Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / aquasecurity/defsec issues and pull requests

#1322 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/sts from 1.18.5 to 1.19.0

Pull Request - State: open - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1320 - feat(terraformplan): Support terraformplan types

Pull Request - State: closed - Opened by simar7 about 1 year ago

#1319 - feat: Dedupe `avd-id` and `id` for policies

Issue - State: open - Opened by simar7 about 1 year ago
Labels: enhancement, needs-investigation

#1318 - fix: Investigate why AVD-AWS-0342 triggers on any input

Issue - State: open - Opened by simar7 about 1 year ago
Labels: bug, needs-investigation

#1317 - feat(rego): Retry if some policies are broken

Pull Request - State: open - Opened by simar7 about 1 year ago

#1316 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/sts from 1.18.5 to 1.18.11

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1315 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/iam from 1.19.10 to 1.19.12

Pull Request - State: open - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1314 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/efs from 1.19.12 to 1.20.1

Pull Request - State: open - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1313 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/elasticsearchservice from 1.16.10 to 1.18.11

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1311 - bug fix : misspelling

Pull Request - State: open - Opened by testwill about 1 year ago - 1 comment

#1310 - bug fix : misspelling

Pull Request - State: closed - Opened by testwill about 1 year ago

#1309 - fix: Revert AVD-AWS-0342 policy

Pull Request - State: closed - Opened by simar7 about 1 year ago - 2 comments

#1308 - bug fix : misspelling

Pull Request - State: closed - Opened by testwill about 1 year ago

#1307 - import optimization

Pull Request - State: closed - Opened by testwill about 1 year ago

#1306 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/apigatewayv2 from 1.12.18 to 1.13.11

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1305 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/emr from 1.23.4 to 1.24.4

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1304 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/sns from 1.18.1 to 1.20.10

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1303 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/kms from 1.20.8 to 1.21.1

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1302 - fix(adapters): Revert new adapters

Pull Request - State: closed - Opened by simar7 about 1 year ago - 2 comments

#1301 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/kms from 1.20.8 to 1.20.12

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1300 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/apigatewayv2 from 1.12.18 to 1.13.10

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1299 - feat: Decouple libraries and policies from each other

Issue - State: open - Opened by simar7 about 1 year ago
Labels: enhancement

#1297 - Revert "added autoscaling adapter (#1153)"

Pull Request - State: closed - Opened by simar7 about 1 year ago - 1 comment

#1296 - bug: trivy config fails by misconfiguration scan error related to aws autoscaling

Issue - State: closed - Opened by johnmanjiro13 about 1 year ago - 6 comments
Labels: bug, needs-triage

#1295 - fix: kubelet policies --read-only-port and --anonymous-auth

Pull Request - State: closed - Opened by chen-keinan about 1 year ago - 1 comment

#1294 - feat(terraform): Support tfvars files during scans

Pull Request - State: closed - Opened by simar7 about 1 year ago

#1293 - Added build in Makefile

Pull Request - State: closed - Opened by AkhtarAmir about 1 year ago - 2 comments

#1292 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/kms from 1.20.8 to 1.20.11

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1291 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/apigatewayv2 from 1.12.18 to 1.13.9

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1290 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/emr from 1.23.4 to 1.24.2

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1289 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/sns from 1.18.1 to 1.20.8

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1288 - chore(deps): bump github.com/hashicorp/go-getter from 1.7.0 to 1.7.1

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1287 - Added logic to also check statement effect

Pull Request - State: closed - Opened by AkhtarAmir about 1 year ago - 1 comment

#1286 - chore(deps): bump github.com/aws/aws-sdk-go from 1.44.212 to 1.44.245

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1285 - feat: GCP compute instance rule 'enable secure boot'

Pull Request - State: closed - Opened by aisha-als about 1 year ago - 1 comment

#1284 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/efs from 1.17.15 to 1.19.12

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1283 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/iam from 1.18.23 to 1.19.10

