # RESOURCE_NAME + "", # RESOURCE_DETAILS + "", # RESOURCE_TAGS + "aws", # PARTITION + "us-west-2", # REGION + "Check if S3 buckets have public access block enabled", # DESCRIPTION + "Public S3 buckets can expose sensitive data.", # RISK + "https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-control-block-public-access.html", # RELATED_URL + "S3 Block Public Access is already enabled.", # REMEDIATION_RECOMMENDATION_TEXT + "https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-control-block-public-access.html", # REMEDIATION_RECOMMENDATION_URL + "", # REMEDIATION_CODE_NATIVEIAC + "", # REMEDIATION_CODE_TERRAFORM + "", # REMEDIATION_CODE_CLI + "", # REMEDIATION_CODE_OTHER + "CIS-1.4: 2.1.5 | CIS-2.0: 2.1.4 | PCI-DSS-3.2.1: 1.2.1, 1.3.1 | SOC2: CC6.1", # COMPLIANCE + "", # CATEGORIES + "", # DEPENDS_ON + "", # RELATED_TO + "", # NOTES + "5.0.0", # PROWLER_VERSION + "", # ADDITIONAL_URLS + ] + row2 = ";".join(row2_fields) + + # Row 3: EC2 IMDSv2 (PASS) - 42 fields + row3_fields = [ + "profile", # AUTH_METHOD + timestamp, # TIMESTAMP + account_uid, # ACCOUNT_UID + account_name, # ACCOUNT_NAME + "", # ACCOUNT_EMAIL + "", # ACCOUNT_ORGANIZATION_UID + "", # ACCOUNT_ORGANIZATION_NAME + "", # ACCOUNT_TAGS + finding_uid_3, # FINDING_UID + "aws", # PROVIDER + "ec2_instance_imdsv2_enabled", # CHECK_ID + "EC2 Instance IMDSv2 Check", # CHECK_TITLE + "EC2", # CHECK_TYPE + "PASS", # STATUS + "EC2 instance has IMDSv2 enabled.", # STATUS_EXTENDED + "False", # MUTED + "ec2", # SERVICE_NAME + "", # SUBSERVICE_NAME + "informational", # SEVERITY + "instance", # RESOURCE_TYPE + resource_uid_3, # RESOURCE_UID + "test-instance", # RESOURCE_NAME + "", # RESOURCE_DETAILS + "", # RESOURCE_TAGS + "aws", # PARTITION + "us-east-1", # REGION + "Check if EC2 instances have IMDSv2 enabled", # DESCRIPTION + "IMDSv2 provides enhanced security for instance metadata access.", # RISK + "https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-instance-metadata-service.html", # RELATED_URL + "IMDSv2 is already enabled.", # REMEDIATION_RECOMMENDATION_TEXT + "https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-instance-metadata-service.html", # REMEDIATION_RECOMMENDATION_URL + "", # REMEDIATION_CODE_NATIVEIAC + "", # REMEDIATION_CODE_TERRAFORM + "", # REMEDIATION_CODE_CLI + "", # REMEDIATION_CODE_OTHER + "CIS-1.4: 5.6 | CIS-2.0: 5.6 | AWS-Foundational-Security-Best-Practices: EC2.8", # COMPLIANCE + "", # CATEGORIES + "", # DEPENDS_ON + "", # RELATED_TO + "", # NOTES + "5.0.0", # PROWLER_VERSION + "", # ADDITIONAL_URLS + ] + row3 = ";".join(row3_fields) + + return "\n".join([header, row1, row2, row3]) + + +def test_csv_parser_with_real_data(): + """Test the CSV parser with realistic Prowler output data.""" + from api.parsers.csv_parser import parse_csv, validate_csv_structure + + # Create test data + test_data = create_real_csv_test_data() + content = test_data.encode("utf-8") + + # Validate structure + is_valid, error = validate_csv_structure(content) + assert is_valid, f"CSV structure validation failed: {error}" + print("✓ CSV structure validation passed") + + # Parse the content + findings = parse_csv(content) + + # Verify parsing results + assert len(findings) == 3, f"Expected 3 findings, got {len(findings)}" + print(f"✓ Parsed {len(findings)} findings successfully") + + # Verify first finding (FAIL - IAM Access Analyzer) + finding_1 = findings[0] + assert finding_1.check_id == "accessanalyzer_enabled" + assert finding_1.severity == "low" + assert finding_1.status == "FAIL" + assert finding_1.provider_type == "aws" + assert finding_1.account_uid == "123456789012" + assert finding_1.resource.service == "accessanalyzer" + assert "CIS-1.4" in finding_1.compliance + print("✓ Finding 1 (accessanalyzer_enabled) parsed correctly") + + # Verify second finding (PASS - S3 public access) + finding_2 = findings[1] + assert finding_2.check_id == "s3_bucket_public_access_block_enabled" + assert finding_2.severity == "informational" + assert finding_2.status == "PASS" + assert finding_2.resource.service == "s3" + assert finding_2.resource.type == "bucket" + assert "PCI-DSS-3.2.1" in finding_2.compliance + print("✓ Finding 2 (s3_bucket_public_access_block_enabled) parsed correctly") + + # Verify third finding (PASS - EC2 IMDSv2) + finding_3 = findings[2] + assert finding_3.check_id == "ec2_instance_imdsv2_enabled" + assert finding_3.severity == "informational" + assert finding_3.status == "PASS" + assert finding_3.resource.service == "ec2" + assert finding_3.resource.type == "instance" + print("✓ Finding 3 (ec2_instance_imdsv2_enabled) parsed correctly") + + print("\n✓ All CSV parser tests passed!") + return findings + + +def test_csv_parser_with_example_file(): + """Test the CSV parser with the actual example output file.""" + from api.parsers.csv_parser import parse_csv, validate_csv_structure + + example_file = EXAMPLES_DIR / "example_output_aws.csv" + + if not example_file.exists(): + print(f"⚠ Example file not found: {example_file}") + print(" Skipping example file test") + return None + + print(f"Testing with example file: {example_file}") + + # Read the example file + with open(example_file, "rb") as f: + content = f.read() + + # Validate structure + is_valid, error = validate_csv_structure(content) + assert is_valid, f"CSV structure validation failed: {error}" + print("✓ Example file structure validation passed") + + # Parse the content + findings = parse_csv(content) + + print(f"✓ Parsed {len(findings)} findings from example file") + + # Verify basic parsing + assert len(findings) > 0, "Expected at least one finding" + + # Check first finding + first_finding = findings[0] + assert first_finding.provider_type == "aws" + assert first_finding.check_id # Should have a check_id + assert first_finding.status in ("PASS", "FAIL", "MANUAL") + print(f"✓ First finding: {first_finding.check_id} ({first_finding.status})") + + # Check compliance parsing + has_compliance = any(f.compliance for f in findings) + if has_compliance: + print("✓ Compliance data parsed successfully") + + return findings + + +def test_csv_parser_with_azure_example(): + """Test the CSV parser with Azure example output.""" + from api.parsers.csv_parser import parse_csv, validate_csv_structure + + example_file = EXAMPLES_DIR / "example_output_azure.csv" + + if not example_file.exists(): + print(f"⚠ Azure example file not found: {example_file}") + print(" Skipping Azure example test") + return None + + print(f"Testing with Azure example file: {example_file}") + + with open(example_file, "rb") as f: + content = f.read() + + is_valid, error = validate_csv_structure(content) + assert is_valid, f"Azure CSV structure validation failed: {error}" + print("✓ Azure example file structure validation passed") + + findings = parse_csv(content) + print(f"✓ Parsed {len(findings)} findings from Azure example") + + if findings: + first_finding = findings[0] + assert first_finding.provider_type == "azure" + print("✓ Azure provider type detected correctly") + + return findings + + +def test_csv_parser_with_gcp_example(): + """Test the CSV parser with GCP example output.""" + from api.parsers.csv_parser import parse_csv, validate_csv_structure + + example_file = EXAMPLES_DIR / "example_output_gcp.csv" + + if not example_file.exists(): + print(f"⚠ GCP example file not found: {example_file}") + print(" Skipping GCP example test") + return None + + print(f"Testing with GCP example file: {example_file}") + + with open(example_file, "rb") as f: + content = f.read() + + is_valid, error = validate_csv_structure(content) + assert is_valid, f"GCP CSV structure validation failed: {error}" + print("✓ GCP example file structure validation passed") + + findings = parse_csv(content) + print(f"✓ Parsed {len(findings)} findings from GCP example") + + if findings: + first_finding = findings[0] + assert first_finding.provider_type == "gcp" + print("✓ GCP provider type detected correctly") + + return findings + + +def save_test_data_to_file(): + """Save test data to a CSV file for manual testing.""" + test_data = create_real_csv_test_data() + output_path = Path(__file__).parent / "test_prowler_output.csv" + + with open(output_path, "w") as f: + f.write(test_data) + + print(f"✓ Test data saved to: {output_path}") + print(" - 3 findings") + print(" - Provider: aws") + print(" - Account: 123456789012") + return output_path + + +if __name__ == "__main__": + print("=" * 60) + print("Manual Test: Scan Import with Real Prowler CSV Output") + print("=" * 60) + + # Test 1: Parser with generated realistic data + print("\n[Test 1] Testing CSV Parser with generated realistic data...") + try: + findings = test_csv_parser_with_real_data() + print("SUCCESS: Parser works with realistic CSV format!") + except Exception as e: + print(f"FAILED: {e}") + import traceback + + traceback.print_exc() + sys.exit(1) + + # Test 2: Parser with actual example file + print("\n[Test 2] Testing CSV Parser with example_output_aws.csv...") + try: + findings = test_csv_parser_with_example_file() + if findings: + print("SUCCESS: Parser works with real example file!") + except Exception as e: + print(f"FAILED: {e}") + import traceback + + traceback.print_exc() + sys.exit(1) + + # Test 3: Parser with Azure example + print("\n[Test 3] Testing CSV Parser with Azure example...") + try: + findings = test_csv_parser_with_azure_example() + if findings: + print("SUCCESS: Parser works with Azure example!") + except Exception as e: + print(f"FAILED: {e}") + import traceback + + traceback.print_exc() + sys.exit(1) + + # Test 4: Parser with GCP example + print("\n[Test 4] Testing CSV Parser with GCP example...") + try: + findings = test_csv_parser_with_gcp_example() + if findings: + print("SUCCESS: Parser works with GCP example!") + except Exception as e: + print(f"FAILED: {e}") + import traceback + + traceback.print_exc() + sys.exit(1) + + # Save test data for manual API testing + print("\n[Test 5] Saving test data for manual API testing...") + output_file = save_test_data_to_file() + + print("\n" + "=" * 60) + print("Manual API Testing Instructions") + print("=" * 60) + print( + f""" +To test the scan import API endpoint manually with CSV: + +1. Start the development environment: + docker-compose -f docker-compose-dev.yml up -d + +2. Get an authentication token (login via UI or API) + +3. Import the test CSV file using curl: + curl -X POST http://localhost:8080/api/v1/scans/import \\ + -H "Authorization: Bearer " \\ + -H "Content-Type: multipart/form-data" \\ + -F "file=@{output_file}" + +4. Or import the real example file: + curl -X POST http://localhost:8080/api/v1/scans/import \\ + -H "Authorization: Bearer " \\ + -H "Content-Type: multipart/form-data" \\ + -F "file=@examples/output/example_output_aws.csv" + +5. Verify the import in the UI at http://localhost:3000/scans +""" + ) + + print("✓ Manual test setup complete!") diff --git a/api/tests/manual/test_scan_import_real_json.py b/api/tests/manual/test_scan_import_real_json.py new file mode 100644 index 0000000000..bf15b3fe35 --- /dev/null +++ b/api/tests/manual/test_scan_import_real_json.py @@ -0,0 +1,566 @@ +#!/usr/bin/env python3 +""" +Manual test script for testing scan import with real Prowler JSON output. + +This script tests the scan import functionality using real Prowler OCSF JSON output. +It validates that the OCSF parser correctly handles real Prowler CLI output format. + +Usage: + # Run directly from the repository root: + python api/tests/manual/test_scan_import_real_json.py + + # Or with poetry: + poetry run python api/tests/manual/test_scan_import_real_json.py + +Prerequisites: + - Python 3.10+ + - api/src/backend in PYTHONPATH (handled automatically) + +This script tests: + - OCSF structure validation + - Parsing of real Prowler JSON format + - Extraction of findings, resources, and compliance data + - Provider information extraction +""" + +import json +import sys +from datetime import datetime +from pathlib import Path +from uuid import uuid4 + +# Add the API backend to the path for imports +PROJECT_ROOT = Path(__file__).parent.parent.parent +API_BACKEND = PROJECT_ROOT / "src" / "backend" +sys.path.insert(0, str(API_BACKEND)) + + +def create_real_ocsf_test_data() -> list[dict]: + """ + Create realistic OCSF test data based on actual Prowler output format. + + This generates test data that matches the structure of real Prowler CLI output + as seen in examples/output/example_output_aws.ocsf.json. + + Returns: + List of OCSF finding dictionaries. + """ + timestamp = datetime.now().isoformat() + unix_timestamp = int(datetime.now().timestamp()) + + # Generate unique IDs for this test run + finding_uid_1 = str(uuid4()) + finding_uid_2 = str(uuid4()) + finding_uid_3 = str(uuid4()) + resource_uid_1 = "arn:aws:iam::123456789012:root" + resource_uid_2 = f"arn:aws:s3:::test-bucket-{uuid4().hex[:8]}" + resource_uid_3 = f"arn:aws:ec2:us-east-1:123456789012:instance/i-{uuid4().hex[:17]}" + + return [ + { + "message": "IAM Access Analyzer in account 123456789012 is not enabled.", + "metadata": { + "event_code": "accessanalyzer_enabled", + "product": { + "name": "Prowler", + "uid": "prowler", + "vendor_name": "Prowler", + "version": "5.0.0", + }, + "profiles": ["cloud", "datetime"], + "tenant_uid": "", + "version": "1.4.0", + }, + "severity_id": 2, + "severity": "Low", + "status": "New", + "status_code": "FAIL", + "status_detail": "IAM Access Analyzer in account 123456789012 is not enabled.", + "status_id": 1, + "unmapped": { + "related_url": "https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html", + "categories": [], + "depends_on": [], + "related_to": [], + "additional_urls": [], + "notes": "", + "compliance": { + "CIS-1.4": ["1.20"], + "CIS-1.5": ["1.20"], + "CIS-2.0": ["1.20"], + "CIS-3.0": ["1.20"], + "AWS-Account-Security-Onboarding": [ + "Enabled security services", + "Create analyzers in each active regions", + ], + }, + }, + "activity_name": "Create", + "activity_id": 1, + "finding_info": { + "created_time": unix_timestamp, + "created_time_dt": timestamp, + "desc": "Check if IAM Access Analyzer is enabled", + "product_uid": "prowler", + "title": "Check if IAM Access Analyzer is enabled", + "types": ["IAM"], + "uid": finding_uid_1, + }, + "resources": [ + { + "cloud_partition": "aws", + "region": "us-east-1", + "data": { + "details": "", + "metadata": { + "arn": resource_uid_1, + "name": "123456789012", + "status": "NOT_AVAILABLE", + "findings": [], + "tags": [], + "type": "", + "region": "us-east-1", + }, + }, + "group": {"name": "accessanalyzer"}, + "labels": [], + "name": "123456789012", + "type": "Other", + "uid": resource_uid_1, + } + ], + "category_name": "Findings", + "category_uid": 2, + "class_name": "Detection Finding", + "class_uid": 2004, + "cloud": { + "account": { + "name": "Test AWS Account", + "type": "AWS Account", + "type_id": 10, + "uid": "123456789012", + "labels": [], + }, + "org": {"name": "", "uid": ""}, + "provider": "aws", + "region": "us-east-1", + }, + "remediation": { + "desc": "Enable IAM Access Analyzer for all accounts.", + "references": [ + "aws accessanalyzer create-analyzer --analyzer-name --type ", + "https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html", + ], + }, + "risk_details": "AWS IAM Access Analyzer helps identify resources shared with external entities.", + "time": unix_timestamp, + "time_dt": timestamp, + "type_uid": 200401, + "type_name": "Detection Finding: Create", + }, + { + "message": "S3 bucket test-bucket has public access enabled.", + "metadata": { + "event_code": "s3_bucket_public_access_block_enabled", + "product": { + "name": "Prowler", + "uid": "prowler", + "vendor_name": "Prowler", + "version": "5.0.0", + }, + "profiles": ["cloud", "datetime"], + "tenant_uid": "", + "version": "1.4.0", + }, + "severity_id": 4, + "severity": "High", + "status": "New", + "status_code": "FAIL", + "status_detail": "S3 bucket test-bucket has public access enabled.", + "status_id": 1, + "unmapped": { + "related_url": "https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-control-block-public-access.html", + "categories": ["storage", "security"], + "depends_on": [], + "related_to": [], + "additional_urls": [], + "notes": "", + "compliance": { + "CIS-1.4": ["2.1.5"], + "CIS-2.0": ["2.1.4"], + "PCI-DSS-3.2.1": ["1.2.1", "1.3.1"], + "SOC2": ["CC6.1"], + }, + }, + "activity_name": "Create", + "activity_id": 1, + "finding_info": { + "created_time": unix_timestamp, + "created_time_dt": timestamp, + "desc": "Check if S3 buckets have public access block enabled", + "product_uid": "prowler", + "title": "S3 Bucket Public Access Block Check", + "types": ["S3"], + "uid": finding_uid_2, + }, + "resources": [ + { + "cloud_partition": "aws", + "region": "us-west-2", + "data": { + "details": "", + "metadata": { + "arn": resource_uid_2, + "name": "test-bucket", + "status": "PUBLIC", + "findings": [], + "tags": [{"Key": "Environment", "Value": "Test"}], + "type": "bucket", + "region": "us-west-2", + }, + }, + "group": {"name": "s3"}, + "labels": [], + "name": "test-bucket", + "type": "bucket", + "uid": resource_uid_2, + } + ], + "category_name": "Findings", + "category_uid": 2, + "class_name": "Detection Finding", + "class_uid": 2004, + "cloud": { + "account": { + "name": "Test AWS