search

prowler-cloud / prowler

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more.
https://prowler.com
Apache License 2.0
10.9k stars 1.55k forks source link

apigateway_service.py causing "TooManyRequestsException" error #5517

Open jonathanbro opened 1 month ago

jonathanbro commented 1 month ago

Steps to Reproduce

  1. Run Prowler as per the instructions here https://github.com/prowler-cloud/prowler/tree/master/contrib/aws/multi-account-securityhub.

Expected behavior

Prowler should successfully audit our API Gateway service.

Actual Result with Screenshots or Logs

Screenshot 2024-10-24 at 07 26 18

How did you install Prowler?

Docker (docker pull toniblyx/prowler)

Environment Resource

  1. ECS Fargate

OS used

N/A

Prowler version

4.5.0

Pip version

N/A

Context

You will see from the screenshots Prowler cannot successfully run apigateway_service.py. I have tried lowering the max retries to 1 but that didn't help.

MrCloudSec commented 1 month ago

Hi @jonathanbro, that's the way AWS manage the API throttling, you can try to avoid the with --aws-retries-max-attempts 1, more info here. Let us know if that works for you!

jonathanbro commented 1 month ago

Hey @sergargar thanks for the update! Yep I tried that and it didn't help :(

jonathanbro commented 1 month ago

If there's nothing we feel we can do, please close the issue :)