kics icon indicating copy to clipboard operation
kics copied to clipboard

Published 20 hours ago verified publisher icon Checkmarx

Metadata

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

Results 293 kics issues
Sort by recently updated
recently updated
newest added

Passwords And Secrets For Generic Token False Positive Results Reference To An Event

### Actual Behavior KICS incorrectly detects a reference to an event in lines 78 and 143 in sample ### Steps to Reproduce the Problem 1. Run KICS Scan `docker run...

cxMiguelSilva avatar cxMiguelSilva

bug
query
community
hacktoberfest

Passwords And Secrets For Generic Token False Positive Results In ARN

### Expected Behavior KICS should not detect the ARN as Secrets [Amazon Resource Names (ARNs) - AWS General Reference](https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) ### Actual Behavior KICS incorrectly detects anArn in line 79 ###...

cxMiguelSilva avatar cxMiguelSilva

bug
query
community
hacktoberfest

Passwords And Secrets For Generic Token False Positive Results In Code Block Varible

### Actual Behavior KICS incorrectly detects variable in code block on lines 1447, 1456, 1238 and 1428 ### Steps to Reproduce the Problem 1. Run KICS Scan `docker run -v...

cxMiguelSilva avatar cxMiguelSilva

bug
query
community
hacktoberfest

"Passwords And Secrets - Generic Secret" False Positive Results

## CASE 1 ### Actual Behavior A false positive result is detected in line 76 (` SLACK_SIGNING_SECRET = "projects/455826092000/secrets/SlackSigningSecret/versions/latest" `). The result is flagging a path to a secret, which...

rafaela-soares avatar rafaela-soares

bug
query
community
hacktoberfest

BOM: support for GCP

### Description BOM (Bill of Materials) uses Rego queries to extract a list of used resources along with its metadata in the scanned IaC. It is already available for AWS...

rafaela-soares avatar rafaela-soares

feature
community
hacktoberfest

BOM: support for AZURE

### Description BOM (Bill of Materials) uses Rego queries to extract a list of used resources along with its metadata in the scanned IaC. It is already available for AWS...

rafaela-soares avatar rafaela-soares

feature
community
hacktoberfest

ECS Service Without Running Tasks Terraform Security Query False Positive Result

### Expected Behavior A new implementation of the query is suggested, as searching for the `deployment_maximum_percent` and `deployment_minimum_healthy_percent` string does not suffice. The newly implemented query should check if the...

cxMiguelSilva avatar cxMiguelSilva

bug
query
community
hacktoberfest

S3 Bucket Without Restriction Of Public Bucket Security Query False Positive Result

### Actual Behavior `S3 Bucket Without Restriction Of Public Bucket` Security Query flagged a false positive in line 13, as by default, new buckets, access points and objects do not...

cxMiguelSilva avatar cxMiguelSilva

bug
query
community
hacktoberfest

Passwords And Secrets - Encryption Key False Positive

### Expected Behavior (Which results are expected from KICS?) “Passwords And Secrets - Encryption Key” query flagged a reference to a secret in line 11. The string in question (“some...

cxMiguelSilva avatar cxMiguelSilva

bug
query
community
hacktoberfest

Azure Instance Using Basic Authentication Security Query Detects False Positive Result

### Expected Behavior KICS does not find Results for Azure Instance Using Basic Authentication ### Actual Behavior Currently, KICS Detects a false positive result for the `Azure Instance Using Basic...

cxMiguelSilva avatar cxMiguelSilva

bug
query
community
hacktoberfest

Metadata

1.9k
Stars
290
Forks
Watchers

Owner

verified publisher icon Checkmarx

Metadata

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

Back