Account", + "type": "AWS Account", + "type_id": 10, + "uid": "123456789012", + "labels": [], + }, + "org": {"name": "", "uid": ""}, + "provider": "aws", + "region": "us-west-2", + }, + "remediation": { + "desc": "Enable S3 Block Public Access settings.", + "references": [ + "aws s3api put-public-access-block --bucket --public-access-block-configuration BlockPublicAcls=true,IgnorePublicAcls=true,BlockPublicPolicy=true,RestrictPublicBuckets=true" + ], + }, + "risk_details": "Public S3 buckets can expose sensitive data to unauthorized users.", + "time": unix_timestamp, + "time_dt": timestamp, + "type_uid": 200401, + "type_name": "Detection Finding: Create", + }, + { + "message": "EC2 instance i-1234567890abcdef0 has IMDSv2 enabled.", + "metadata": { + "event_code": "ec2_instance_imdsv2_enabled", + "product": { + "name": "Prowler", + "uid": "prowler", + "vendor_name": "Prowler", + "version": "5.0.0", + }, + "profiles": ["cloud", "datetime"], + "tenant_uid": "", + "version": "1.4.0", + }, + "severity_id": 1, + "severity": "Informational", + "status": "New", + "status_code": "PASS", + "status_detail": "EC2 instance i-1234567890abcdef0 has IMDSv2 enabled.", + "status_id": 1, + "unmapped": { + "related_url": "https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-instance-metadata-service.html", + "categories": ["compute", "security"], + "depends_on": [], + "related_to": [], + "additional_urls": [], + "notes": "", + "compliance": { + "CIS-1.4": ["5.6"], + "CIS-2.0": ["5.6"], + "AWS-Foundational-Security-Best-Practices": ["EC2.8"], + }, + }, + "activity_name": "Create", + "activity_id": 1, + "finding_info": { + "created_time": unix_timestamp, + "created_time_dt": timestamp, + "desc": "Check if EC2 instances have IMDSv2 enabled", + "product_uid": "prowler", + "title": "EC2 Instance IMDSv2 Check", + "types": ["EC2"], + "uid": finding_uid_3, + }, + "resources": [ + { + "cloud_partition": "aws", + "region": "us-east-1", + "data": { + "details": "", + "metadata": { + "arn": resource_uid_3, + "name": "test-instance", + "status": "running", + "findings": [], + "tags": [{"Key": "Name", "Value": "test-instance"}], + "type": "instance", + "region": "us-east-1", + }, + }, + "group": {"name": "ec2"}, + "labels": [], + "name": "test-instance", + "type": "instance", + "uid": resource_uid_3, + } + ], + "category_name": "Findings", + "category_uid": 2, + "class_name": "Detection Finding", + "class_uid": 2004, + "cloud": { + "account": { + "name": "Test AWS Account", + "type": "AWS Account", + "type_id": 10, + "uid": "123456789012", + "labels": [], + }, + "org": {"name": "", "uid": ""}, + "provider": "aws", + "region": "us-east-1", + }, + "remediation": { + "desc": "IMDSv2 is already enabled. No action required.", + "references": [], + }, + "risk_details": "IMDSv2 provides enhanced security for instance metadata access.", + "time": unix_timestamp, + "time_dt": timestamp, + "type_uid": 200401, + "type_name": "Detection Finding: Create", + }, + ] + + +def test_ocsf_parser_with_real_data(): + """Test the OCSF parser with realistic Prowler output data.""" + from api.parsers.ocsf_parser import parse_ocsf_json, validate_ocsf_structure + + # Create test data + test_data = create_real_ocsf_test_data() + content = json.dumps(test_data).encode("utf-8") + + # Validate structure + is_valid, error = validate_ocsf_structure(content) + assert is_valid, f"OCSF structure validation failed: {error}" + print("✓ OCSF structure validation passed") + + # Parse the content + findings = parse_ocsf_json(content) + + # Verify parsing results + assert len(findings) == 3, f"Expected 3 findings, got {len(findings)}" + print(f"✓ Parsed {len(findings)} findings successfully") + + # Verify first finding (FAIL - IAM Access Analyzer) + finding_1 = findings[0] + assert finding_1.check_id == "accessanalyzer_enabled" + assert finding_1.severity == "low" + assert finding_1.status == "FAIL" + assert finding_1.provider_type == "aws" + assert finding_1.account_uid == "123456789012" + assert len(finding_1.resources) == 1 + assert "CIS-1.4" in finding_1.compliance + print("✓ Finding 1 (accessanalyzer_enabled) parsed correctly") + + # Verify second finding (FAIL - S3 public access) + finding_2 = findings[1] + assert finding_2.check_id == "s3_bucket_public_access_block_enabled" + assert finding_2.severity == "high" + assert finding_2.status == "FAIL" + assert len(finding_2.resources) == 1 + assert finding_2.resources[0].service == "s3" + assert "PCI-DSS-3.2.1" in finding_2.compliance + print("✓ Finding 2 (s3_bucket_public_access_block_enabled) parsed correctly") + + # Verify third finding (PASS - EC2 IMDSv2) + finding_3 = findings[2] + assert finding_3.check_id == "ec2_instance_imdsv2_enabled" + assert finding_3.severity == "informational" + assert finding_3.status == "PASS" + assert len(finding_3.resources) == 1 + assert finding_3.resources[0].service == "ec2" + print("✓ Finding 3 (ec2_instance_imdsv2_enabled) parsed correctly") + + print("\n✓ All OCSF parser tests passed!") + return findings + + +def test_ocsf_parser_with_single_finding(): + """Test the OCSF parser with a single finding (simpler test case).""" + from api.parsers.ocsf_parser import parse_ocsf_json, validate_ocsf_structure + + # Create minimal test data with one finding + test_data = [ + { + "message": "IAM Access Analyzer in account 123456789012 is not enabled.", + "metadata": { + "event_code": "accessanalyzer_enabled", + "product": { + "name": "Prowler", + "uid": "prowler", + "vendor_name": "Prowler", + "version": "5.0.0", + }, + "profiles": ["cloud", "datetime"], + "tenant_uid": "", + "version": "1.4.0", + }, + "severity": "Low", + "status_code": "FAIL", + "status_detail": "IAM Access Analyzer in account 123456789012 is not enabled.", + "unmapped": {"compliance": {"CIS-1.4": ["1.20"], "CIS-2.0": ["1.20"]}}, + "finding_info": { + "created_time": 1735570800, + "created_time_dt": "2024-12-30T15:00:00.000000", + "desc": "Check if IAM Access Analyzer is enabled", + "product_uid": "prowler", + "title": "Check if IAM Access Analyzer is enabled", + "types": ["IAM"], + "uid": "prowler-aws-accessanalyzer_enabled-123456789012-us-east-1", + }, + "resources": [ + { + "cloud_partition": "aws", + "region": "us-east-1", + "group": {"name": "accessanalyzer"}, + "name": "123456789012", + "type": "Other", + "uid": "arn:aws:iam::123456789012:root", + } + ], + "cloud": { + "account": {"name": "Test AWS Account", "uid": "123456789012"}, + "provider": "aws", + "region": "us-east-1", + }, + "time": 1735570800, + "time_dt": "2024-12-30T15:00:00.000000", + } + ] + + content = json.dumps(test_data).encode("utf-8") + + # Validate structure + is_valid, error = validate_ocsf_structure(content) + print(f"Structure valid: {is_valid}") + if not is_valid: + print(f"Error: {error}") + return None + + # Parse the content + findings = parse_ocsf_json(content) + print(f"Parsed {len(findings)} findings") + + if findings: + f = findings[0] + print(f"Check ID: {f.check_id}") + print(f"Severity: {f.severity}") + print(f"Status: {f.status}") + print(f"Provider: {f.provider_type}") + print(f"Account: {f.account_uid}") + print(f"Resources: {len(f.resources)}") + print(f"Compliance: {list(f.compliance.keys())}") + + return findings + + +def save_test_data_to_file(): + """Save test data to a JSON file for manual testing.""" + test_data = create_real_ocsf_test_data() + output_path = Path(__file__).parent / "test_prowler_output.ocsf.json" + + with open(output_path, "w") as f: + json.dump(test_data, f, indent=2) + + print(f"✓ Test data saved to: {output_path}") + print(f" - {len(test_data)} findings") + print(" - Provider: aws") + print(" - Account: 123456789012") + return output_path + + +if __name__ == "__main__": + print("=" * 60) + print("Manual Test: Scan Import with Real Prowler JSON Output") + print("=" * 60) + + # Test 1: Simple single-finding test + print("\n[Test 1] Testing OCSF Parser with single finding...") + try: + findings = test_ocsf_parser_with_single_finding() + if findings: + print("SUCCESS: Parser works with real Prowler JSON format!") + else: + print("FAILED: No findings parsed") + sys.exit(1) + except Exception as e: + print(f"FAILED: {e}") + import traceback + + traceback.print_exc() + sys.exit(1) + + # Test 2: Full test with multiple findings + print("\n[Test 2] Testing OCSF Parser with multiple findings...") + try: + findings = test_ocsf_parser_with_real_data() + print("SUCCESS: All parser tests passed!") + except Exception as e: + print(f"FAILED: {e}") + import traceback + + traceback.print_exc() + sys.exit(1) + + # Save test data for manual API testing + print("\n[Test 3] Saving test data for manual API testing...") + output_file = save_test_data_to_file() + + print("\n" + "=" * 60) + print("Manual API Testing Instructions") + print("=" * 60) + print( + f""" +To test the scan import API endpoint manually: + +1. Start the development environment: + docker-compose -f docker-compose-dev.yml up -d + +2. Get an authentication token (login via UI or API) + +3. Import the test file using curl: + curl -X POST http://localhost:8080/api/v1/scans/import \\ + -H "Authorization: Bearer " \\ + -H "Content-Type: multipart/form-data" \\ + -F "file=@{output_file}" + +4. Or import inline JSON: + curl -X POST http://localhost:8080/api/v1/scans/import \\ + -H "Authorization: Bearer " \\ + -H "Content-Type: application/json" \\ + -d '{{"data": }}' + +5. Verify the import in the UI at http://localhost:3000/scans +""" + ) + + print("✓ Manual test setup complete!") diff --git a/docs/docs.json b/docs/docs.json index c25a4f363a..9c86c12793 100644 --- a/docs/docs.json +++ b/docs/docs.json @@ -107,6 +107,7 @@ "user-guide/tutorials/prowler-app-mute-findings" ] }, + "user-guide/tutorials/prowler-app-scan-import", { "group": "Integrations", "expanded": true, diff --git a/docs/user-guide/tutorials/prowler-app-scan-import.mdx b/docs/user-guide/tutorials/prowler-app-scan-import.mdx new file mode 100644 index 0000000000..ae8fec0dfd --- /dev/null +++ b/docs/user-guide/tutorials/prowler-app-scan-import.mdx @@ -0,0 +1,882 @@ +--- +title: 'Scan Results Import' +--- + +import { VersionBadge } from "/snippets/version-badge.mdx" + + + +**Prowler App** allows importing scan results from Prowler CLI executions, enabling centralized visibility of findings from distributed environments. This guide demonstrates how to import JSON/OCSF and CSV scan outputs through both the UI and API. + +## Overview + +The Scan Import feature enables security teams to: + +- **Centralize findings** from isolated or air-gapped environments where Prowler CLI runs locally +- **Import historical scans** from existing Prowler CLI outputs +- **Aggregate results** from multiple distributed Prowler deployments into a single dashboard +- **Maintain compliance visibility** across environments with network restrictions + +## Supported File Formats + +Prowler App accepts two file formats for scan import: + +### JSON/OCSF Format + +The recommended format for importing scan results. OCSF (Open Cybersecurity Schema Framework) provides a standardized structure for security findings. + +- File extension: `.json` +- Encoding: UTF-8 +- Generated by Prowler CLI with default output settings +- Contains full finding metadata including compliance mappings + +#### JSON Structure + +The JSON file must be an array of finding objects. Each finding object follows the OCSF schema: + +```json +[ + { + "metadata": { + "event_code": "check_id_here" + }, + "finding_info": { + "uid": "unique-finding-id", + "title": "Check Title", + "desc": "Check description" + }, + "cloud": { + "provider": "aws", + "account": { + "uid": "123456789012", + "name": "Account Name" + } + }, + "severity": "high", + "status_code": "FAIL", + "status_detail": "Extended status message", + "message": "Finding message", + "risk_details": "Risk information", + "remediation": { + "desc": "How to fix this issue", + "references": ["https://example.com/docs"] + }, + "resources": [ + { + "uid": "resource-arn-or-id", + "name": "resource-name", + "region": "us-east-1", + "type": "AWS::S3::Bucket", + "group": { + "name": "s3" + } + } + ], + "unmapped": { + "compliance": { + "CIS-AWS-1.5": ["1.1", "1.2"], + "PCI-DSS-4.0": ["2.1"] + }, + "categories": ["security", "encryption"] + }, + "time_dt": "2025-01-15T10:30:00.000000" + } +] +``` + +#### Required JSON Fields + +The following fields are required for each finding: + +| Field Path | Description | +|------------|-------------| +| `metadata.event_code` | Check ID (e.g., `s3_bucket_public_access`) | +| `finding_info.uid` | Unique identifier for the finding | +| `cloud.provider` | Cloud provider type | +| `cloud.account.uid` | Cloud account identifier | + +### CSV Format + +Alternative format for importing scan results, useful for legacy exports or when JSON is not available. + +- File extension: `.csv` +- Encoding: UTF-8 +- Delimiter: Semicolon (`;`) by default, comma (`,`) also supported +- Includes all finding fields and compliance information + +#### CSV Structure + +The CSV file must include a header row with column names. Prowler CLI generates CSV files with semicolon delimiters by default. + +```csv +FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;SEVERITY;RESOURCE_UID;RESOURCE_NAME;REGION;... +finding-001;aws;s3_bucket_public_access;FAIL;123456789012;high;arn:aws:s3:::my-bucket;my-bucket;us-east-1;... +``` + +#### Required CSV Columns + +The following columns are required: + +| Column | Description | +|--------|-------------| +| `FINDING_UID` | Unique identifier for the finding | +| `PROVIDER` | Cloud provider type | +| `CHECK_ID` | Check ID (e.g., `s3_bucket_public_access`) | +| `STATUS` | Finding status (`PASS`, `FAIL`, or `MANUAL`) | +| `ACCOUNT_UID` | Cloud account identifier | + +#### All Supported CSV Columns + + + +| Column | Description | +|--------|-------------| +| `AUTH_METHOD` | Authentication method used | +| `TIMESTAMP` | Finding timestamp | +| `ACCOUNT_UID` | Cloud account identifier | +| `ACCOUNT_NAME` | Cloud account name | +| `ACCOUNT_EMAIL` | Account email | +| `ACCOUNT_ORGANIZATION_UID` | Organization identifier | +| `ACCOUNT_ORGANIZATION_NAME` | Organization name | +| `ACCOUNT_TAGS` | Account tags | +| `FINDING_UID` | Unique finding identifier | +| `PROVIDER` | Cloud provider type | +| `CHECK_ID` | Check identifier | +| `CHECK_TITLE` | Check title | +| `CHECK_TYPE` | Check type | +| `STATUS` | Finding status | +| `STATUS_EXTENDED` | Extended status message | +| `MUTED` | Whether finding is muted | +| `SERVICE_NAME` | Cloud service name | +| `SUBSERVICE_NAME` | Cloud subservice name | +| `SEVERITY` | Finding severity | +| `RESOURCE_TYPE` | Resource type | +| `RESOURCE_UID` | Resource identifier | +| `RESOURCE_NAME` | Resource name | +| `RESOURCE_DETAILS` | Resource details | +| `RESOURCE_TAGS` | Resource tags | +| `PARTITION` | Cloud partition | +| `REGION` | Cloud region | +| `DESCRIPTION` | Check description | +| `RISK` | Risk information | +| `RELATED_URL` | Related documentation URL | +| `REMEDIATION_RECOMMENDATION_TEXT` | Remediation guidance | +| `REMEDIATION_RECOMMENDATION_URL` | Remediation URL | +| `REMEDIATION_CODE_NATIVEIAC` | Native IaC remediation | +| `REMEDIATION_CODE_TERRAFORM` | Terraform remediation | +| `REMEDIATION_CODE_CLI` | CLI remediation | +| `REMEDIATION_CODE_OTHER` | Other remediation | +| `COMPLIANCE` | Compliance mappings | +| `CATEGORIES` | Finding categories | +| `DEPENDS_ON` | Dependencies | +| `RELATED_TO` | Related checks | +| `NOTES` | Additional notes | +| `PROWLER_VERSION` | Prowler version | +| `ADDITIONAL_URLS` | Additional URLs | + + + +#### Compliance Column Format + +The `COMPLIANCE` column uses a pipe-separated format to list multiple compliance frameworks: + +``` +FRAMEWORK1: control1, control2 | FRAMEWORK2: control3, control4 +``` + +Example: +``` +CIS-AWS-1.5: 1.1, 1.2, 1.3 | PCI-DSS-4.0: 2.1.1 | SOC2: CC6.1 +``` + +### Supported Values + +#### Provider Types + +Both formats support the following cloud provider types: + +| Provider | Description | +|----------|-------------| +| `aws` | Amazon Web Services | +| `azure` | Microsoft Azure | +| `gcp` | Google Cloud Platform | +| `kubernetes` | Kubernetes clusters | +| `github` | GitHub repositories | +| `m365` | Microsoft 365 | +| `alibabacloud` | Alibaba Cloud | +| `nhn` | NHN Cloud | +| `oraclecloud` | Oracle Cloud | +| `mongodbatlas` | MongoDB Atlas | + +#### Severity Levels + +Valid severity values (case-insensitive): + +- `critical` +- `high` +- `medium` +- `low` +- `informational` + +#### Status Codes + +Valid status values (case-insensitive): + +- `PASS` - Check passed +- `FAIL` - Check failed +- `MANUAL` - Requires manual verification + + +Both formats are automatically detected based on file content. The file extension is used as a hint but content structure takes precedence. + + +## Importing via UI + +### Step 1: Navigate to Scans + +Access the Scans page from the main navigation menu. + +### Step 2: Upload Scan File + +1. Locate the **Import Scan** section at the top of the Scans page +2. Drag and drop your scan file (`.json` or `.csv`) into the upload area, or click to browse +3. The file name and size will be displayed after selection + + +**File Size Limit** + +The maximum file size for scan imports is **50MB**. For