Secure the Cloud: Contribute to Prowler This Hacktoberfest

This week marks the start of Hacktoberfest 2025, as they describe it, the annual month-long celebration of all things open source!

At Prowler, open source is at our core. We firmly believe that security should not be a black box. This is why we’re committed to working with the community, not just as users, but as active contributors and co-creators of Prowler.

We’re open to contributions all year, but Hacktoberfest is the perfect excuse to act! Whether it’s bringing that pending idea to life, patching a small bug you’ve found, improving our documentation, or embarking on your journey to make your very first open source contribution, now is the moment.

If you’re looking for ideas where to start, we created a list of good first issues. We try to keep that list updated, ensuring newcomers always have a clear and welcoming entry point.

And we mark other issues where we seek collaboration with the label “help wanted”.

You can also check our public roadmap for inspiration, we welcome all kind of collaborations:

• New security checks
• New compliance frameworks
• New output formats
• New integrations
• New proposed features

Ready to Contribute? Here’s How!

To help you get started right away, we already have a comprehensive Developer Guide in place for anyone looking to contribute to Prowler.

This guide provides all the essential information, including prerequisites for running the project, how we manage dependencies, and detailed insights into Prowler’s components.

On our YouTube channel you will also find useful information, such as our Meet the Engineers videos, where our engineers explain how Prowler works and how to contribute.

Still have questions or need a hand? Don’t hesitate to reach out on our Community Slack, we have a dedicated channel for contributions (#08-contributions).

Make Contributing Easier with AI

You’re likely already using AI to streamline your daily tasks, and so are we at Prowler. We’re actively exploring initiatives like AGENTS.md and plan to introduce our own rules soon to empower contributors with coding agents.
Until then, since we’re fully open source (including all our checks and docs!), you don’t have to wait. Here’s a real-world example:

Plan the following feature before executing, ask for any clarification if you need to, and ask for confirmation before working.

Also, you can check our docs, these are the most relevant pages for the task:

Overview of how to contribute: @https://docs.prowler.com/projects/prowler-open-source/en/latest/developer-guide/introduction/ 
Provider class documentation, which covers authentication and other provider-specific logic:
@https://docs.prowler.com/projects/prowler-open-source/en/latest/developer-guide/provider/ 
Services guide, where you'll learn how to fetch data from the provider's services:
@https://docs.prowler.com/projects/prowler-open-source/en/latest/developer-guide/services/ 
Checks format documentation, which explains how each check should be structured:
@https://docs.prowler.com/projects/prowler-open-source/en/latest/developer-guide/checks/ 

The task is adding Mongo Atlas Cloud as a new Prowler provider, check the docs and previous providers to maintains the code style.

We just want to add the provider, a couple of services and a couple of checks as this task is just a PoC to explore if it's worth or not to add this provider.

Please do not forget about the tests, metadata and other elements needed for every check.

Here you can find info about the Mongo Atlas Admin API that we will need to use to create the checks: @https://www.mongodb.com/docs/api/doc/atlas-admin-api-v2/ 

And here some examples on how to call it using python: @https://www.mongodb.com/developer/products/atlas/nodejs-python-ruby-atlas-api/#python 

This is the real prompt I used to start the MongoDB Atlas PoC, completed in just 2 evenings. Here’s the PR, you will also see the amazing work Dani Barranquero did reviewing the PoC and leaving it much better.

Hacktoberfest Registration

If you plan to participate in the event, don’t forget to register here. You can also review if there are any Hacktoberfest events close to you.

You will also find resources for beginners, ideas for non code contributions and pages where to find other projects looking for contributions.

Securing the Cloud, Together

We believe that together, as a community, we can build the most robust and innovative tools. So, whether you’re fixing a small bug, writing new documentation, or leveraging AI to craft a new feature, join us this Hacktoberfest (or any time of year!). Your contributions, big or small, are invaluable in securing the cloud for everyone.

Stay secure.🤘