kics icon indicating copy to clipboard operation
kics copied to clipboard

Published 20 hours ago verified publisher icon Checkmarx

Metadata

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

Results 293 kics issues
Sort by recently updated
recently updated
newest added

Puppet infrastructure as code

As a user, I want to find IaC vulnerabilities on Puppet. Puppet is based Ruby programming language. Here official documentation link: https://puppet.com/docs/puppet/6/puppet_overview.html

rUp3r avatar rUp3r

feature request
community
hacktoberfest

Error downloading project from GitLab repository. /usr/bin/git exited with 128: fatal: No url found for submodule path '<Path>' in .gitmodules

3 comment

10:25AM | DEBUG | Could not find string flag ci 10:25AM | DEBUG | console.scan() 10:25AM | INFO | Scanning with Keeping Infrastructure as Code Secure 1.4.5 10:25AM | DEBUG...

ppanchal10 avatar ppanchal10

bug
community

Documentation versioning should only be major.minor + latest symlink

https://docs.kics.io has versioned documentation (1.2.3, 1.2.4...). 1. It should be for major.minor (e.g. 1.1, 1.2) as the maintenance releases should be only bug fixes / small issues. 2. At the...

kaplanlior avatar kaplanlior

bug

searchLine pointing to wrong place in multiple arrays

### Expected Behavior KICS should point to correct index when there is nested arrays ### Actual Behavior KICS is not executing correctly when there is nested arrays, as you can...

felipe-avelar avatar felipe-avelar

bug
go

Publish kics docker images to Amazon ECR public Gallery (to avoid dockerhub rate limiting)

**Is your feature request related to a problem? Please describe.** The Kics docker image is provided on dockerhub. However, dockerhub introduces rate limiting, and quite often, pulls will fail in...

mamccorm avatar mamccorm

feature request
community

Passwords and Secrets mechanism does not exclude defined variables references in the results

1 comment

There are a few cases related to defined variables that Password and Secrets return FP's: - **Code snippets**: ``` Resources: MyLambdaFunction: Type: AWS::Lambda::Function Properties: FunctionName: !Sub '${AWS::StackName}-CdnViewerRequest' Code: ZipFile: !Sub...

rafaela-soares avatar rafaela-soares

bug

Support OpenShift in Kubernetes

Rabia0130 avatar Rabia0130

feature request
community
hacktoberfest

Bad command line syntax parsing

4 comment

### Expected Behavior CLI syntax error thrown ### Actual Behavior Creates output folder with name "utput-path" ### Steps to Reproduce the Problem 1. Run command kics scan -output-path ./../ --path...

LeonidWeinberg avatar LeonidWeinberg

bug

Add Support to Vagrant

1 comment

### Description As an user, I want to find IaC vulnerabilities on Vagrantfile's. Vagrantfile is based on Ruby programming language. Here official documentation link: https://www.vagrantup.com/docs/vagrantfile Some examples: https://github.com/adlawson/vagrantfiles https://github.com/patrickdlee/vagrant-examples

miguelfreitas93 avatar miguelfreitas93

feature request

Mention Podman & add it to Supported Platforms

In README at "Supported Platforms" there is logo of docker, and searching in repo for docker return results, but not for podman. podman is alternative to docker: https://podman.io/ https://github.com/containers/podman podman-compose:...

emanuelb avatar emanuelb

feature request
community

Metadata

1.9k
Stars
290
Forks
Watchers

Owner

verified publisher icon Checkmarx

Metadata

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

Back