larger scan outputs, consider splitting the results or using the API with streaming. + + +### Step 3: Configure Provider (Optional) + +Before importing, you can optionally configure provider association: + +- **Select existing provider**: Choose from the dropdown to associate findings with an existing cloud provider +- **Create provider automatically**: Leave the selection empty to let Prowler create or match a provider based on the scan data + + +Provider information is extracted from the scan data automatically. If a matching provider (same account ID and provider type) already exists, findings will be associated with it. + + +### Step 4: Import + +1. Click the **Import** button to start the upload +2. A progress indicator shows the upload and processing status +3. Upon completion, you'll see: + - Number of findings imported + - Number of resources created + - Link to view the imported scan + +### Step 5: View Results + +After successful import, click the scan link to view: + +- All imported findings in the Findings view +- Compliance status across frameworks +- Resource inventory from the scan + +## Importing via API + +For automation and CI/CD integration, use the REST API endpoint directly. + +### Endpoint + +``` +POST /api/v1/scans/import +``` + +### Authentication + +Include your API key or JWT token in the request header: + +```bash +Authorization: Api-Key +# or +Authorization: Bearer +``` + +### Request Formats + +#### File Upload (Multipart) + +```bash +curl -X POST \ + -H "Authorization: Api-Key ${PROWLER_API_KEY}" \ + -F "file=@prowler-output.json" \ + -F "provider_id=550e8400-e29b-41d4-a716-446655440000" \ + https://api.prowler.com/api/v1/scans/import +``` + +#### Inline JSON + +```bash +curl -X POST \ + -H "Authorization: Api-Key ${PROWLER_API_KEY}" \ + -H "Content-Type: application/json" \ + -d @prowler-output.json \ + https://api.prowler.com/api/v1/scans/import +``` + +### Request Parameters + +| Parameter | Type | Required | Description | +|-----------|------|----------|-------------| +| `file` | File | No* | Scan output file (JSON or CSV) | +| `data` | JSON | No* | Inline JSON data (alternative to file) | +| `provider_id` | UUID | No | Associate with existing provider | +| `create_provider` | Boolean | No | Create provider if not found (default: true) | + + +*Either `file` or `data` must be provided, but not both. + + +### Response + +#### Success Response + +```json +{ + "data": { + "type": "scan-imports", + "id": "550e8400-e29b-41d4-a716-446655440001", + "attributes": { + "scan_id": "550e8400-e29b-41d4-a716-446655440001", + "findings_count": 1523, + "resources_count": 245, + "provider_id": "550e8400-e29b-41d4-a716-446655440000", + "status": "completed" + } + } +} +``` + +#### Error Response + +```json +{ + "errors": [ + { + "status": "422", + "code": "validation_error", + "title": "Invalid OCSF format", + "detail": "Missing required field 'metadata.event_code' at index 5", + "source": { + "pointer": "/data/findings/5/metadata/event_code" + } + } + ] +} +``` + +## Field Mappings + +This section provides detailed field mapping documentation for both JSON/OCSF and CSV formats, showing how imported data maps to Prowler's internal data models. + +### JSON/OCSF to Prowler Models + +The following tables show how OCSF fields map to Prowler's Finding, Resource, and Provider models. + +#### Finding Fields + +| OCSF Field | Prowler Model.Field | Description | +|------------|---------------------|-------------| +| `finding_info.uid` | `Finding.uid` | Unique identifier for the finding | +| `metadata.event_code` | `Finding.check_id` | Check identifier (e.g., `s3_bucket_public_access`) | +| `status_code` | `Finding.status` | Finding status (`PASS`, `FAIL`, `MANUAL`) | +| `status_detail` | `Finding.status_extended` | Extended status message with details | +| `severity` | `Finding.severity` | Severity level (`critical`, `high`, `medium`, `low`, `informational`) | +| `severity` | `Finding.impact` | Impact level (same as severity) | +| `message` | `Finding.impact_extended` | Extended impact description | +| `time_dt` | `Finding.first_seen_at` | Timestamp when finding was first detected | +| `unmapped.compliance` | `Finding.compliance` | Compliance framework mappings | +| *(raw data)* | `Finding.raw_result` | Complete original OCSF finding object | + +#### Check Metadata Fields + +| OCSF Field | Prowler Model.Field | Description | +|------------|---------------------|-------------| +| `finding_info.title` | `Finding.check_metadata.title` | Human-readable check title | +| `finding_info.desc` | `Finding.check_metadata.description` | Detailed check description | +| `risk_details` | `Finding.check_metadata.risk` | Risk information and business impact | +| `remediation.desc` | `Finding.check_metadata.remediation.description` | How to remediate the finding | +| `remediation.references` | `Finding.check_metadata.remediation.references` | URLs to remediation documentation | +| `unmapped.categories` | `Finding.check_metadata.categories` | Finding categories (e.g., `security`, `encryption`) | +| `unmapped.related_url` | `Finding.check_metadata.related_url` | Related documentation URL | + +#### Resource Fields + +| OCSF Field | Prowler Model.Field | Description | +|------------|---------------------|-------------| +| `resources[].uid` | `Resource.uid` | Unique resource identifier (ARN, ID, etc.) | +| `resources[].name` | `Resource.name` | Human-readable resource name | +| `resources[].region` | `Resource.region` | Cloud region where resource is located | +| `resources[].group.name` | `Resource.service` | Cloud service name (e.g., `s3`, `ec2`) | +| `resources[].type` | `Resource.type` | Resource type (e.g., `AWS::S3::Bucket`) | + +#### Provider Fields + +| OCSF Field | Prowler Model.Field | Description | +|------------|---------------------|-------------| +| `cloud.provider` | `Provider.provider` | Cloud provider type (`aws`, `azure`, `gcp`, etc.) | +| `cloud.account.uid` | `Provider.uid` | Cloud account identifier | +| `cloud.account.name` | `Provider.alias` | Account name/alias (optional) | + +### CSV to Prowler Models + +The following tables show how CSV columns map to Prowler's Finding, Resource, and Provider models. + +#### Finding Fields + +| CSV Column | Prowler Model.Field | Description | +|------------|---------------------|-------------| +| `FINDING_UID` | `Finding.uid` | Unique identifier for the finding | +| `CHECK_ID` | `Finding.check_id` | Check identifier (e.g., `s3_bucket_public_access`) | +| `STATUS` | `Finding.status` | Finding status (`PASS`, `FAIL`, `MANUAL`) | +| `STATUS_EXTENDED` | `Finding.status_extended` | Extended status message with details | +| `SEVERITY` | `Finding.severity` | Severity level (`critical`, `high`, `medium`, `low`, `informational`) | +| `SEVERITY` | `Finding.impact` | Impact level (same as severity) | +| `STATUS_EXTENDED` | `Finding.impact_extended` | Extended impact description | +| `TIMESTAMP` | `Finding.first_seen_at` | Timestamp when finding was first detected | +| `COMPLIANCE` | `Finding.compliance` | Compliance framework mappings (parsed from pipe-separated format) | +| `MUTED` | `Finding.muted` | Whether finding is muted (`true`/`false`) | +| *(raw row)* | `Finding.raw_result` | Complete original CSV row as dictionary | + +#### Check Metadata Fields + +| CSV Column | Prowler Model.Field | Description | +|------------|---------------------|-------------| +| `CHECK_TITLE` | `Finding.check_metadata.title` | Human-readable check title | +| `DESCRIPTION` | `Finding.check_metadata.description` | Detailed check description | +| `RISK` | `Finding.check_metadata.risk` | Risk information and business impact | +| `REMEDIATION_RECOMMENDATION_TEXT` | `Finding.check_metadata.remediation.description` | How to remediate the finding | +| `REMEDIATION_RECOMMENDATION_URL` | `Finding.check_metadata.remediation.url` | URL to remediation documentation | +| `REMEDIATION_CODE_CLI` | `Finding.check_metadata.remediation.cli` | CLI command for remediation | +| `REMEDIATION_CODE_TERRAFORM` | `Finding.check_metadata.remediation.terraform` | Terraform code for remediation | +| `REMEDIATION_CODE_NATIVEIAC` | `Finding.check_metadata.remediation.nativeiac` | Native IaC code for remediation | +| `REMEDIATION_CODE_OTHER` | `Finding.check_metadata.remediation.other` | Other remediation code | +| `CATEGORIES` | `Finding.check_metadata.categories` | Finding categories (comma-separated) | +| `RELATED_URL` | `Finding.check_metadata.related_url` | Related documentation URL | +| `ADDITIONAL_URLS` | `Finding.check_metadata.additional_urls` | Additional URLs (pipe-separated) | +| `NOTES` | `Finding.check_metadata.notes` | Additional notes | + +#### Resource Fields + +| CSV Column | Prowler Model.Field | Description | +|------------|---------------------|-------------| +| `RESOURCE_UID` | `Resource.uid` | Unique resource identifier (ARN, ID, etc.) | +| `RESOURCE_NAME` | `Resource.name` | Human-readable resource name | +| `REGION` | `Resource.region` | Cloud region where resource is located | +| `SERVICE_NAME` | `Resource.service` | Cloud service name (e.g., `s3`, `ec2`) | +| `RESOURCE_TYPE` | `Resource.type` | Resource type (e.g., `AWS::S3::Bucket`) | +| `PARTITION` | `Resource.partition` | Cloud partition (e.g., `aws`, `aws-gov`) | +| `RESOURCE_TAGS` | `Resource.tags` | Resource tags | +| `RESOURCE_DETAILS` | `Resource.details` | Additional resource details | + +#### Provider Fields + +| CSV Column | Prowler Model.Field | Description | +|------------|---------------------|-------------| +| `PROVIDER` | `Provider.provider` | Cloud provider type (`aws`, `azure`, `gcp`, etc.) | +| `ACCOUNT_UID` | `Provider.uid` | Cloud account identifier | +| `ACCOUNT_NAME` | `Provider.alias` | Account name/alias (optional) | + +### Scan Record Fields + +When importing scan results, Prowler creates a Scan record with the following field mappings: + +| Source | Prowler Model.Field | Description | +|--------|---------------------|-------------| +| *(constant)* | `Scan.trigger` | Set to `imported` to identify imported scans | +| *(constant)* | `Scan.state` | Set to `completed` | +| *(min timestamp)* | `Scan.started_at` | Earliest finding timestamp in the import | +| *(max timestamp)* | `Scan.completed_at` | Latest finding timestamp in the import | +| *(calculated)* | `Scan.duration` | Difference between started_at and completed_at | +| *(calculated)* | `Scan.unique_resource_count` | Count of unique resources in the import | +| *(constant)* | `Scan.progress` | Set to `100` (complete) | + +### Data Normalization + +During import, certain fields are normalized for consistency: + +| Field | Normalization | +|-------|---------------| +| `severity` | Converted to lowercase (`critical`, `high`, `medium`, `low`, `informational`) | +| `status` | Converted to uppercase (`PASS`, `FAIL`, `MANUAL`) | +| `provider` | Converted to lowercase (`aws`, `azure`, `gcp`, etc.) | +| `compliance` | Parsed from pipe-separated format (CSV) or kept as object (JSON) | +| `timestamp` | Parsed from ISO 8601 or common date formats | + +### Default Values + +When optional fields are missing, the following defaults are applied: + +| Field | Default Value | +|-------|---------------| +| `severity` | `informational` | +| `status` | `MANUAL` | +| `resource.name` | Uses `resource.uid` if name is empty | +| `timestamp` | Current UTC time if not provided | +| `muted` | `false` | + +## Provider Association + +When importing scan results, Prowler handles provider association automatically: + +1. **Extract provider info**: Account ID and provider type are extracted from the scan data +2. **Match existing provider**: If a provider with the same account ID and type exists, findings are associated with it +3. **Create new provider**: If no match is found and `create_provider` is enabled, a new provider is created +4. **Manual selection**: Optionally specify `provider_id` to force association with a specific provider + + +Imported scans are marked with trigger type **"imported"** to distinguish them from scheduled or manual scans initiated through Prowler App. + + +## Use Cases + +### Air-Gapped Environments + +For environments without internet access: + +1. Run Prowler CLI locally: `prowler aws --output-formats json` +2. Transfer the output file to a system with Prowler App access +3. Import via UI or API + +### CI/CD Pipeline Integration + +Integrate scan imports into your deployment pipeline: + +```yaml +# Example GitHub Actions step +- name: Import Prowler Results + run: | + curl -X POST \ + -H "Authorization: Api-Key ${{ secrets.PROWLER_API_KEY }}" \ + -F "file=@prowler-output.json" \ + https://api.prowler.com/api/v1/scans/import +``` + +### Multi-Account Aggregation + +Aggregate results from multiple AWS accounts: + +1. Run Prowler CLI in each account +2. Collect output files centrally +3. Import each file to Prowler App +4. View consolidated findings across all accounts + +## Troubleshooting + +This section provides detailed guidance for resolving common issues when importing scan results. + +### Format Detection Errors + +#### "File format not recognized" + +This error occurs when the import service cannot identify the file as valid JSON/OCSF or CSV. + +**Possible causes:** +- File is corrupted or truncated +- File uses an unsupported encoding (must be UTF-8) +- File is not a Prowler output file + +**Solutions:** +1. Verify the file opens correctly in a text editor +2. Check the file encoding is UTF-8: + ```bash + file -i your-scan-file.json + # Should show: charset=utf-8 + ``` +3. Regenerate the scan output from Prowler CLI +4. If using CSV, ensure the file has proper headers + +#### "Invalid JSON" or "Invalid JSON syntax" + +**Possible causes:** +- Malformed JSON structure +- File was truncated during transfer +- Special characters causing parsing issues + +**Solutions:** +1. Validate JSON syntax using a tool like `jq`: + ```bash + jq . your-scan-file.json > /dev/null + # If valid, no output; if invalid, shows error location + ``` +2. Check for truncation by verifying the file ends with `]` +3. Look for encoding issues with special characters + +#### "Expected JSON array of findings" + +The JSON file must contain an array `[...]` at the root level, not a single object `{...}`. + +**Solution:** +Ensure your Prowler CLI output is the findings array, not a wrapper object. The correct format is: +```json +[ + { "metadata": {...}, "finding_info": {...}, ... }, + { "metadata": {...}, "finding_info": {...}, ... } +] +``` + +### JSON/OCSF Validation Errors + +#### "Missing required field 'metadata.event_code'" + +Each finding must have a check ID in the `metadata.event_code` field. + +**Solution:** +Verify your OCSF output includes the metadata section: +```json +{ + "metadata": { + "event_code": "s3_bucket_public_access" + } +} +``` + +#### "Missing required field 'finding_info.uid'" + +Each finding must have a unique identifier. + +**Solution:** +Ensure the `finding_info.uid` field is present and non-empty in each finding. + +#### "Missing required field 'cloud.provider'" + +Provider type is required to associate findings with the correct cloud account. + +**Solution:** +Verify the `cloud.provider` field exists with a valid value (`aws`, `azure`, `gcp`, etc.). + +#### "Missing required field 'cloud.account.uid'" + +Account identifier is required for provider association. + +**Solution:** +Ensure `cloud.account.uid` contains the cloud account ID (e.g., AWS account number, Azure subscription ID). + +#### "Unknown provider type" + +The provider type in the scan data is not recognized. + +**Supported provider types:** +- `aws` - Amazon Web Services +- `azure` - Microsoft Azure +- `gcp` - Google Cloud Platform +- `kubernetes` - Kubernetes clusters +- `github` - GitHub repositories +- `m365` - Microsoft 365 +- `alibabacloud` - Alibaba Cloud +- `nhn` - NHN Cloud +- `oraclecloud` - Oracle Cloud +- `mongodbatlas` - MongoDB Atlas + +**Solution:** +Check the `cloud.provider` value matches one of the supported types (case-insensitive). + +### CSV Validation Errors + +#### "Missing required CSV columns" + +The CSV file is missing one or more required columns. + +**Required columns:** +- `FINDING_UID` - Unique finding identifier +- `PROVIDER` - Cloud provider type +- `CHECK_ID` - Check identifier +- `STATUS` - Finding status (PASS, FAIL, MANUAL) +- `ACCOUNT_UID` - Cloud account identifier + +**Solution:** +1. Verify the CSV was generated by Prowler CLI +2. Check that the header row is present and not corrupted +3. Ensure column names match exactly (case-sensitive) + +#### "CSV has no headers" + +The CSV file is missing the header row. + +**Solution:** +Ensure the first line of the CSV contains column headers: +```csv +FINDING_UID;PROVIDER;CHECK_ID;STATUS;ACCOUNT_UID;... +``` + +#### "Missing required value for column" + +A required field is empty in one or more rows. + +**Solution:** +1. Check the error message for the specific row number and column +2. Open the CSV and verify the row has values for all required columns +3. Look for rows with missing data or incorrect delimiter usage + +#### "CSV parsing error" + +General CSV parsing failure, often due to malformed data. + +**Possible causes:** +- Incorrect delimiter (Prowler uses semicolon `;` by default) +- Unescaped special characters in field values +- Inconsistent number of columns across rows + +**Solutions:** +1. Verify the delimiter matches your file (semicolon or comma) +2. Check for fields containing the delimiter character without proper quoting +3. Ensure all rows have the same number of columns as the header + +### Provider Resolution Errors + +#### "Provider with ID not found" + +The specified `provider_id` does not exist or belongs to a different tenant. + +**Solutions:** +1. Verify the provider ID is correct +2. Check that the provider exists in your Prowler App instance +3. Ensure you're authenticated with the correct tenant + +#### "No provider found for account" + +No existing provider matches the scan data, and `create_provider` is disabled. + +**Solutions:** +1. Set `create_provider` to `true` to automatically create the provider +2. Manually create the provider in Prowler App before importing +3. Specify an existing `provider_id` to associate with + +#### "Unsupported provider type" + +The provider type extracted from scan data is not supported. + +**Solution:** +Verify the provider type in your scan data matches one of the supported types listed above. + +### File Size and Performance Issues + +#### "File size exceeds maximum" + +The import file exceeds the 50MB limit. + +**Solutions:** +1. Split large scan outputs into smaller files by filtering: + ```bash + # Split by status + jq '[.