Ryan Kowalewski
Ryan Kowalewski
As discussed with @liamg in the tfsec repo this PR is for issue #914
**Provider** GCP **Severity** LOW **Short Code** bucket-encryption-customer-key **Description** Ensure that GCP storage buckets are configured to use customer-managed encryption keys. **Link** https://cloud.google.com/storage/docs/encryption/customer-managed-keys
I would like to propose a PR to add a check to ensure that GCP storage buckets are configured to use customer-managed encryption keys, much like the compute instance `disk_encryption_customer_key.go`...
Pull request for #918
**Provider** GCP **Severity** LOW **Short Code** - dataset-encryption-customer-key - table-encryption-customer-key **Description** As described in CIS 1.3 for GCP BigQuery datasets and tables should be encrypted using customer-managed keys. **Notes** I...
**Provider** GCP **Severity** MEDIUM **Short Code** - no-project-level-api-keys - require-project-level-api-key-restrictions **Description** As described in CIS 1.3 for GCP, project level API keys should not be created. In the rare situation...
Tag push not triggering workflows which are configured to run on tag push, even with PAT configured
**Describe the bug** I have a workflow set to trigger on pushed tags, however when this semantic-release action creates a tag my other action is not triggered. I have set...
This feature should implement the ability to update a markdown table in a target README.md file listing the status of each module/provider.
## Description The `dst_dns` arg for the `net_tcp_connect` event is empty. The event is logged successfully but the `dst_dns` is empty. The following is an excerpt from the relevant `net_packet_dns`...
### TL;DR Terraform's best practices [specifically state to not constrain the maximum version](https://developer.hashicorp.com/terraform/language/expressions/version-constraints#terraform-core-and-provider-versions) of providers in shared/reusable modules. It causes such an unnecessary headache - please stop doing this! >...