checkov
checkov copied to clipboard
bridgecrewio
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
**By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.** ## Description - updated flake8, because `dlint` removed the upper...
**Describe the issue** Hello, I was looking for a way to change the output filename when using the `-o` flag. I can specify the path to save the file, but...
**By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.** ## Description * saving licenses-data into sca-image-scan's report * licenses...
**By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.** ## Description - The parameter `--client-ca-file` in the KubeletClientCa.py is...
CKV2_GCP_5 does trigger on incorrectly configured separate resource google_project_iam_audit_config
CKV2_GCP_5 is a graph check that looks for incorrectly configured google_project_iam_audit_config bound to a project. However you could use this resource without a resource for project and so that resource...
**"filename"**: "checkov/bicep/graph_builder/graph_to_tf_definitions.py" **"warning_type"**: "Incompatible variable type [9]" "warning_message": " BLOCK_TYPE_TO_BICEP_ELEMENTS_MAP is declared to have type `typing.Dict[typing.Union[typing_extensions.Literal['module'], typing_extensions.Literal['output'], typing_extensions.Literal['param'], typing_extensions.Literal['resource'], typing_extensions.Literal['targetScope'], typing_extensions.Literal['var']], BicepElements]` but is used as type `typing.Dict[str, BicepElements]`." **"warning_line"**:...
**Describe the issue** CKV_AZURE_109 - ensure key vault allows firewall rules settings - FAILS when using dynamic network_acls **Examples** Calling module in terraform ```hcl module "key_vault" { source = "../../../../../terraform-modules/azurerm/key-vault"...
**By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.** ## Description - added a new Mixin class, which offers...
**Describe the issue** The version of Checkov available via macOs `brew` is 2.1.105; current recent released version on Github is 2.1.108. **Examples** - https://github.com/bridgecrewio/checkov/releases - https://formulae.brew.sh/formula/checkov#default ```sh $ brew install...
**Describe the issue** Executing `pip3 install -U checkov` results in an error during install process referencing an inability to satisfy dependencies related to `pyston-lite==2.3.4.2`. Note: After install 2.1.106, then upgrading...
Metadata
Owner
Metadata
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.