[] | select(.status_code == "FAIL")]' large-scan.json > failed-findings.json + ``` +2. Import findings in batches by region or service +3. Consider running more targeted scans with fewer checks + +#### Import is slow or times out + +Large imports with many findings may take time to process. + +**Expected performance:** +- 10,000 findings: ~60 seconds +- Bulk operations are used for efficiency + +**Solutions:** +1. For very large imports, split into multiple smaller files +2. Import during off-peak hours +3. Check server resources if self-hosting + +### Authentication and Permission Errors + +#### "Authentication required" (401) + +The request is missing authentication credentials. + +**Solutions:** +1. Include the `Authorization` header with your API key or JWT: + ```bash + -H "Authorization: Api-Key YOUR_API_KEY" + # or + -H "Authorization: Bearer YOUR_JWT_TOKEN" + ``` +2. Verify your credentials are valid and not expired + +#### "Permission denied" (403) + +Your user account lacks the required permission. + +**Solution:** +The `MANAGE_SCANS` permission is required for scan imports. Contact your administrator to grant this permission. + +#### "Token expired" + +JWT tokens have a limited lifetime. + +**Solution:** +Obtain a fresh JWT token and retry the request. + +### Data Integrity Issues + +#### "No findings found in the imported file" + +The file was parsed successfully but contains no findings. + +**Solutions:** +1. Verify the scan actually produced findings +2. Check if findings were filtered out during export +3. Ensure the file is not just headers (CSV) or an empty array (JSON) + +#### Duplicate findings + +Importing the same scan multiple times creates duplicate findings. + +**Current behavior:** +- Each import creates a new Scan record +- Findings are created fresh for each import +- Resources are deduplicated (existing resources are reused) + +**Solutions:** +1. Track which scans have been imported to avoid duplicates +2. Use unique scan identifiers to prevent re-importing + +#### Missing compliance mappings + +Compliance information is not appearing for imported findings. + +**Solutions:** +1. **JSON/OCSF**: Verify `unmapped.compliance` contains the framework mappings: + ```json + "unmapped": { + "compliance": { + "CIS-AWS-1.5": ["1.1", "1.2"] + } + } + ``` +2. **CSV**: Check the `COMPLIANCE` column uses the correct format: + ``` + CIS-AWS-1.5: 1.1, 1.2 | PCI-DSS-4.0: 2.1 + ``` + +### Common Error Codes Reference + +| HTTP Status | Error Code | Description | +|-------------|------------|-------------| +| 400 | `invalid_format` | File format not recognized as JSON or CSV | +| 400 | `json_parse_error` | Invalid JSON syntax or structure | +| 400 | `csv_parse_error` | Invalid CSV syntax or structure | +| 400 | `no_findings` | File contains no findings to import | +| 400 | `invalid_provider_id` | Provider ID format is invalid | +| 404 | `provider_not_found` | Specified provider does not exist | +| 413 | `file_too_large` | File exceeds 50MB size limit | +| 422 | `validation_error` | Data validation failed (see details) | +| 422 | `invalid_provider_type` | Provider type not supported | + +### Getting Help + +If you continue to experience issues: + +1. **Check the error details**: API responses include detailed error information with field paths and row numbers +2. **Validate your file**: Use the validation tips above to verify file format +3. **Review the logs**: Server logs contain additional debugging information +4. **Contact support**: Provide the error message, file format, and a sanitized sample of your data + +## Required Permissions + +Importing scans requires the **MANAGE_SCANS** RBAC permission. Users without this permission will not see the import option in the UI and API requests will be rejected. + +For more information about RBAC permissions, refer to the [Prowler App RBAC documentation](/user-guide/tutorials/prowler-app-rbac). diff --git a/ui/CHANGELOG.md b/ui/CHANGELOG.md index 29ba43583b..d21010f2c5 100644 --- a/ui/CHANGELOG.md +++ b/ui/CHANGELOG.md @@ -7,6 +7,7 @@ All notable changes to the **Prowler UI** are documented in this file. ### 🚀 Added - Add search bar when adding a provider [(#9634)](https://github.com/prowler-cloud/prowler/pull/9634) +- Scan import UI with drag-and-drop file upload for importing Prowler CLI scan results (JSON/OCSF and CSV formats) [(#8972)](https://github.com/prowler-cloud/prowler/issues/8972) - Add gradient background to Risk Plot for visual risk context [(#9664)](https://github.com/prowler-cloud/prowler/pull/9664) ### 🔄 Changed diff --git a/ui/README.md b/ui/README.md index e5d76ff1e3..3f6238159b 100644 --- a/ui/README.md +++ b/ui/README.md @@ -107,6 +107,48 @@ pnpm run dev - [Framer Motion](https://www.framer.com/motion/) - [next-themes](https://github.com/pacocoursey/next-themes) +## Configuration + +### Next.js Configuration (`next.config.js`) + +The Next.js configuration includes several important settings: + +#### Security Headers + +- **Content-Security-Policy (CSP)**: Restricts resource loading to prevent XSS attacks +- **X-Content-Type-Options**: Set to `nosniff` to prevent MIME type sniffing +- **Referrer-Policy**: Set to `strict-origin-when-cross-origin` + +#### Server Actions + +Server actions are configured with an extended body size limit to support large scan file imports: + +```javascript +experimental: { + serverActions: { + bodySizeLimit: "1gb", // Supports importing large scan result files + }, +} +``` + +This allows importing Prowler CLI scan results (OCSF JSON or CSV format) up to 1GB in size. + +#### Sentry Integration + +Error tracking is automatically enabled when Sentry environment variables are configured: + +| Variable | Description | +|----------|-------------| +| `NEXT_PUBLIC_SENTRY_DSN` | Client-side Sentry DSN | +| `SENTRY_DSN` | Server-side Sentry DSN | +| `SENTRY_ORG` | Sentry organization slug | +| `SENTRY_PROJECT` | Sentry project slug | +| `SENTRY_AUTH_TOKEN` | Auth token for source map uploads | + +#### Production Build + +In production (`NODE_ENV=production`), the build uses standalone output mode for optimized Docker deployments. This is automatically disabled in CI environments. + ## Git Hooks & Code Review This project uses Git hooks to maintain code quality. When you commit changes to TypeScript/JavaScript files, the pre-commit hook can optionally validate them against our coding standards using Claude Code. diff --git a/ui/actions/scans/import-scan.ts b/ui/actions/scans/import-scan.ts new file mode 100644 index 0000000000..7c63f60743 --- /dev/null +++ b/ui/actions/scans/import-scan.ts @@ -0,0 +1,170 @@ +"use server"; + +import { revalidatePath } from "next/cache"; +import { z } from "zod"; + +import type { + ImportScanResult, + ScanImportApiErrorResponse, + ScanImportApiResponse, +} from "@/components/scans/scan-import/types"; +import { + ACCEPTED_MIME_TYPES, + MAX_IMPORT_FILE_SIZE, +} from "@/components/scans/scan-import/types"; +import { apiBaseUrl, getAuthHeaders, getErrorMessage } from "@/lib"; +import { handleApiError } from "@/lib/server-actions-helper"; + +/** + * Zod schema for validating scan import form data. + */ +const importScanSchema = z.object({ + file: z + .instanceof(File) + .refine((file: File) => file.size > 0, { + message: "File is required", + }) + .refine((file: File) => file.size <= MAX_IMPORT_FILE_SIZE, { + message: `File size exceeds maximum of ${MAX_IMPORT_FILE_SIZE / (1024 * 1024)}MB`, + }) + .refine( + (file: File) => { + const mimeType = file.type || ""; + const fileName = file.name.toLowerCase(); + // Check MIME type or file extension + return ( + ACCEPTED_MIME_TYPES.includes( + mimeType as (typeof ACCEPTED_MIME_TYPES)[number], + ) || + fileName.endsWith(".json") || + fileName.endsWith(".csv") + ); + }, + { + message: "File must be JSON or CSV format", + }, + ), + providerId: z.string().uuid().optional().or(z.literal("")), + createProvider: z.coerce.boolean().default(true), +}); + +/** + * Type for the import scan action result. + */ +export type ImportScanActionResult = + | { success: true; data: ImportScanResult } + | { success: false; error: string; errors?: Record }; + +/** + * Server action to import Prowler CLI scan results. + * + * Accepts a FormData object containing: + * - file: The scan results file (JSON/OCSF or CSV format) + * - providerId: (optional) UUID of existing provider to associate + * - createProvider: (optional) Whether to create provider if not found (default: true) + * + * @param formData - FormData containing the import parameters + * @returns Promise with the import result or error + */ +export async function importScan( + formData: FormData, +): Promise { + try { + // Extract form data + const file = formData.get("file") as File | null; + const providerId = formData.get("providerId") as string | null; + const createProvider = formData.get("createProvider") as string | null; + + // Validate form data + const validationResult = importScanSchema.safeParse({ + file, + providerId: providerId || undefined, + createProvider: createProvider !== "false", + }); + + if (!validationResult.success) { + const fieldErrors = validationResult.error.flatten().fieldErrors; + return { + success: false, + error: "Validation failed", + errors: { + file: fieldErrors.file?.[0] || "", + providerId: fieldErrors.providerId?.[0] || "", + createProvider: fieldErrors.createProvider?.[0] || "", + }, + }; + } + + const validatedData = validationResult.data; + + // Get auth headers (without Content-Type for multipart) + const headers = await getAuthHeaders({ contentType: false }); + + // Build multipart form data for API request + const apiFormData = new FormData(); + apiFormData.append("file", validatedData.file); + + if (validatedData.providerId) { + apiFormData.append("provider_id", validatedData.providerId); + } + + apiFormData.append("create_provider", String(validatedData.createProvider)); + + // Make API request with extended timeout for large files (5 minutes) + const url = new URL(`${apiBaseUrl}/scans/import`); + const controller = new AbortController(); + const timeoutId = setTimeout(() => controller.abort(), 5 * 60 * 1000); + + let response: Response; + try { + response = await fetch(url.toString(), { + method: "POST", + headers, + body: apiFormData, + signal: controller.signal, + }); + } finally { + clearTimeout(timeoutId); + } + + // Handle response + if (!response.ok) { + const errorData = (await response.json()) as ScanImportApiErrorResponse; + const firstError = errorData.errors?.[0]; + + return { + success: false, + error: + firstError?.detail || + firstError?.title || + `Import failed with status ${response.status}`, + }; + } + + const responseData = (await response.json()) as ScanImportApiResponse; + const attributes = responseData.data.attributes; + + // Revalidate scans page to show the new scan + revalidatePath("/scans"); + + return { + success: true, + data: { + scanId: attributes.scan_id, + providerId: attributes.provider_id, + findingsCount: attributes.findings_count, + resourcesCount: attributes.resources_count, + status: attributes.status, + providerCreated: attributes.provider_created, + warnings: attributes.warnings, + }, + }; + } catch (error) { + console.error("Error importing scan:", error); + const apiError = handleApiError(error); + return { + success: false, + error: apiError.error || getErrorMessage(error), + }; + } +} diff --git a/ui/actions/scans/index.ts b/ui/actions/scans/index.ts index 7e4b1aceeb..5afa631da8 100644 --- a/ui/actions/scans/index.ts +++ b/ui/actions/scans/index.ts @@ -1 +1,2 @@ +export * from "./import-scan"; export * from "./scans"; diff --git a/ui/app/(prowler)/scans/page.tsx b/ui/app/(prowler)/scans/page.tsx index 3ba35d2a5d..6844672072 100644 --- a/ui/app/(prowler)/scans/page.tsx +++ b/ui/app/(prowler)/scans/page.tsx @@ -1,3 +1,4 @@ +import { Divider } from "@heroui/divider"; import { Spacer } from "@heroui/spacer"; import { Suspense } from "react"; @@ -12,6 +13,7 @@ import { ScansFilters, } from "@/components/scans"; import { LaunchScanWorkflow } from "@/components/scans/launch-workflow"; +import { ScanImportSection } from "@/components/scans/scan-import"; import { SkeletonTableScans } from "@/components/scans/table"; import { ColumnGetScans } from "@/components/scans/table/scans"; import { ContentLayout } from "@/components/ui"; @@ -51,6 +53,15 @@ export default async function Scans({ connected: provider.attributes.connection.connected, })) || []; + // Provider info formatted for ScanImportSection + const importProviders = + providersData?.data?.map((provider: ProviderProps) => ({ + id: provider.id, + provider: provider.attributes.provider, + uid: provider.attributes.uid, + alias: provider.attributes.alias, + })) || []; + const thereIsNoProviders = !providersData?.data || providersData.data.length === 0; @@ -102,6 +113,16 @@ export default async function Scans({ )} + {/* Scan Import Section */} + {hasManageScansPermission && ( + <> + + + + + + )} + ; +``` + +## Request Format + +### Content-Type + +``` +multipart/form-data +``` + +### Form Fields + +| Field | Type | Required | Description | +|-------|------|----------|-------------| +| `file` | File | Yes | Scan results file (JSON or CSV format) | +| `provider_id` | string (UUID) | No | UUID of existing provider to associate with | +| `create_provider` | string ("true"/"false") | No | Create provider if not found (default: "true") | + +### File Requirements + +- Maximum size: 1GB (1,073,741,824 bytes) +- Supported formats: JSON (OCSF), CSV (Prowler CLI output) +- MIME types: `application/json`, `text/csv`, `text/plain` + +## Response Format + +All responses follow the JSON:API specification. + +### Success Response (201 Created) + +```json +{ + "data": { + "type": "scan-imports", + "id": "550e8400-e29b-41d4-a716-446655440000", + "attributes": { + "scan_id": "550e8400-e29b-41d4-a716-446655440000", + "provider_id": "123e4567-e89b-12d3-a456-426614174000", + "findings_count": 1500, + "resources_count": 250, + "status": "completed", + "provider_created": false, + "warnings": [] + } + } +} +``` + +### Error Response (4xx/5xx) + +```json +{ + "errors": [ + { + "status": "400", + "code": "invalid_format", + "title": "Invalid file format", + "detail": "File must be JSON or CSV format", + "source": { + "pointer": "/data/attributes/file" + } + } + ] +} +``` + +## Error Codes + +| Code | HTTP Status | Description | +|------|-------------|-------------| +| `file_too_large` | 413 | File exceeds 1GB limit | +| `invalid_format` | 400 | File is not JSON or CSV | +| `no_findings` | 400 | No findings found in file | +| `invalid_provider_id` | 400 | Provider ID format invalid | +| `provider_not_found` | 404 | Specified provider doesn't exist | +| `internal_error` | 500 | Unexpected server error | + +## Usage Examples + +### JavaScript/TypeScript (Browser) + +```typescript +async function importScan(file: File, providerId?: string) { + const formData = new FormData(); + formData.append("file", file); + + if (providerId) { + formData.append("provider_id", providerId); + } + formData.append("create_provider", "true"); + + const response = await fetch("/api/scans/import", { + method: "POST", + body: formData, + }); + + const data = await response.json(); + + if (!response.ok) { + throw new Error(data.errors?.[0]?.detail || "Import failed"); + } + + return data.data.attributes; +} +``` + +### React Component Usage + +```typescript +// From ui/components/scans/scan-import/scan-import-section.tsx +const importPromise = fetch("/api/scans/import", { + method: "POST", + body: formData, +}).then(async (res) => { + const responseData = await res.json(); + if (!res.ok) { + const firstError = responseData.errors?.