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1282 - chore(deps): bump github.com/aws/aws-sdk-go from 1.44.212 to 1.44.244

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 2 comments
Labels: dependencies

#1281 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/elasticache from 1.22.10 to 1.26.8

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1280 - feat(scanner): Break out options for enabling libs and policies

Pull Request - State: closed - Opened by simar7 about 1 year ago - 2 comments

#1279 - Aws/iam policies

Pull Request - State: open - Opened by realwebdev about 1 year ago

#1278 - WIP: Fix Terraform VPC adapter flow logs detection

Pull Request - State: open - Opened by Octogonapus about 1 year ago - 2 comments
Labels: stale

#1277 - chore(deps): bump golang.org/x/tools from 0.6.0 to 0.8.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago
Labels: dependencies

#1276 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/iam from 1.18.23 to 1.19.9

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1275 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/efs from 1.17.15 to 1.19.10

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1274 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/elasticache from 1.22.10 to 1.26.7

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1273 - chore(deps): bump github.com/aws/aws-sdk-go from 1.44.212 to 1.44.239

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1272 - check: apt-get install --no-install-recommends

Issue - State: closed - Opened by atombrella about 1 year ago - 1 comment
Labels: new check

#1271 - fix(terraform): Use absolute path for filesystem to load tfvars

Pull Request - State: closed - Opened by simar7 about 1 year ago

#1270 - Check for `--no-install-recommends` in apt-get

Pull Request - State: closed - Opened by atombrella about 1 year ago

#1269 - Fix: correct search for control plane containers

Pull Request - State: closed - Opened by alex123012 about 1 year ago - 5 comments

#1268 - Fix: `AVD-KCV-0028` and `AVD-KCV-0029` checks

Pull Request - State: closed - Opened by alex123012 about 1 year ago - 4 comments

#1267 - Remove exec-bit on .viminspector.json

Pull Request - State: closed - Opened by atombrella about 1 year ago

#1266 - WIP Add check for missing dnf install --nodcs

Pull Request - State: open - Opened by atombrella about 1 year ago - 2 comments

#1265 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/elasticache from 1.22.10 to 1.26.6

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1264 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/iam from 1.18.23 to 1.19.8

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1263 - chore(deps): bump golang.org/x/tools from 0.6.0 to 0.7.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1262 - chore(deps): bump github.com/aws/aws-sdk-go from 1.44.212 to 1.44.234

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1261 - chore(deps): bump github.com/aws/aws-sdk-go-v2/service/efs from 1.17.15 to 1.19.9

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies

#1260 - Minor fix: Rule tf examples

Pull Request - State: closed - Opened by aisha-als over 1 year ago - 1 comment

#1259 - filter iam pass role in policy document to prevent privilege escalations

Pull Request - State: closed - Opened by realwebdev over 1 year ago - 2 comments

#1258 - draft: add trivy ignore in cf files

Pull Request - State: open - Opened by vanesasejdiu over 1 year ago - 1 comment
Labels: stale

#1257 - testing: improve CloudFormation adapter test coverage

Issue - State: open - Opened by simar7 over 1 year ago - 1 comment
Labels: enhancement, stale, co/cloudformation

#1256 - bug: false positive for DS0017 for arbitrary update command

Issue - State: open - Opened by Morl99 over 1 year ago - 7 comments
Labels: bug

#1255 - bug: tests are failing with latest localstack image hardcoded in go-mock-aws

Issue - State: closed - Opened by haykbaluyan over 1 year ago - 1 comment
Labels: bug, needs-triage

#1254 - api_server_authorized_ip_ranges deprecated

Pull Request - State: closed - Opened by SanaaYousaf over 1 year ago

#1247 - check: Use --nodocs for dnf/microdnf

Issue - State: open - Opened by atombrella over 1 year ago - 1 comment
Labels: new check

#1243 - bug: cannot refer to s3 bucket policy using custom policy

Issue - State: open - Opened by int-tt over 1 year ago - 3 comments
Labels: question, stale, needs-more-info

#1238 - Added new check - object lock configuration.

