checkov
checkov copied to clipboard
bridgecrewio
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
**Describe the issue** I am getting Checkov Check ID: CKV2_AWS_12 while running checkov . I have implemented default security group terraform resources as suggested below; resource "aws_default_security_group" "default" { vpc_id...
**Is your feature request related to a problem? Please describe.** Running Checkov by hand will scan `.tf`, `.yml`, `.yaml`, and `.json` files for ARM templates, Cloudformation files, and Kubernetes files...
I have the scan test results publishing fine - but in the test failures, the links to the bridgecrew docs pages don't look to be working They just redirect back...
**By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.** ## Description This will add the ability to perform cross...
**Describe the issue** Checks regarding GoogleCloudPostgreSql (database_flags) seems to return failure only when explicitly set while not taking into account default behaviour from cloud provider. Instead, I would suggest we...
**Issue** If it is related to an existing check, CKV_DOCKER_1. Dockerfile EXPOSE can accept port using tcp proto by defaut if not specified or you can also specify the protocol...
**Describe the issue** This will add the ability to perform cross reference checks on the collection of scanned files for Kubernetes. This will allow for checks that reference other "kind"...
**Describe the issue** We're using using `terraform show --json plan.tfplan > tfplan.json` to output a JSON file. This is a raw JSON file with no formatting/indenting. As a result the...
**Is your feature request related to a problem? Please describe.** Currently I use lot of my k8 deployments based on kustomize to manage the definitions easily. I wanted to have...
**Describe the issue** https://github.com/bridgecrewio/checkov/blob/master/checkov/dockerfile/checks/UserExists.py doesn't cover all of https://docs.bridgecrew.io/docs/ensure-that-a-user-for-the-container-has-been-created Bridgecrew Policy ID: BC_DKR_3 Checkov Check ID: CKV_DOCKER_3 ToDo: Additionally check if `gosu` is executed in either `CMD` or `ENTRYPOINT` **Examples**...
Metadata
Owner
Metadata
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.