[0]; + return { + success: false as const, + error: firstError?.detail || firstError?.title || `Import failed`, + }; + } + const attributes = responseData.data?.attributes; + return { + success: true as const, + data: { + scanId: attributes?.scan_id, + providerId: attributes?.provider_id, + findingsCount: attributes?.findings_count, + resourcesCount: attributes?.resources_count, + status: attributes?.status, + providerCreated: attributes?.provider_created, + warnings: attributes?.warnings, + }, + }; +}); +``` + +### cURL + +```bash +# Import JSON file with auto-detect provider +curl -X POST http://localhost:3000/api/scans/import \ + -F "file=@prowler-output.json" \ + -F "create_provider=true" + +# Import CSV file with specific provider +curl -X POST http://localhost:3000/api/scans/import \ + -F "file=@prowler-output.csv" \ + -F "provider_id=123e4567-e89b-12d3-a456-426614174000" \ + -F "create_provider=false" +``` + +## Architecture + +``` +┌─────────────────┐ ┌──────────────────┐ ┌─────────────────┐ +│ Browser/UI │────▶│ Next.js Route │────▶│ Django API │ +│ │ │ /api/scans/ │ │ /api/v1/scans/ │ +│ FormData with │ │ import │ │ import │ +│ file upload │ │ │ │ │ +└─────────────────┘ └──────────────────┘ └─────────────────┘ + │ │ + │ getAuthHeaders() │ ScanImportService + │ apiBaseUrl │ OCSFParser/CSVParser + ▼ ▼ + ┌──────────────────┐ ┌─────────────────┐ + │ Authentication │ │ Database │ + │ JWT Token │ │ PostgreSQL │ + └──────────────────┘ └─────────────────┘ +``` + +## Implementation Details + +### Route Configuration + +```typescript +// Ensures Node.js runtime for file handling +export const runtime = "nodejs"; + +// Disables static optimization for dynamic auth +export const dynamic = "force-dynamic"; +``` + +### File Size Validation + +Early validation prevents unnecessary memory allocation: + +```typescript +const contentLength = request.headers.get("content-length"); +if (contentLength && parseInt(contentLength, 10) > MAX_FILE_SIZE) { + return NextResponse.json( + { errors: [{ title: "File too large", code: "file_too_large" }] }, + { status: 413 } + ); +} +``` + +### Authentication + +Uses `getAuthHeaders()` from `@/lib` to obtain JWT authentication headers: + +```typescript +const headers = await getAuthHeaders({ contentType: false }); +``` + +The `contentType: false` option allows `fetch` to set the correct `multipart/form-data` boundary automatically. + +### Backend Forwarding + +The route forwards the request to the Django backend: + +```typescript +const backendUrl = `${apiBaseUrl}/scans/import`; +const response = await fetch(backendUrl, { + method: "POST", + headers, + body: formData, +}); +``` + +## Related Files + +| File | Description | +|------|-------------| +| `ui/components/scans/scan-import/` | React components for import UI | +| `ui/components/scans/scan-import/types.ts` | TypeScript type definitions | +| `api/src/backend/api/services/scan_import.py` | Backend import service | +| `api/src/backend/api/parsers/` | OCSF and CSV parsers | +| `api/src/backend/api/v1/views.py` | Django API view | + +## Configuration + +### Next.js (`next.config.js`) + +```javascript +experimental: { + serverActions: { + bodySizeLimit: "1gb", + }, +} +``` + +### Django (`api/src/backend/config/django/base.py`) + +```python +DATA_UPLOAD_MAX_MEMORY_SIZE = 1024 * 1024 * 1024 # 1GB +FILE_UPLOAD_MAX_MEMORY_SIZE = 1024 * 1024 * 1024 # 1GB +``` + +## Testing + +### E2E Tests + +See `ui/tests/scan-import.spec.ts` for Playwright E2E tests covering: + +- JSON file upload flow +- CSV file upload flow +- Error handling display +- Success navigation + +### Manual Testing + +1. Navigate to the Scans page +2. Expand the "Import Scan Results" section +3. Select a Prowler CLI output file (JSON or CSV) +4. Optionally select a provider or use auto-detect +5. Click "Import Scan Results" +6. Verify the scan appears in the list + +## Troubleshooting + +### File Too Large Error + +If you receive a 413 error: + +1. Verify file size is under 1GB +2. Check Next.js `serverActions.bodySizeLimit` configuration +3. Check Django `DATA_UPLOAD_MAX_MEMORY_SIZE` setting + +### Authentication Errors + +If you receive a 401/403 error: + +1. Verify user is logged in +2. Check JWT token is valid +3. Verify user has `MANAGE_SCANS` permission + +### Invalid Format Error + +If you receive an invalid format error: + +1. Verify file is valid JSON or CSV +2. For JSON: Must be OCSF format (array of findings) +3. For CSV: Must be semicolon-delimited Prowler output + +## See Also + +- [Scan Import Feature Spec](/.kiro/specs/scan-results-import/) +- [API Services Documentation](/api/src/backend/api/services/README.md) +- [API Configuration](/api/docs/configuration.md) diff --git a/ui/app/api/scans/import/route.ts b/ui/app/api/scans/import/route.ts new file mode 100644 index 0000000000..f89b4e2465 --- /dev/null +++ b/ui/app/api/scans/import/route.ts @@ -0,0 +1,144 @@ +/** + * API Route for importing scan results. + * + * This route handles large file uploads by streaming directly to the backend API, + * bypassing Next.js server action body size limits for improved reliability + * with large files up to 1GB. + * + * @module app/api/scans/import/route + */ + +import { NextRequest, NextResponse } from "next/server"; + +import { apiBaseUrl, getAuthHeaders } from "@/lib"; + +/** + * Route segment config to allow large request bodies. + * This is required for Next.js 13+ App Router API routes. + */ +export const runtime = "nodejs"; +export const dynamic = "force-dynamic"; + +/** + * Maximum file size for scan imports (1GB). + */ +const MAX_FILE_SIZE = 1024 * 1024 * 1024; + +/** + * POST handler for scan import. + * + * Receives multipart form data containing Prowler CLI scan results (JSON/OCSF or CSV) + * and forwards it to the Django backend API for processing. + * + * This API route approach provides reliable handling for large file uploads up to 1GB, + * matching the Django backend's `DATA_UPLOAD_MAX_MEMORY_SIZE` limit. + * + * @param request - The incoming Next.js request containing multipart form data + * @returns JSON response with import results or error details + * + * @example + * // Request format (multipart/form-data): + * // - file: The scan results file (JSON or CSV) + * // - provider_id: Optional UUID of existing provider + * // - create_provider: Boolean to create provider if not found (default: true) + * + * @example + * // Success response (201): + * // { + * // "data": { + * // "type": "scan-imports", + * // "attributes": { + * // "scan_id": "uuid", + * // "findings_count": 1500, + * // "resources_count": 250 + * // } + * // } + * // } + */ +export async function POST(request: NextRequest) { + try { + // Early validation: Check content length before processing to avoid + // unnecessary memory allocation for oversized requests + const contentLength = request.headers.get("content-length"); + if (contentLength && parseInt(contentLength, 10) > MAX_FILE_SIZE) { + return NextResponse.json( + { + errors: [ + { + title: "File too large", + detail: `File size exceeds maximum of ${MAX_FILE_SIZE / (1024 * 1024 * 1024)}GB`, + code: "file_too_large", + }, + ], + }, + { status: 413 }, + ); + } + + // Parse the multipart form data from the request + // This includes the file and optional provider configuration + const formData = await request.formData(); + + // Get authentication headers for the backend API call + // contentType: false allows fetch to set the correct multipart boundary + const headers = await getAuthHeaders({ contentType: false }); + + // Construct the backend API URL and forward the request + // The Django backend handles parsing, validation, and database operations + const backendUrl = `${apiBaseUrl}/scans/import`; + + const response = await fetch(backendUrl, { + method: "POST", + headers, + body: formData, + }); + + // Parse and forward the backend response + // This preserves the JSON:API format from the Django backend + const data = await response.json(); + + // Return with the same status code to preserve error semantics + // (201 for success, 400 for validation errors, etc.) + return NextResponse.json(data, { status: response.status }); + } catch (error) { + // Log the error for debugging and monitoring + console.error("Scan import API route error:", error); + + // Handle specific error types with appropriate responses + if (error instanceof Error) { + // Check for body size exceeded errors from the request parsing + if (error.message.includes("body exceeded")) { + return NextResponse.json( + { + errors: [ + { + title: "File too large", + detail: "The file size exceeds the maximum allowed limit", + code: "file_too_large", + }, + ], + }, + { status: 413 }, + ); + } + } + + // Generic error response for unexpected failures + // Returns JSON:API compliant error format + return NextResponse.json( + { + errors: [ + { + title: "Import failed", + detail: + error instanceof Error + ? error.message + : "An unexpected error occurred", + code: "internal_error", + }, + ], + }, + { status: 500 }, + ); + } +} diff --git a/ui/components/findings/table/finding-detail.tsx b/ui/components/findings/table/finding-detail.tsx index 28a72fbe8c..5fdb6b8a9a 100644 --- a/ui/components/findings/table/finding-detail.tsx +++ b/ui/components/findings/table/finding-detail.tsx @@ -194,7 +194,7 @@ export const FindingDetail = ({ {/* Recommendation section */} - {attributes.check_metadata.remediation.recommendation.text && ( + {attributes.check_metadata.remediation.recommendation?.text && (
@@ -205,7 +205,7 @@ export const FindingDetail = ({ {attributes.check_metadata.remediation.recommendation - .url && ( + ?.url && ( @@ -232,7 +232,7 @@ export const FindingDetail = ({ )} {/* Remediation Steps section */} - {attributes.check_metadata.remediation.code.other && ( + {attributes.check_metadata.remediation.code?.other && ( {attributes.check_metadata.remediation.code.other} diff --git a/ui/components/icons/Icons.tsx b/ui/components/icons/Icons.tsx index ba353879ac..9f5c356c95 100644 --- a/ui/components/icons/Icons.tsx +++ b/ui/components/icons/Icons.tsx @@ -1254,3 +1254,369 @@ export const SidebarCollapseIcon: React.FC = ({ ); }; + +export const UploadIcon: React.FC = ({ + size = 24, + width, + height, + ...props +}) => { + return ( + + + + + + ); +}; + +export const ChevronUpIcon: React.FC = ({ + size = 24, + width, + height, + strokeWidth = 1.5, + ...props +}) => ( + +); + +export const FileIcon: React.FC = ({ + size = 24, + width, + height, + ...props +}) => { + return ( + + + + + ); +}; + +export const UploadCloudIcon: React.FC = ({ + size = 24, + width, + height, + ...props +}) => { + return ( + + + + + + ); +}; + +export const XIcon: React.FC = ({ + size = 24, + width, + height, + ...props +}) => { + return ( + + + + + ); +}; + +export const AlertCircleIcon: React.FC = ({ + size = 24, + width, + height, + ...props +}) => { + return ( + + + + + + ); +}; + +export const CheckCircleIcon: React.FC = ({ + size = 24, + width, + height, + ...props +}) => { + return ( + + + + + ); +}; + +export const DatabaseIcon: React.FC = ({ + size = 24, + width, + height, + ...props +}) => { + return ( + + + + + + ); +}; + +export const ExternalLinkIcon: React.FC = ({ + size = 24, + width, + height, + ...props +}) => { + return ( + + + + + + ); +}; + +export const FileSearchIcon: React.FC = ({ + size = 24, + width, + height, + ...props +}) => { + return ( + + + + + + + ); +}; + +export const FileTextIcon: React.FC = ({ + size = 24, + width, + height, + ...props +}) => { + return ( + + + + + + + + ); +}; + +export const Loader2Icon: React.FC = ({ + size = 24, + width, + height, + className, + ...props +}) => { + return ( + + + + ); +}; + +export const ServerIcon: React.FC = ({ + size = 24, + width, + height, + ...props +}) => { + return ( + + + + + + + ); +}; + +export const SettingsIcon: React.FC = ({ + size = 24, + width, + height, + ...props +}) => { + return ( + + + + + ); +}; diff --git a/ui/components/scans/index.ts b/ui/components/scans/index.ts index a1493163cc..c374d30889 100644 --- a/ui/components/scans/index.ts +++ b/ui/components/scans/index.ts @@ -1,4 +1,15 @@ +/** + * Scans Components + * + * This module exports components for scan management, including: + * - Auto-refresh functionality for scan status updates + * - Provider connection status indicators + * - Scan filtering controls + * - Scan import functionality for Prowler CLI results + */ + export * from "./auto-refresh"; export * from "./no-providers-added"; export * from "./no-providers-connected"; +export * from "./scan-import"; export * from "./scans-filters"; diff --git a/ui/components/scans/scan-import/index.ts b/ui/components/scans/scan-import/index.ts new file mode 100644 index 0000000000..4391868ed4 --- /dev/null +++ b/ui/components/scans/scan-import/index.ts @@ -0,0 +1,16 @@ +/** + * Scan Import Components + * + * This module exports components for importing Prowler CLI scan results + * (JSON/OCSF and CSV formats) into the Prowler API. + */ + +export { ScanImportSection } from "./scan-import-section"; +export type { + ImportScanError, + ImportScanResult, + ImportStatus, + ProcessingStepInfo, + ScanImportFormData, + ScanImportSectionProps, +} from "./types"; diff --git a/ui/components/scans/scan-import/scan-import-dropzone.tsx b/ui/components/scans/scan-import/scan-import-dropzone.tsx new file mode 100644 index 0000000000..a42c6bc3c0 --- /dev/null +++ b/ui/components/scans/scan-import/scan-import-dropzone.tsx @@ -0,0 +1,284 @@ +"use client"; + +import { useCallback, useRef, useState } from "react"; + +import { FileIcon, UploadCloudIcon, XIcon } from "@/components/icons"; +import { Button } from "@/components/shadcn/button/button"; +import { cn } from "@/lib/utils"; + +import type { ScanImportDropzoneProps } from "./types"; +import { + ACCEPTED_FILE_EXTENSIONS, + ACCEPTED_MIME_TYPES, + MAX_IMPORT_FILE_SIZE, +} from "./types"; + +/** + * Formats file size in bytes to a human-readable string. + */ +function formatFileSize(bytes: number): string { + if (bytes === 0) return "0 Bytes"; + const k = 1024; + const sizes = ["Bytes", "KB", "MB", "GB"]; + const i = Math.floor(Math.log(bytes) / Math.log(k)); + return `${parseFloat((bytes / Math.pow(k, i)).toFixed(2))} ${sizes[i]}`; +} + +/** + * Validates if a file is acceptable for import. + */ +function isValidFile( + file: File, + maxSize: number, +): { valid: boolean; error?: string } { + // Check file size + if (file.size > maxSize) { + return { + valid: false, + error: `File size exceeds maximum of ${formatFileSize(maxSize)}`, + }; + } + + // Check file type by extension or MIME type + const fileName = file.name.toLowerCase(); + const mimeType = file.type || ""; + + const hasValidExtension = ACCEPTED_FILE_EXTENSIONS.some((ext) => + fileName.endsWith(ext), + ); + const hasValidMimeType = ACCEPTED_MIME_TYPES.includes( + mimeType as (typeof ACCEPTED_MIME_TYPES)[number], + ); + + if (!hasValidExtension && !hasValidMimeType) { + return { + valid: false, + error: "File must be JSON or CSV format", + }; + } + + return { valid: true }; +} + +/** + * Dropzone component for uploading scan result files. + * Supports drag-and-drop and click-to-select functionality. + */ +export function ScanImportDropzone({ + file, + onFileSelect, + disabled = false, + acceptedTypes = [".json", ".csv"], + maxSize = MAX_IMPORT_FILE_SIZE, +}: ScanImportDropzoneProps) { + const [isDragOver, setIsDragOver] = useState(false); + const [error, setError] = useState(null); + const inputRef = useRef(null); + + const handleDragOver = useCallback( + (e: React.DragEvent) => { + e.preventDefault(); + e.stopPropagation(); + if (!disabled) { + setIsDragOver(true); + } + }, + [disabled], + ); + + const handleDragLeave = useCallback((e: React.DragEvent) => { + e.preventDefault(); + e.stopPropagation(); + setIsDragOver(false); + }, []); + + const handleDrop = useCallback( + (e: React.DragEvent) => { + e.preventDefault(); + e.stopPropagation(); + setIsDragOver(false); + + if (disabled) return; + + const droppedFile = e.dataTransfer.files?.[0]; + if (!droppedFile) return; + + const validation = isValidFile(droppedFile, maxSize); + if (!validation.valid) { + setError(validation.error || "Invalid file"); + return; + } + + setError(null); + onFileSelect(droppedFile); + }, + [disabled, maxSize, onFileSelect], + ); + + const handleFileChange = useCallback( + (e: React.ChangeEvent) => { + const selectedFile = e.target.files?.[0]; + if (!selectedFile) return; + + const validation = isValidFile(selectedFile, maxSize); + if (!validation.valid) { + setError(validation.error || "Invalid file"); + // Reset input + if (inputRef.current) { + inputRef.current.value = ""; + } + return; + } + + setError(null); + onFileSelect(selectedFile); + }, + [maxSize, onFileSelect], + ); + + const handleClick = useCallback(() => { + if (!disabled) { + inputRef.current?.click(); + } + }, [disabled]); + + const handleRemoveFile = useCallback( + (e: React.MouseEvent) => { + e.stopPropagation(); + onFileSelect(null); + setError(null); + if (inputRef.current) { + inputRef.current.value = ""; + } + }, + [onFileSelect], + ); + + const handleKeyDown = useCallback( + (e: React.KeyboardEvent) => { + if (e.key === "Enter" || e.key === " ") { + e.preventDefault(); + handleClick(); + } + }, + [handleClick], + ); + + return ( +
+ + + {file ? ( + // File selected state +
+
+
+ +
+
+

