megalinter
megalinter copied to clipboard
oxsecurity
chore(deps): update dependency checkov to v3.2.442
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| checkov | 3.2.413 -> 3.2.442 |
Release Notes
bridgecrewio/checkov (checkov)
v3.2.442
Bug Fix
- secrets: fix relative path secrets - #7211
v3.2.441
v3.2.440
Feature
- secrets: Bump detect secrets - #7203
v3.2.439
Bug Fix
- serverless: Enhance yaml parsing, better support for file expansion - #7115
- terraform: Better utilization of managed modules (if enabled) - #7111
v3.2.438
v3.2.437
Bug Fix
- terraform: Handle explicitly-specified tfvars explicitly - #7107
v3.2.436
Bug Fix
- terraform_plan: Support count in terraform plan files - #7195
v3.2.435
Bug Fix
- kubernetes: Only filter out files that contain Helm built-in variables and functions - #6922
- serverless: check if start and end line in serverless definitions context - #7189
v3.2.434
v3.2.433
Bug Fix
- terraform_plan: add a check to avoid doing get on a none dict object in tfplan scan - #7180
v3.2.432
Bug Fix
- terraform: Multiple fixes - #7178
v3.2.431
v3.2.430
v3.2.429
v3.2.428
v3.2.427
Feature
- secrets: Revert - Bump detect secrets - #7171
Bug Fix
- terraform: dont move clone to internal dir - #7159
v3.2.426
Feature
v3.2.425
v3.2.424
Feature
- terraform: Add SNS check and modify some - #7154
Bug Fix
- secrets: Fix for git-history scan by commits - #7160
v3.2.423
v3.2.422
Feature
- secrets: git-history allow scan by commits list - #7155
Bug Fix
- general: exclude start_line and end_line from is empty solver - #7156
v3.2.421
v3.2.420
Feature
- kustomize: export get kustomize resource id to a function - #7153
Bug Fix
- general: Skip bc_api_key in output - #7148
- terraform: Fixed crash when using variable rendering inside a list of len > 1 - #7151
v3.2.419
v3.2.418
v3.2.417
Breaking Change
- general: Remove OpenAI - #7146
v3.2.416
Bug Fix
- terraform_plan: use provider name not resource address to fix supported_provider matching - #7119
v3.2.415
Bug Fix
- general: using asteval instead of using eval - #7116
v3.2.414
Bug Fix
- terraform: Fix protocols for CKV2_AWS_74 and fix for CKV2_K8S_5 - #7134
Configuration
📅 Schedule: Branch creation - "before 10am every 4 day" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
- [ ] If you want to rebase/retry this PR, check this box
This PR was generated by Mend Renovate. View the repository job log.
![renovate[bot] avatar](https://avatars.githubusercontent.com/in/2740?v=4 "Published by a pub.dev verified publisher"){kind=small}
🦙 MegaLinter status: ⚠️ WARNING
| Descriptor | Linter | Files | Fixed | Errors | Warnings | Elapsed time |
|---|---|---|---|---|---|---|
| ✅ API | spectral | 1 | 0 | 0 | 1.77s | |
| ⚠️ BASH | bash-exec | 6 | 1 | 0 | 0.02s | |
| ✅ BASH | shellcheck | 6 | 0 | 0 | 0.21s | |
| ✅ BASH | shfmt | 6 | 0 | 0 | 0 | 0.9s |
| ✅ COPYPASTE | jscpd | yes | no | no | 2.92s | |
| ✅ DOCKERFILE | hadolint | 131 | 0 | 0 | 31.23s | |
| ✅ JSON | jsonlint | 20 | 0 | 0 | 0.21s | |
| ✅ JSON | v8r | 22 | 0 | 0 | 15.8s | |
| ⚠️ MARKDOWN | markdownlint | 269 | 0 | 306 | 0 | 20.41s |
| ✅ MARKDOWN | markdown-table-formatter | 269 | 0 | 0 | 0 | 145.42s |
| ⚠️ PYTHON | bandit | 222 | 67 | 0 | 6.07s | |
| ✅ PYTHON | black | 222 | 0 | 0 | 0 | 5.22s |
| ✅ PYTHON | flake8 | 222 | 0 | 0 | 2.06s | |
| ✅ PYTHON | isort | 222 | 0 | 0 | 0 | 1.1s |
| ✅ PYTHON | mypy | 222 | 0 | 0 | 11.31s | |
| ✅ PYTHON | pylint | 222 | 0 | 0 | 36.54s | |
| ✅ PYTHON | ruff | 222 | 0 | 0 | 0 | 0.81s |
| ✅ REPOSITORY | checkov | yes | no | no | 42.33s | |
| ✅ REPOSITORY | git_diff | yes | no | no | 1.06s | |
| ⚠️ REPOSITORY | grype | yes | 30 | no | 30.68s | |
| ✅ REPOSITORY | secretlint | yes | no | no | 8.96s | |
| ✅ REPOSITORY | syft | yes | no | no | 2.71s | |
| ✅ REPOSITORY | trivy | yes | no | no | 10.52s | |
| ✅ REPOSITORY | trivy-sbom | yes | no | no | 20.85s | |
| ✅ REPOSITORY | trufflehog | yes | no | no | 4.48s | |
| ✅ SPELL | cspell | 730 | 0 | 0 | 14.04s | |
| ✅ SPELL | lychee | 351 | 0 | 0 | 7.37s | |
| ✅ XML | xmllint | 3 | 0 | 0 | 0 | 1.43s |
| ✅ YAML | prettier | 160 | 0 | 0 | 0 | 4.05s |
| ✅ YAML | v8r | 103 | 0 | 0 | 34.18s | |
| ✅ YAML | yamllint | 161 | 0 | 0 | 4.02s |
See detailed report in MegaLinter reports
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}
Renovate Ignore Notification
Because you closed this PR without merging, Renovate will ignore this update (3.2.442). You will get a PR once a newer version is released. To ignore this dependency forever, add it to the ignoreDeps array of your Renovate config.
If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.