simar7
simar7
### User Story **As a**: user of Trivy misconfiguration scanning, **I would like to**: see supporting documentation regarding misconfiguration issues, **So that**: I can fix my misconfigured code as flagged...
When reporting misconfiguration scanning results we can be more descriptive about how many "total" files were scanned and how many "misconfigured" files were found. See context below for details: Trivy...
### Discussed in https://github.com/aquasecurity/trivy/discussions/6136 Originally posted by **felipeng** February 14, 2024 ### Description Hey, can we have [this feature](https://aquasecurity.github.io/tfsec/v1.28.1/guides/configuration/ignores/#ignoring-specific-values) , which is ignore specific values, but for terraform modules as...
## Description Merge `pkg/specs` from trivy-policies into trivy and remove trivy's dependence on trivy-policies. This PR is stacked onto https://github.com/aquasecurity/trivy/pull/6005 ## Related issues - Close https://github.com/aquasecurity/trivy/issues/5626 ## Stacked PRs -...
As described in the issues below, we can add support for wildcards for workspaces and other resources in general https://github.com/aquasecurity/tfsec/issues/1937 https://github.com/aquasecurity/tfsec/issues/1804
We should consider deprecating the support for PSP as it has been deprecated since v1.21 and removed in v1.25. We've already removed the GKE related checks as mentioned here worked...
Today we have a variety of terms to refer to a `check`, namely: 1. Policy 2. Check 3. Rule All refer to the same concept of `checking` for a misconfiguration....
## Motivation We've run into several occasions (see linked issues below) where we incorrectly flag (false positive) misconfigurations in Terraform scanning when the input is the Terraform plan in JSON....
### Discussed in https://github.com/aquasecurity/trivy/discussions/5865 Originally posted by **brsolomon-deloitte** January 3, 2024 ### Description Passing Trivy a custom Rego policy that uses `input.aws.iam.groups[_]` for Terraform code will cause a `fatal error:...
### Discussed in https://github.com/aquasecurity/trivy/discussions/5877 Originally posted by **gantta** January 4, 2024 ### Description **Provider** AWS **Scanner** misconfiguration **Description** ## Abstract When supplying security scan results to clients, we need the...