+ {file.name} +

+

+ {formatFileSize(file.size)} +

+
+
+ +
+ ) : ( + // Dropzone state - dashed border with hover effects +
+
+ +
+
+

+ {isDragOver ? "Drop file here" : "Drag and drop your scan file"} +

+

+ or click to browse +

+
+

+ Supports JSON and CSV formats (max {formatFileSize(maxSize)}) +

+
+ )} + + {error && ( +

+ {error} +

+ )} +
+ ); +} diff --git a/ui/components/scans/scan-import/scan-import-form.tsx b/ui/components/scans/scan-import/scan-import-form.tsx new file mode 100644 index 0000000000..385cf3cf35 --- /dev/null +++ b/ui/components/scans/scan-import/scan-import-form.tsx @@ -0,0 +1,308 @@ +"use client"; + +import { zodResolver } from "@hookform/resolvers/zod"; +import { useCallback, useState } from "react"; +import { useForm } from "react-hook-form"; +import { z } from "zod"; + +import { Checkbox } from "@/components/shadcn/checkbox/checkbox"; +import { Label } from "@/components/ui"; +import { + Form, + FormControl, + FormDescription, + FormField, + FormItem, + FormLabel, + FormMessage, +} from "@/components/ui/form"; +import { + Select, + SelectContent, + SelectItem, + SelectTrigger, + SelectValue, +} from "@/components/ui/select"; +import { cn } from "@/lib/utils"; +import { getProviderDisplayName, ProviderType } from "@/types/providers"; + +import { ScanImportDropzone } from "./scan-import-dropzone"; +import type { ScanImportFormData, ScanImportFormProps } from "./types"; +import { ACCEPTED_MIME_TYPES, MAX_IMPORT_FILE_SIZE } from "./types"; + +/** + * Sentinel value for auto-detect provider option. + * Used because Radix UI Select doesn't allow empty string values. + */ +const AUTO_DETECT_VALUE = "__auto_detect__"; + +/** + * Zod schema for the scan import form. + * + * Validates: + * - file: Required, must be JSON or CSV format, max 50MB + * - providerId: Optional UUID string + * - createProvider: Boolean, defaults to true + */ +export const scanImportFormSchema = z.object({ + file: z + .instanceof(File, { message: "Please select a file to import" }) + .nullable() + .refine((file) => file !== null, { + message: "Please select a file to import", + }) + .refine( + (file) => { + if (!file) return true; + return file.size <= MAX_IMPORT_FILE_SIZE; + }, + { + message: `File size exceeds maximum of ${MAX_IMPORT_FILE_SIZE / (1024 * 1024)}MB`, + }, + ) + .refine( + (file) => { + if (!file) return true; + const mimeType = file.type || ""; + const fileName = file.name.toLowerCase(); + // Check MIME type or file extension + return ( + ACCEPTED_MIME_TYPES.includes( + mimeType as (typeof ACCEPTED_MIME_TYPES)[number], + ) || + fileName.endsWith(".json") || + fileName.endsWith(".csv") + ); + }, + { + message: "File must be JSON or CSV format", + }, + ), + providerId: z.string().optional(), + createProvider: z.boolean(), +}); + +/** + * Type inferred from the scan import form schema. + */ +export type ScanImportFormValues = z.infer; + +/** + * Form component for importing scan results. + * + * Includes: + * - File dropzone for selecting JSON/CSV files + * - Optional provider selection dropdown + * - Checkbox to create provider if not found + */ +export function ScanImportForm({ + onSubmit, + isSubmitting = false, + providers = [], +}: ScanImportFormProps) { + const [selectedFile, setSelectedFile] = useState(null); + + const form = useForm({ + resolver: zodResolver(scanImportFormSchema), + defaultValues: { + file: null, + providerId: AUTO_DETECT_VALUE, + createProvider: true, + }, + }); + + const handleFileSelect = useCallback( + (file: File | null) => { + setSelectedFile(file); + form.setValue("file", file, { shouldValidate: true }); + }, + [form], + ); + + const handleSubmit = useCallback( + (values: ScanImportFormValues) => { + // Convert sentinel value back to undefined for API call + const providerId = + values.providerId === AUTO_DETECT_VALUE ? undefined : values.providerId; + + const formData: ScanImportFormData = { + file: values.file, + providerId: providerId || undefined, + createProvider: values.createProvider, + }; + onSubmit(formData); + }, + [onSubmit], + ); + + // Group providers by type for better organization + const groupedProviders = providers.reduce( + (acc, provider) => { + const type = provider.provider; + if (!acc[type]) { + acc[type] = []; + } + acc[type].push(provider); + return acc; + }, + {} as Record, + ); + + const sortedProviderTypes = Object.keys( + groupedProviders, + ).sort() as ProviderType[]; + + return ( +
+ + {/* File Upload Section */} + ( + + + Scan Results File + + + + + {fieldState.error && ( + {fieldState.error.message} + )} + + )} + /> + + {/* Provider Selection Section */} + ( + + + Provider (Optional) + + + Associate the import with an existing provider, or leave empty + to auto-detect from the scan data. + + + + + )} + /> + + {/* Create Provider Checkbox */} + ( + + + + +
+ +

+ If the provider from the scan data doesn't exist, create + it automatically. +

+
+ + )} + /> + + {/* Submit Button */} + + + + ); +} diff --git a/ui/components/scans/scan-import/scan-import-progress.tsx b/ui/components/scans/scan-import/scan-import-progress.tsx new file mode 100644 index 0000000000..a1e6a09cd7 --- /dev/null +++ b/ui/components/scans/scan-import/scan-import-progress.tsx @@ -0,0 +1,485 @@ +"use client"; + +import { Progress } from "@heroui/progress"; +import Link from "next/link"; +import { useState } from "react"; + +import { + AlertCircleIcon, + CheckCircleIcon, + ChevronDownIcon, + ChevronUpIcon, + DatabaseIcon, + ExternalLinkIcon, + FileSearchIcon, + FileTextIcon, + Loader2Icon, + ServerIcon, + SettingsIcon, + XIcon, +} from "@/components/icons"; +import { Button } from "@/components/shadcn/button/button"; +import { cn } from "@/lib/utils"; + +import type { + ImportScanError, + ProcessingStep, + ScanImportProgressProps, +} from "./types"; + +/** + * Formats a number with thousand separators. + */ +function formatNumber(num: number): string { + return num.toLocaleString(); +} + +/** + * Get the icon for a processing step. + */ +function getStepIcon(step: ProcessingStep, isActive: boolean) { + const iconClass = cn( + "h-4 w-4", + isActive ? "text-button-primary" : "text-text-neutral-tertiary", + ); + + switch (step) { + case "parsing": + return ; + case "validating": + return ; + case "resolving-provider": + return ; + case "creating-resources": + return ; + case "creating-findings": + return ; + case "finalizing": + return ; + default: + return ( + + ); + } +} + +/** + * Get the display label for a processing step. + */ +function getStepLabel(step: ProcessingStep): string { + switch (step) { + case "parsing": + return "Parsing file"; + case "validating": + return "Validating data"; + case "resolving-provider": + return "Resolving provider"; + case "creating-resources": + return "Creating resources"; + case "creating-findings": + return "Creating findings"; + case "finalizing": + return "Finalizing import"; + default: + return "Processing"; + } +} + +/** + * Processing steps in order for display. + */ +const PROCESSING_STEPS: ProcessingStep[] = [ + "parsing", + "validating", + "resolving-provider", + "creating-resources", + "creating-findings", + "finalizing", +]; + +/** + * Progress component for displaying scan import status. + * + * Shows different states: + * - idle: Nothing displayed + * - uploading: Upload progress bar + * - processing: Processing indicator with step details + * - completed: Success message with scan link + * - error: Error message with details + */ +export function ScanImportProgress({ + status, + progress = 0, + processingStep, + result, + error, + errors, + onReset, +}: ScanImportProgressProps) { + // State for expanding/collapsing error details + const [showAllErrors, setShowAllErrors] = useState(false); + + // Combine single error and errors array for unified handling + const allErrors: ImportScanError[] = errors?.length + ? errors + : error + ? [error] + : []; + + // Don't render anything in idle state + if (status === "idle") { + return null; + } + + // Get current step index for progress calculation + const currentStepIndex = processingStep?.step + ? PROCESSING_STEPS.indexOf(processingStep.step) + : 0; + const processingProgress = Math.round( + ((currentStepIndex + 1) / PROCESSING_STEPS.length) * 100, + ); + + return ( +
+ {/* Uploading State */} + {status === "uploading" && ( +
+
+
+ +
+
+

+ Uploading scan results... +

+

+ {progress}% complete +

+
+
+ +
+ )} + + {/* Processing State */} + {status === "processing" && ( +
+
+
+ +
+
+

+ Processing scan data... +

+

+ {processingStep?.message || + (processingStep?.step + ? getStepLabel(processingStep.step) + : "Creating findings and resources")} +

+
+
+ + {/* Processing Progress Bar */} + + + {/* Processing Steps */} +
+ {PROCESSING_STEPS.map((step, index) => { + const isCompleted = index < currentStepIndex; + const isActive = + processingStep?.step === step || index === currentStepIndex; + const isPending = index > currentStepIndex; + + return ( +
+ {isCompleted ? ( + + ) : isActive ? ( + + ) : ( + getStepIcon(step, false) + )} + + {getStepLabel(step)} + +
+ ); + })} +
+
+ )} + + {/* Success State */} + {status === "completed" && result && ( +
+
+
+
+ +
+
+

+ Import completed successfully +

+

+ Your scan results have been imported +

+
+
+ {onReset && ( + + )} +
+ + {/* Import Statistics */} +
+
+

Findings

+

+ {formatNumber(result.findingsCount)} +

+
+
+

Resources

+

+ {formatNumber(result.resourcesCount)} +

+
+
+

Provider

+

+ {result.providerCreated ? "Created new" : "Existing"} +

+
+
+ + {/* Warnings if any */} + {result.warnings && result.warnings.length > 0 && ( +
+

+ Warnings ({result.warnings.length}) +

+
    + {result.warnings.slice(0, 3).map((warning, index) => ( +
  • + • {warning} +
    • + ))} + {result.warnings.length > 3 && ( +
  • + ...and {result.warnings.length - 3} more +
    • + )} +
+
+ )} + + {/* View Scan Link */} + + + View Scan Findings + + +
+ )} + + {/* Error State */} + {status === "error" && allErrors.length > 0 && ( +
+
+
+
+ +
+
+

+ {allErrors[0]?.title || "Import failed"} +

+

+ {allErrors[0]?.detail || + "An error occurred while importing the scan"} +

+
+
+ {onReset && ( + + )} +
+ + {/* Primary Error Details */} + {allErrors[0]?.source?.pointer && ( +
+

+ Error location +

+ + {allErrors[0].source.pointer} + +
+ )} + + {/* Primary Error Code */} + {allErrors[0]?.code && ( +

+ Error code: {allErrors[0].code} +

+ )} + + {/* Additional Errors Section */} + {allErrors.length > 1 && ( +
+ + + {showAllErrors && ( +
+ {allErrors.slice(1).map((err, index) => ( +
+

+ {err.title || "Error"} +

+

+ {err.detail} +

+ {err.source?.pointer && ( + + Location: {err.source.pointer} + + )} + {err.code && ( +

+ Code: {err.code} +

+ )} +
+ ))} +
+ )} +
+ )} + + {/* Validation Error Summary */} + {allErrors.some((e) => e.code === "validation_error") && ( +
+

