[Bug]: prowler AWS --list-compliance-requirements results in error/ no requirements for certain frameworks

[edschreibman]

What happened? prowler aws --list-compliance-requirements results in error/ no requirements the frameworks listed below

How to reproduce it Steps to reproduce the behavior:

1. run prowler aws --list-compliance to get list of frameworks
2. run prowler aws --list-compliance-requirements [framework]
3. For these Frameworks: i.e. prowler aws --list-compliance-requirements soc2_aws
   • soc2_aws
   • cisa_aws
   • ffiec_aws
   • gdpr_aws
   • hipaa_aws

error produced:

        Traceback (most recent call last):
  File "/usr/local/bin/prowler", line 8, in <module>
    sys.exit(prowler())
  File "/usr/local/lib/python3.9/site-packages/prowler/__main__.py", line 98, in prowler
    print_compliance_requirements(
  File "/usr/local/lib/python3.9/site-packages/prowler/lib/check/check.py", line 187, in print_compliance_requirements
    provider = split_compliance[2].upper()
IndexError: list index out of range

For these frameworks:

• aws_audit_manager_control_tower_guardrails_aws
• aws_foundational_security_best_practices_aws
• fedramp_low_revision_4_aws
• fedramp_moderate_revision_4_aws
• gxp_eu_annex_11_aws
• gxp_21_cfr_part_11_aws
• nist_800_53_revision_4_aws
• nist_800_53_revision_5_aws
• nist_800_171_revision_2_aws
• nist_csf_1.1_aws
• rbi_cyber_security_framework_aws

No error - But no requirements in output

Expected behavior A clear and concise description of what you expected to happen.

Output to contain controls in framework, like this for ens_rd2022_aws:

Listing ENS RD2022 AWS Compliance Requirements:

Requirement Id: op.acc.1.aws.iam.2
    - Description: Proveedor de identidad centralizado
    - Checks:
       iam_check_saml_providers_sts

Requirement Id: op.acc.2.aws.iam.4
    - Description: Requisitos de acceso
    - Checks:
       iam_avoid_root_usage

Requirement Id: op.acc.3.r1.aws.iam.1
    - Description: Segregación rigurosa
    - Checks:
       iam_support_role_created

Screenshots or Logs If applicable, add screenshots to help explain your problem.

Also, you can add logs (anonymize them first!). Here a command that may help to share a log prowler <your arguments> --log-level DEBUG --log-file $(date +%F)_debug.log then attach here the log file.

From where are you running Prowler? Please, complete the following information:

• Resource: (e.g. EC2 instance, ) : EC2 Instance

• OS: [e.g. Amazon Linux 2 ]: Amazon Linux 2 ] prowler --version Prowler 3.2.0 python --version Python 2.7.18 pip --version pip 23.0 from /usr/local/lib/python3.9/site-packages/pip (python 3.9)

• Installation method (Are you running it from pip package or cloning the github repo?): #Install Prowler via pip3 /usr/local/bin/pip3 install prowler

• Others:

Additional context Add any other context about the problem here.

[MrCloudSec]

Hi @edschreibman, can you use the last version of prowler pip install --upgrade prowler? These errors are not present in version 3.2.4.

[edschreibman]

Tested and agreed - fully resolved in Prowler 3.2.4 Fri Mar 10 23:45:28 UTC 2023 Prowler 3.2.4