Prowler 5.2 is Available for Every Cloud

We’ve been busy making cloud security even more intuitive and straightforward—and we’re excited to share Prowler 5.2 with you. It’s designed to simplify your multi-cloud journey across AWS, GCP, Azure, and Kubernetes, letting you worry less about setup hurdles and more about what really matters: securing your environment.

A Revamped (and Shorter!) Provider Setup

We heard your feedback: you just want to connect a cloud provider and start scanning.

• Fewer Steps: We’ve reduced the setup flow from four steps to three. After a successful connection test, you’ll see a quick animation and get redirected straight to the Scans page.
• Smoother IAM Role Auth: We’ve also streamlined the experience for setting up providers with an IAM role, and updating credentials after a successful connection test.

Figure 1: The revamped setup flow quickly guides you to configure a cloud provider if none are connected.

Why It Matters:
This means less friction in onboarding—so you can get to the meaningful work of detecting and resolving security issues faster.

Brand-New UI Flows

We’ve given key parts of the UI an update:

• Finding Details & Scan Details now have completely redesigned layouts, and you’ll spot a new “First Seen” field in every finding to track when Prowler first noticed an issue.

Figure 2: The updated Scans page shows completed, failed, and scheduled scans with a fresh layout.

Figure 3: A redesigned Scan Details view, clearly displaying error messages and statuses.

Figure 4: The new Finding Details layout includes a “First Seen” field to quickly identify when an issue was first detected.

Why It Matters:
Security data can be overwhelming. By surfacing the most relevant info front-and-center, we help you move quickly from insight to action.

Under the Hood: API & IAM Improvements

• Psycopg3 + Connection Pooling: We swapped out the old Django DB Manager, which means more stable API calls and a snappier overall experience.
• AWS IAM Role External ID: We’ve made External ID mandatory when configuring IAM Role authentication, ensuring best practices (and that extra peace of mind).

Why It Matters:
Reliability and security aren’t just nice-to-haves; they’re essential. These enhancements help Prowler run smoothly at any scale while keeping your data locked down.

New Frameworks & Secrets Scanning

• CIS 1.10 for Kubernetes & CIS 3.0 for Azure: If you’re tracking these frameworks, you’re covered right out of the box.
• Configurable Secrets Scanning: Using detect-secrets checks? You can now specify which plugins to run in the Prowler config file, tailoring each scan precisely to your environment.

Why It Matters:
In a fast-moving compliance landscape, staying current on frameworks and having granular control over secrets detection can save you from missing crucial vulnerabilities.

OCSF Metadata for the Win

• More Resource Metadata: We’ve added a new field under resource in our OCSF logs. This includes a JSON object that captures detailed metadata about each resource.

Why It Matters:
Security is all about context. With richer metadata, you can piece together events quickly and accurately, making threat analysis and incident response smoother.

Want to see it live?

Join CEO & Founder Toni de la Fuente and Sr. Software Engineer Pablo Lara for a 60-minute live webinar that dives into the new and improved Prowler Web-UI January 30 @ 9:00 AM – 10:00 AM PT.

Save Your Spot

Full Name*

Email*

Company*

What is 3 + 5*

Comments

If you are a human, do not fill in this field