+ Troubleshooting tips +

+
    +
  • + • Ensure the file is a valid Prowler JSON (OCSF) or CSV output +
    • +
  • + • Check that all required fields are present in the file +
    • +
  • • Verify the file is not corrupted or truncated
    • +
+
+ )} + + {/* Try Again Button */} + {onReset && ( + + )} +
+ )} +
+ ); +} diff --git a/ui/components/scans/scan-import/scan-import-section.tsx b/ui/components/scans/scan-import/scan-import-section.tsx new file mode 100644 index 0000000000..a8f55b6ace --- /dev/null +++ b/ui/components/scans/scan-import/scan-import-section.tsx @@ -0,0 +1,316 @@ +"use client"; + +import { AnimatePresence, motion } from "framer-motion"; +import { useRouter } from "next/navigation"; +import { useCallback, useState } from "react"; + +import { ChevronDownIcon, ChevronUpIcon, UploadIcon } from "@/components/icons"; +import { Button } from "@/components/shadcn/button/button"; +import { cn } from "@/lib/utils"; +import { ProviderType } from "@/types/providers"; + +import { ScanImportForm } from "./scan-import-form"; +import { ScanImportProgress } from "./scan-import-progress"; +import type { + ImportScanError, + ImportScanResult, + ImportStatus, + ProcessingStepInfo, + ScanImportFormData, + ScanImportSectionProps, +} from "./types"; + +/** + * Provider info type for the import section. + */ +interface ProviderInfo { + id: string; + provider: ProviderType; + uid: string; + alias: string; +} + +/** + * Props for the ScanImportSection component with providers. + */ +interface ScanImportSectionWithProvidersProps extends ScanImportSectionProps { + /** Available providers for selection */ + providers?: ProviderInfo[]; +} + +/** + * Main section component for importing scan results. + * + * Composes the dropzone, form, and progress components to provide + * a complete scan import experience. Manages the upload state machine + * and handles form submission. + * + * States: + * - idle: Initial state, form is visible + * - uploading: File is being uploaded to the server + * - processing: Server is processing the scan data + * - completed: Import finished successfully + * - error: Import failed with errors + */ +export function ScanImportSection({ + onImportComplete, + providers = [], +}: ScanImportSectionWithProvidersProps) { + const router = useRouter(); + + // Collapsible state + const [isExpanded, setIsExpanded] = useState(false); + + // Upload state machine + const [status, setStatus] = useState("idle"); + const [progress, setProgress] = useState(0); + const [processingStep, setProcessingStep] = useState< + ProcessingStepInfo | undefined + >(); + const [result, setResult] = useState(); + const [error, setError] = useState(); + + /** + * Resets the import state to idle. + */ + const handleReset = useCallback(() => { + setStatus("idle"); + setProgress(0); + setProcessingStep(undefined); + setResult(undefined); + setError(undefined); + }, []); + + /** + * Handles form submission and import process. + */ + const handleSubmit = useCallback( + async (data: ScanImportFormData) => { + if (!data.file) { + setError({ + title: "No file selected", + detail: "Please select a file to import", + }); + setStatus("error"); + return; + } + + try { + // Start upload + setStatus("uploading"); + setProgress(0); + setError(undefined); + + // Simulate upload progress (actual upload happens in server action) + const progressInterval = setInterval(() => { + setProgress((prev) => { + if (prev >= 90) { + clearInterval(progressInterval); + return 90; + } + return prev + 10; + }); + }, 100); + + // Build form data for server action + const formData = new FormData(); + formData.append("file", data.file); + if (data.providerId) { + formData.append("providerId", data.providerId); + formData.append("provider_id", data.providerId); + } + formData.append("createProvider", String(data.createProvider)); + formData.append("create_provider", String(data.createProvider)); + + // Complete upload progress + clearInterval(progressInterval); + setProgress(100); + + // Switch to processing state + setStatus("processing"); + setProcessingStep({ step: "parsing", message: "Parsing file..." }); + + // Simulate processing steps for better UX + const steps: Array<{ + step: ProcessingStepInfo["step"]; + message: string; + }> = [ + { step: "validating", message: "Validating data..." }, + { step: "resolving-provider", message: "Resolving provider..." }, + { step: "creating-resources", message: "Creating resources..." }, + { step: "creating-findings", message: "Creating findings..." }, + { step: "finalizing", message: "Finalizing import..." }, + ]; + + // Use API route for large files to bypass server action limits + // This streams directly to the backend without the server action body size restrictions + const importPromise = fetch("/api/scans/import", { + method: "POST", + body: formData, + }).then(async (res) => { + const responseData = await res.json(); + if (!res.ok) { + const firstError = responseData.errors?.[0]; + return { + success: false as const, + error: + firstError?.detail || + firstError?.title || + `Import failed with status ${res.status}`, + }; + } + const attributes = responseData.data?.attributes; + return { + success: true as const, + data: { + scanId: attributes?.scan_id, + providerId: attributes?.provider_id, + findingsCount: attributes?.findings_count, + resourcesCount: attributes?.resources_count, + status: attributes?.status, + providerCreated: attributes?.provider_created, + warnings: attributes?.warnings, + }, + }; + }); + + // Simulate step progression while waiting for response + let stepIndex = 0; + const stepInterval = setInterval(() => { + if (stepIndex < steps.length) { + setProcessingStep(steps[stepIndex]); + stepIndex++; + } else { + clearInterval(stepInterval); + } + }, 500); + + // Wait for import result + const importResult = await importPromise; + clearInterval(stepInterval); + + if (importResult.success) { + setResult(importResult.data); + setStatus("completed"); + // Refresh the page to update the scan list + router.refresh(); + onImportComplete?.(importResult.data.scanId); + } else { + setError({ + title: "Import failed", + detail: importResult.error, + }); + setStatus("error"); + } + } catch (err) { + console.error("Import error:", err); + setError({ + title: "Import failed", + detail: + err instanceof Error ? err.message : "An unexpected error occurred", + }); + setStatus("error"); + } + }, + [onImportComplete, router], + ); + + const isSubmitting = status === "uploading" || status === "processing"; + + return ( +
+ {/* Collapsible Header */} + + + {/* Collapsible Content */} + + {isExpanded && ( + +
+ {/* Progress Display (when not idle) */} + {status !== "idle" && ( +
+ +
+ )} + + {/* Form (when idle or error) */} + {(status === "idle" || status === "error") && ( + + )} + + {/* Reset button when completed */} + {status === "completed" && ( +
+ +
+ )} +
+ + )} + +
+ ); +} diff --git a/ui/components/scans/scan-import/types.ts b/ui/components/scans/scan-import/types.ts new file mode 100644 index 0000000000..38bdcd938f --- /dev/null +++ b/ui/components/scans/scan-import/types.ts @@ -0,0 +1,212 @@ +/** + * Types for the Scan Import feature. + * + * These types define the data structures for importing Prowler CLI scan results + * (JSON/OCSF and CSV formats) into the Prowler API. + */ + +import { ProviderType } from "@/types/providers"; + +/** + * Supported file formats for scan import. + */ +export type ImportFileFormat = "json" | "csv"; + +/** + * Status of the import operation. + */ +export type ImportStatus = + | "idle" + | "uploading" + | "processing" + | "completed" + | "error"; + +/** + * Result returned from a successful scan import API call. + * Matches the ScanImportResponseSerializer from the backend. + */ +export interface ImportScanResult { + /** UUID of the created scan */ + scanId: string; + /** UUID of the associated provider */ + providerId: string; + /** Number of findings imported */ + findingsCount: number; + /** Number of unique resources imported */ + resourcesCount: number; + /** Status of the import operation */ + status: string; + /** Whether a new provider was created during import */ + providerCreated: boolean; + /** Optional list of warnings encountered during import */ + warnings?: string[]; +} + +/** + * Error details returned from a failed scan import. + */ +export interface ImportScanError { + /** HTTP status code */ + status?: string; + /** Error code identifier */ + code?: string; + /** Short error title */ + title: string; + /** Detailed error message */ + detail: string; + /** Source location of the error (e.g., field path) */ + source?: { + pointer?: string; + }; +} + +/** + * Form data for the scan import form. + */ +export interface ScanImportFormData { + /** The file to upload (JSON or CSV) */ + file: File | null; + /** Optional UUID of existing provider to associate with the import */ + providerId?: string; + /** Whether to create a new provider if one is not found */ + createProvider: boolean; +} + +/** + * Props for the scan import dropzone component. + */ +export interface ScanImportDropzoneProps { + /** Currently selected file */ + file: File | null; + /** Callback when a file is selected */ + onFileSelect: (file: File | null) => void; + /** Whether the dropzone is disabled */ + disabled?: boolean; + /** Accepted file types */ + acceptedTypes?: string[]; + /** Maximum file size in bytes (default: 1GB) */ + maxSize?: number; +} + +/** + * Props for the scan import form component. + */ +export interface ScanImportFormProps { + /** Callback when form is submitted */ + onSubmit: (data: ScanImportFormData) => void; + /** Whether the form is currently submitting */ + isSubmitting?: boolean; + /** Available providers for selection */ + providers?: Array<{ + id: string; + provider: ProviderType; + uid: string; + alias: string; + }>; +} + +/** + * Processing step identifiers for detailed status display. + */ +export type ProcessingStep = + | "parsing" + | "validating" + | "resolving-provider" + | "creating-resources" + | "creating-findings" + | "finalizing"; + +/** + * Processing step information for display. + */ +export interface ProcessingStepInfo { + /** Current processing step */ + step: ProcessingStep; + /** Human-readable message for the current step */ + message?: string; +} + +/** + * Props for the scan import progress component. + */ +export interface ScanImportProgressProps { + /** Current status of the import */ + status: ImportStatus; + /** Progress percentage (0-100) */ + progress?: number; + /** Current processing step information */ + processingStep?: ProcessingStepInfo; + /** Result data on success */ + result?: ImportScanResult; + /** Error data on failure (single error for backward compatibility) */ + error?: ImportScanError; + /** Multiple errors from validation failures */ + errors?: ImportScanError[]; + /** Callback to reset/dismiss the progress display */ + onReset?: () => void; +} + +/** + * Props for the main scan import section component. + */ +export interface ScanImportSectionProps { + /** Callback when import completes successfully */ + onImportComplete?: (scanId: string) => void; +} + +/** + * API response structure for scan import (JSON:API format). + */ +export interface ScanImportApiResponse { + data: { + type: "scan-imports"; + id: string; + attributes: { + scan_id: string; + provider_id: string; + findings_count: number; + resources_count: number; + status: string; + provider_created: boolean; + warnings?: string[]; + }; + }; + meta?: { + version: string; + }; +} + +/** + * API error response structure (JSON:API format). + */ +export interface ScanImportApiErrorResponse { + errors: Array<{ + status?: string; + code?: string; + title?: string; + detail?: string; + source?: { + pointer?: string; + }; + }>; +} + +/** + * Maximum file size for scan import (1GB). + */ +export const MAX_IMPORT_FILE_SIZE = 1024 * 1024 * 1024; + +/** + * Accepted file extensions for scan import. + */ +export const ACCEPTED_FILE_EXTENSIONS = [".json", ".csv"] as const; + +/** + * Accepted MIME types for scan import. + */ +export const ACCEPTED_MIME_TYPES = [ + "application/json", + "text/csv", + "text/plain", +] as const; diff --git a/ui/next.config.js b/ui/next.config.js index 14832de346..c7d9850cd1 100644 --- a/ui/next.config.js +++ b/ui/next.config.js @@ -1,3 +1,44 @@ +/** + * @fileoverview Next.js Configuration for Prowler UI + * + * This configuration file defines the Next.js settings for the Prowler UI application, + * including security headers, Sentry integration, and experimental features. + * + * @module next.config + * @see {@link https://nextjs.org/docs/app/api-reference/next-config-js} Next.js Configuration Reference + * + * ## Features Configured + * + * - **Security Headers**: Content Security Policy (CSP), X-Content-Type-Options, Referrer-Policy + * - **Sentry Integration**: Error tracking and monitoring with source map uploads + * - **Server Actions**: Extended body size limit (1GB) for scan file imports + * - **Standalone Output**: Production builds use standalone mode for containerized deployments + * - **React Compiler**: Experimental React compiler for optimized builds + * - **Turbopack**: Fast bundler configuration for development + * + * ## Environment Variables + * + * | Variable | Required | Description | + * |----------|----------|-------------| + * | `NEXT_PUBLIC_SENTRY_DSN` | No | Sentry DSN for client-side error reporting | + * | `SENTRY_DSN` | No | Sentry DSN for server-side error reporting | + * | `SENTRY_ORG` | No | Sentry organization slug | + * | `SENTRY_PROJECT` | No | Sentry project slug | + * | `SENTRY_AUTH_TOKEN` | No | Sentry auth token for source map uploads | + * | `NODE_ENV` | No | Environment mode (development/production) | + * | `CI` | No | Set in CI environments to disable standalone output | + * + * ## Usage + * + * This file is automatically loaded by Next.js. No manual import is required. + * + * @example + * // The config is used automatically by Next.js CLI commands: + * // Development: pnpm run dev + * // Production build: pnpm run build + * // Production start: pnpm start + */ + const dotenv = require("dotenv"); const dotenvExpand = require("dotenv-expand"); dotenvExpand.expand(dotenv.config({ path: "../.env", quiet: true })); @@ -5,8 +46,30 @@ const { withSentryConfig } = require("@sentry/nextjs"); /** @type {import('next').NextConfig} */ -// HTTP Security Headers -// 'unsafe-eval' is configured under `script-src` because it is required by NextJS for development mode +/** + * Content Security Policy (CSP) header configuration. + * + * Defines allowed sources for various resource types to prevent XSS attacks + * and other code injection vulnerabilities. + * + * @constant {string} + * + * @description + * CSP Directives configured: + * - `default-src 'self'`: Default fallback for all resource types + * - `script-src`: Allows scripts from self, inline, eval (dev), Stripe, GTM, Sentry + * - `connect-src`: Allows connections to Iconify APIs, Stripe, GTM, Sentry + * - `img-src`: Allows images from self, Google Analytics, GTM + * - `font-src`: Allows fonts from self only + * - `style-src`: Allows styles from self and inline styles + * - `frame-src`: Allows frames from self, Stripe, GTM + * - `frame-ancestors 'none'`: Prevents embedding in iframes (clickjacking protection) + * - `report-to csp-endpoint`: Reports violations to Sentry (if configured) + * + * @note 'unsafe-eval' is required by Next.js in development mode for hot reloading + * + * @see {@link https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP} MDN CSP Reference + */ const cspHeader = ` default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://js.stripe.com https://www.googletagmanager.com https://browser.sentry-cdn.com; @@ -19,7 +82,25 @@ const cspHeader = ` report-to csp-endpoint; `; -// Get Sentry CSP report endpoint if DSN is configured +/** + * Extracts the Sentry CSP report endpoint URL from the DSN. + * + * Parses the Sentry DSN to construct the security report endpoint URL, + * which is used for CSP violation reporting via the Reporting API. + * + * @function getSentryReportEndpoint + * @returns {string|null} The Sentry CSP report endpoint URL, or null if DSN is not configured + * + * @example + * // With NEXT_PUBLIC_SENTRY_DSN="https://abc123@o123456.ingest.sentry.io/789" + * getSentryReportEndpoint(); + * // Returns: "https://o0.ingest.sentry.io/api/0/security/?sentry_key=abc123" + * + * @example + * // Without NEXT_PUBLIC_SENTRY_DSN configured + * getSentryReportEndpoint(); + * // Returns: null + */ const getSentryReportEndpoint = () => { if (!process.env.NEXT_PUBLIC_SENTRY_DSN) return null; try { @@ -33,6 +114,22 @@ const getSentryReportEndpoint = () => { } }; +/** + * Main Next.js configuration object. + * + * @type {import('next').NextConfig} + * + * @property {boolean} poweredByHeader - Disabled to hide X-Powered-By header (security) + * @property {string} [output] - Set to "standalone" in production for Docker deployments + * @property {string} [outputFileTracingRoot] - Root directory for file tracing in standalone mode + * @property {Object} experimental - Experimental Next.js features + * @property {boolean} experimental.reactCompiler - Enables React compiler for optimizations + * @property {Object} experimental.serverActions - Server actions configuration + * @property {string} experimental.serverActions.bodySizeLimit - Max request body size (50MB for scan imports) + * @property {Object} turbopack - Turbopack bundler configuration + * @property {string} turbopack.root - Root directory for Turbopack + * @property {Function} headers - Async function returning security headers configuration + */ const nextConfig = { poweredByHeader: false, // Use standalone only in production deployments, not for CI/testing @@ -43,6 +140,21 @@ const nextConfig = { }), experimental: { reactCompiler: true, + /** + * Server Actions configuration for handling large file uploads. + * + * The default Next.js body size limit for server actions is 1MB, which is + * insufficient for importing scan result files (OCSF JSON or CSV format). + * This limit is increased to 1GB to match the backend API's file size + * validation limit, allowing users to import large scan files containing + * thousands of findings. + * + * @see ui/actions/scans/import-scan.ts - Server action that handles scan imports + * @see api/src/backend/api/v1/serializers.py - Backend validation (max 1GB) + */ + serverActions: { + bodySizeLimit: "1gb", + }, }, turbopack: { root: __dirname, diff --git a/ui/package.json b/ui/package.json index 4b32d4e7b1..d2e41baacf 100644 --- a/ui/package.json +++ b/ui/package.json @@ -15,10 +15,10 @@ "format:check": "./node_modules/.bin/prettier --check ./app", "format:write": "./node_modules/.bin/prettier --config .prettierrc.json --write ./app", "prepare": "husky", - "test:e2e": "playwright test --project=chromium --project=sign-up --project=providers --project=invitations --project=scans", - "test:e2e:ui": "playwright test --project=chromium --project=sign-up --project=providers --project=invitations --project=scans --ui", - "test:e2e:debug": "playwright test --project=chromium --project=sign-up --project=providers --project=invitations --project=scans --debug", - "test:e2e:headed": "playwright test --project=chromium --project=sign-up --project=providers --project=invitations --project=scans --headed", + "test:e2e": "playwright test --project=chromium --project=sign-up --project=providers --project=invitations --project=scans --project=scan-import", + "test:e2e:ui": "playwright test --project=chromium --project=sign-up --project=providers --project=invitations --project=scans --project=scan-import --ui", + "test:e2e:debug": "playwright test --project=chromium --project=sign-up --project=providers --project=invitations --project=scans --project=scan-import --debug", + "test:e2e:headed": "playwright test --project=chromium --project=sign-up --project=providers --project=invitations --project=scans --project=scan-import --headed", "test:e2e:report": "playwright show-report", "test:e2e:install": "playwright install", "audit:fix": "pnpm audit fix" diff --git a/ui/playwright.config.ts b/ui/playwright.config.ts index 132191c6cf..9264aef00c 100644 --- a/ui/playwright.config.ts +++ b/ui/playwright.config.ts @@ -116,6 +116,12 @@ export default defineConfig({ testMatch: "invitations.spec.ts", dependencies: ["admin.auth.setup"], }, + // This project runs the scan import test suite + { + name: "scan-import", + testMatch: "scan-import.spec.ts", + dependencies: ["admin.auth.setup"], + }, ], webServer: { diff --git a/ui/tests/scan-import.spec.ts b/ui/tests/scan-import.spec.ts new file mode 100644 index 0000000000..dff3589301 --- /dev/null +++ b/ui/tests/scan-import.spec.ts @@ -0,0 +1,415 @@ +"use strict"; + +import { test, expect } from "@playwright/test"; +import * as path from "path"; +import * as fs from "fs"; +import * as os from "os"; +import { ScansPage } from "./scans/scans-page"; + +/** + * Creates a minimal valid OCSF JSON file for testing. + */ +function createTestOCSFJsonFile(): string { + const ocsfData = [ + { + message: "Test finding for E2E import test", + metadata: { + event_code: "test_check_e2e", + product: { name: "Prowler", uid: "prowler", vendor_name: "Prowler", version: "4.0.0" }, + profiles: ["cloud", "datetime"], + tenant_uid: "", + version: "1.4.0", + }, + severity_id: 2, + severity: "Low", + status: "New", + status_code: "PASS", + status_detail: "Test check passed for E2E import test", + status_id: 1, + unmapped: { + related_url: "https://example.com", + categories: [], + depends_on: [], + related_to: [], + additional_urls: [], + notes: "", + compliance: { "CIS-2.0": ["1.1"] }, + }, + activity_name: "Create", + activity_id: 1, + finding_info: { + created_time: Math.floor(Date.now() / 1000), + created_time_dt: new Date().toISOString(), + desc: "E2E test check description", + product_uid: "prowler", + title: "E2E Test Check", + types: ["IAM"], + uid: `e2e-finding-${Date.now()}`, + }, + resources: [ + { + cloud_partition: "aws", + region: "us-east-1", + data: { details: "", metadata: { arn: "arn:aws:iam::123456789012:root", name: "e2e-test-resource", status: "AVAILABLE", findings: [], tags: [], type: "AWS::IAM::User", region: "us-east-1" } }, + group: { name: "iam" }, + labels: [], + name: "e2e-test-resource", + type: "AwsIamUser", + uid: `arn:aws:iam::123456789012:user/e2e-test-${Date.now()}`, + }, + ], + category_name: "Findings", + category_uid: 2, + class_name: "Detection Finding", + class_uid: 2004, + cloud: { + account: { name: "E2E Test Account", type: "AWS Account", type_id: 10, uid: "123456789012", labels: [] }, + org: { name: "", uid: "" }, + provider: "aws", + region: "us-east-1", + }, + remediation: { desc: "No remediation needed for test", references: ["https://example.com"] }, + risk_details: "This is a test finding for E2E testing", + time: Math.floor(Date.now() / 1000), + time_dt: new Date().toISOString(), + type_uid: 200401, + type_name: "Detection Finding: Create", + }, + ]; + + const tempDir = os.tmpdir(); + const filePath = path.join(tempDir, `prowler-e2e-test-${Date.now()}.json`); + fs.writeFileSync(filePath, JSON.stringify(ocsfData, null, 2)); + return filePath; +} + +/** + * Creates an invalid JSON file for testing error handling. + */ +function createInvalidJsonFile(): string { + const tempDir = os.tmpdir(); + const filePath = path.join(tempDir, `invalid-e2e-test-${Date.now()}.json`); + fs.writeFileSync(filePath, "{ invalid json content"); + return filePath; +} + +/** + * Creates a minimal valid Prowler CSV file for testing. + */ +function createTestCSVFile(): string { + const timestamp = new Date().toISOString(); + const findingUid = `e2e-csv-finding-${Date.now()}`; + const resourceUid = `arn:aws:iam::123456789012:user/e2e-csv-test-${Date.now()}`; + + const headers = [ + "AUTH_METHOD", "TIMESTAMP", "ACCOUNT_UID", "ACCOUNT_NAME", "ACCOUNT_EMAIL", + "ACCOUNT_ORGANIZATION_UID", "ACCOUNT_ORGANIZATION_NAME", "ACCOUNT_TAGS", + "FINDING_UID", "PROVIDER", "CHECK_ID", "CHECK_TITLE", "CHECK_TYPE", "STATUS", + "STATUS_EXTENDED", "MUTED", "SERVICE_NAME", "SUBSERVICE_NAME", "SEVERITY", + "RESOURCE_TYPE", "RESOURCE_UID", "RESOURCE_NAME", "RESOURCE_DETAILS", + "RESOURCE_TAGS", "PARTITION", "REGION", "DESCRIPTION", "RISK", "RELATED_URL", + "REMEDIATION_RECOMMENDATION_TEXT", "REMEDIATION_RECOMMENDATION_URL", + "REMEDIATION_CODE_NATIVEIAC", "REMEDIATION_CODE_TERRAFORM", "REMEDIATION_CODE_CLI", + "REMEDIATION_CODE_OTHER", "COMPLIANCE", "CATEGORIES", "DEPENDS_ON", "RELATED_TO", + "NOTES", "PROWLER_VERSION", "ADDITIONAL_URLS", + ].join(";"); + + const dataRow = [ + "profile", timestamp, "123456789012", "E2E CSV Test Account", "test@example.com", + "", "", "", findingUid, "aws", "test_check_csv_e2e", "E2E CSV Test Check", "IAM", + "PASS", "Test check passed for E2E CSV import test", "false", "iam", "", "low", + "AwsIamUser", resourceUid, "e2e-csv-test-resource", "", "", "aws", "us-east-1", + "E2E CSV test check description", "This is a test finding for E2E CSV testing", + "https://example.com", "No remediation needed for test", "https://example.com/remediation", + "", "", "", "", "CIS-2.0: 1.1, 1.2 | NIST-800-53: AC-1", "security,iam", "", "", "", + "4.0.0", "", + ].join(";"); + + const tempDir = os.tmpdir(); + const filePath = path.join(tempDir, `prowler-e2e-csv-test-${Date.now()}.csv`); + fs.writeFileSync(filePath, `${headers}\n${dataRow}`); + return filePath; +} + +function cleanupTestFile(filePath: string): void { + try { + if (fs.existsSync(filePath)) fs.unlinkSync(filePath); + } catch { + // Ignore cleanup errors + } +} + +/** + * Scan Import E2E Test Suite (Reduced) + * Tests essential scan import functionality for JSON and CSV formats. + */ +test.describe("Scan Import", () => { + test.use({ storageState: "playwright/.auth/admin_user.json" }); + + test("should display import section and expand/collapse", { tag: ["@e2e", "@scans", "@import"] }, async ({ page }) => { + const scansPage = new ScansPage(page); + await scansPage.goto(); + + // Verify import button is visible + const importButton = page.getByRole("button", { name: /Import Scan Results/i }); + await expect(importButton).toBeVisible(); + + // Initially collapsed + const importContent = page.locator("#scan-import-content"); + await expect(importContent).not.toBeVisible(); + + // Expand + await importButton.click(); + await expect(importContent).toBeVisible(); + await expect(page.getByText(/Drag and drop your scan file/i)).toBeVisible(); + + // Collapse + await importButton.click(); + await expect(importContent).not.toBeVisible(); + }); + + test("should upload JSON file and complete import flow", { tag: ["@e2e", "@scans", "@import", "@json"] }, async ({ page }) => { + let testFilePath: string | null = null; + try { + testFilePath = createTestOCSFJsonFile(); + const scansPage = new ScansPage(page); + await scansPage.goto(); + + // Expand import section + await page.getByRole("button", { name: /Import Scan Results/i }).click(); + await expect(page.locator("#scan-import-content")).toBeVisible(); + + // Upload file + await page.locator('input[type="file"]').setInputFiles(testFilePath); + await expect(page.getByText(path.basename(testFilePath))).toBeVisible(); + + // Submit + const submitButton = page.getByRole("button", { name: /Import Scan Results/i }).last(); + await expect(submitButton).toBeEnabled(); + await submitButton.click(); + + // Wait for result (success or error) + await expect( + page.getByText(/Import completed|Import successful|findings imported|Import failed|Error/i) + ).toBeVisible({ timeout: 30000 }); + } finally { + if (testFilePath) cleanupTestFile(testFilePath); + } + }); + + test("should upload CSV file and complete import flow", { tag: ["@e2e", "@scans", "@import", "@csv"] }, async ({ page }) => { + let testFilePath: string | null = null; + try { + testFilePath = createTestCSVFile(); + const scansPage = new ScansPage(page); + await scansPage.goto(); + + // Expand import section + await page.getByRole("button", { name: /Import Scan Results/i }).click(); + await expect(page.locator("#scan-import-content")).toBeVisible(); + + // Upload file + await page.locator('input[type="file"]').setInputFiles(testFilePath); + await expect(page.getByText(path.basename(testFilePath))).toBeVisible(); + + // Submit + const submitButton = page.getByRole("button", { name: /Import Scan Results/i }).last(); + await expect(submitButton).toBeEnabled(); + await submitButton.click(); + + // Wait for result (success or error) + await expect( + page.getByText(/Import completed|Import successful|findings imported|Import failed|Error/i) + ).toBeVisible({ timeout: 30000 }); + } finally { + if (testFilePath) cleanupTestFile(testFilePath); + } + }); + + test("should handle invalid JSON file gracefully", { tag: ["@e2e", "@scans", "@import", "@error"] }, async ({ page }) => { + let testFilePath: string | null = null; + try { + testFilePath = createInvalidJsonFile(); + const scansPage = new ScansPage(page); + await scansPage.goto(); + + // Expand import section + await page.getByRole("button", { name: /Import Scan Results/i }).click(); + await expect(page.locator("#scan-import-content")).toBeVisible(); + + // Upload invalid file + await page.locator('input[type="file"]').setInputFiles(testFilePath); + + // Submit + const submitButton = page.getByRole("button", { name: /Import Scan Results/i }).last(); + await submitButton.click(); + + // Wait for error + await expect(page.getByText(/failed|error|invalid|malformed/i)).toBeVisible({ timeout: 30000 }); + + // Verify retry is available + await expect(page.getByRole("button", { name: /Try Again|Retry/i })).toBeVisible(); + } finally { + if (testFilePath) cleanupTestFile(testFilePath); + } + }); +}); + +/** + * Responsive Design Test Suite for Scan Import + * Tests that the scan import UI works correctly on different screen sizes. + */ +test.describe("Scan Import - Responsive Design", () => { + test.use({ storageState: "playwright/.auth/admin_user.json" }); + + // Mobile viewport (iPhone SE) + test("should display correctly on mobile viewport (375x667)", { tag: ["@e2e", "@scans", "@import", "@responsive", "@mobile"] }, async ({ page }) => { + await page.setViewportSize({ width: 375, height: 667 }); + const scansPage = new ScansPage(page); + await scansPage.goto(); + + // Verify import button is visible and accessible on mobile + const importButton = page.getByRole("button", { name: /Import Scan Results/i }); + await expect(importButton).toBeVisible(); + await expect(importButton).toBeInViewport(); + + // Expand import section + await importButton.click(); + const importContent = page.locator("#scan-import-content"); + await expect(importContent).toBeVisible(); + + // Verify dropzone is visible and properly sized + const dropzone = page.getByText(/Drag and drop your scan file/i); + await expect(dropzone).toBeVisible(); + + // Verify form elements are visible + await expect(page.getByText(/Provider \(Optional\)/i)).toBeVisible(); + await expect(page.getByText(/Create provider if not found/i)).toBeVisible(); + + // Verify submit button is visible and full-width on mobile + const submitButton = page.getByRole("button", { name: /Import Scan Results/i }).last(); + await expect(submitButton).toBeVisible(); + }); + + // Tablet viewport (iPad) + test("should display correctly on tablet viewport (768x1024)", { tag: ["@e2e", "@scans", "@import", "@responsive", "@tablet"] }, async ({ page }) => { + await page.setViewportSize({ width: 768, height: 1024 }); + const scansPage = new ScansPage(page); + await scansPage.goto(); + + // Verify import button is visible + const importButton = page.getByRole("button", { name: /Import Scan Results/i }); + await expect(importButton).toBeVisible(); + + // Expand import section + await importButton.click(); + const importContent = page.locator("#scan-import-content"); + await expect(importContent).toBeVisible(); + + // Verify all form elements are visible + await expect(page.getByText(/Drag and drop your scan file/i)).toBeVisible(); + await expect(page.getByText(/Provider \(Optional\)/i)).toBeVisible(); + await expect(page.getByText(/Create provider if not found/i)).toBeVisible(); + }); + + // Desktop viewport (1920x1080) + test("should display correctly on desktop viewport (1920x1080)", { tag: ["@e2e", "@scans", "@import", "@responsive", "@desktop"] }, async ({ page }) => { + await page.setViewportSize({ width: 1920, height: 1080 }); + const scansPage = new ScansPage(page); + await scansPage.goto(); + + // Verify import button is visible + const importButton = page.getByRole("button", { name: /Import Scan Results/i }); + await expect(importButton).toBeVisible(); + + // Expand import section + await importButton.click(); + const importContent = page.locator("#scan-import-content"); + await expect(importContent).toBeVisible(); + + // Verify all form elements are visible + await expect(page.getByText(/Drag and drop your scan file/i)).toBeVisible(); + await expect(page.getByText(/Provider \(Optional\)/i)).toBeVisible(); + await expect(page.getByText(/Create provider if not found/i)).toBeVisible(); + }); + + // Small mobile viewport (iPhone 5/SE) + test("should display correctly on small mobile viewport (320x568)", { tag: ["@e2e", "@scans", "@import", "@responsive", "@mobile-small"] }, async ({ page }) => { + await page.setViewportSize({ width: 320, height: 568 }); + const scansPage = new ScansPage(page); + await scansPage.goto(); + + // Verify import button is visible on small screens + const importButton = page.getByRole("button", { name: /Import Scan Results/i }); + await expect(importButton).toBeVisible(); + + // Expand import section + await importButton.click(); + const importContent = page.locator("#scan-import-content"); + await expect(importContent).toBeVisible(); + + // Verify content doesn't overflow horizontally + const contentBox = await importContent.boundingBox(); + expect(contentBox).not.toBeNull(); + if (contentBox) { + expect(contentBox.width).toBeLessThanOrEqual(320); + } + }); + + // Test file upload on mobile + test("should allow file upload on mobile viewport", { tag: ["@e2e", "@scans", "@import", "@responsive", "@mobile"] }, async ({ page }) => { + let testFilePath: string | null = null; + try { + testFilePath = createTestOCSFJsonFile(); + await page.setViewportSize({ width: 375, height: 667 }); + const scansPage = new ScansPage(page); + await scansPage.goto(); + + // Expand import section + await page.getByRole("button", { name: /Import Scan Results/i }).click(); + await expect(page.locator("#scan-import-content")).toBeVisible(); + + // Upload file on mobile + await page.locator('input[type="file"]').setInputFiles(testFilePath); + + // Verify file is shown (file name should be visible, possibly truncated) + await expect(page.getByText(/prowler-e2e-test/i)).toBeVisible(); + + // Verify remove button is accessible + const removeButton = page.getByRole("button", { name: /Remove file/i }); + await expect(removeButton).toBeVisible(); + } finally { + if (testFilePath) cleanupTestFile(testFilePath); + } + }); + + // Test progress display on different screen sizes + test("should display progress correctly on tablet viewport", { tag: ["@e2e", "@scans", "@import", "@responsive", "@tablet"] }, async ({ page }) => { + let testFilePath: string | null = null; + try { + testFilePath = createTestOCSFJsonFile(); + await page.setViewportSize({ width: 768, height: 1024 }); + const scansPage = new ScansPage(page); + await scansPage.goto(); + + // Expand import section + await page.getByRole("button", { name: /Import Scan Results/i }).click(); + await expect(page.locator("#scan-import-content")).toBeVisible(); + + // Upload file + await page.locator('input[type="file"]').setInputFiles(testFilePath); + await expect(page.getByText(/prowler-e2e-test/i)).toBeVisible(); + + // Submit and verify progress is visible + const submitButton = page.getByRole("button", { name: /Import Scan Results/i }).last(); + await submitButton.click(); + + // Wait for result (success or error) - progress should be visible during processing + await expect( + page.getByText(/Import completed|Import successful|findings imported|Import failed|Error|Uploading|Processing/i) + ).toBeVisible({ timeout: 30000 }); + } finally { + if (testFilePath) cleanupTestFile(testFilePath); + } + }); +});