Pull Request - State: closed - Opened by VikrantCGaikwad over 1 year ago - 2 comments
Labels: stale

#1236 - check: iam:passrole to prevent privilege escalation

Issue - State: open - Opened by nuritbielorai over 1 year ago - 2 comments
Labels: stale, new check

#1235 - bug: DS017 - false positive with alpine

Issue - State: open - Opened by smuu over 1 year ago - 2 comments
Labels: enhancement, stale

#1226 - bug: failure to detect too broad AWS EC2 Security Group ingress rule

Issue - State: open - Opened by quinot over 1 year ago - 3 comments
Labels: stale, needs-more-info

#1218 - added in adapters of mq and msk

Pull Request - State: closed - Opened by SanaaYousaf over 1 year ago - 1 comment
Labels: stale

#1216 - chore: deprecate provider/service custom metadata types

Issue - State: open - Opened by simar7 over 1 year ago - 2 comments
Labels: stale

#1199 - added adapters of eks,efs,emr,ecr,eb,et,eventbridge_services

Pull Request - State: open - Opened by SanaaYousaf over 1 year ago - 1 comment
Labels: stale

#1194 - added in adapters of connect,comprehend,co,cp,devopsgurur,codestar,vo…

Pull Request - State: open - Opened by SanaaYousaf over 1 year ago - 1 comment
Labels: stale

#1193 - added in cloudformation,codeartifact,codepipeline,cognito adapters

Pull Request - State: open - Opened by SanaaYousaf over 1 year ago - 1 comment
Labels: stale

#1189 - feat: Add trivy:ignore to cloudformation yaml files

Issue - State: open - Opened by giorod3 over 1 year ago - 2 comments
Labels: stale

#1184 - added in adapters of codebuild

Pull Request - State: closed - Opened by SanaaYousaf over 1 year ago - 2 comments

#1180 - added in elb adapters

Pull Request - State: open - Opened by SanaaYousaf over 1 year ago - 1 comment
Labels: stale

#1174 - feat(policy): Enable selectors for providers

Pull Request - State: closed - Opened by simar7 over 1 year ago - 7 comments

#1168 - Aws/s3 policies

Pull Request - State: closed - Opened by SanaaYousaf over 1 year ago - 2 comments

#1167 - added aws ec2 adapters

Pull Request - State: open - Opened by SanaaYousaf over 1 year ago - 4 comments
Labels: stale

#1166 - add: lambda adapter

Pull Request - State: closed - Opened by realwebdev over 1 year ago - 6 comments

#1160 - Aws/rds policies

Pull Request - State: closed - Opened by realwebdev over 1 year ago - 6 comments

#1153 - added autoscaling adapter

Pull Request - State: closed - Opened by realwebdev over 1 year ago - 8 comments

#1142 - bug: Missing support for new api_server_access_profile in azurerm_kubernetes_cluster

Issue - State: open - Opened by jeffwmiles over 1 year ago - 4 comments
Labels: bug, stale, needs-triage

#1133 - Rules related to sensitive content in configMaps have documentation broken and produce false positives

Issue - State: closed - Opened by rvillane over 1 year ago - 6 comments
Labels: kubernetes, needs-more-info

#1127 - added iam policies

Pull Request - State: open - Opened by SanaaYousaf over 1 year ago - 2 comments

#1118 - bug: rego_type_error: undefined function result.new

Issue - State: closed - Opened by iod3780 over 1 year ago - 2 comments
Labels: bug, stale, needs-triage

#1108 - bug: Detection never finished on big files

Issue - State: open - Opened by arxeiss over 1 year ago - 11 comments
Labels: enhancement, accepted

#1063 - bug: Malformed output for non standard formats for some aws rds rules

Issue - State: closed - Opened by gothrek22 over 1 year ago - 3 comments
Labels: bug, needs-triage

#1059 - Added policy to check log_group_customer_key for cloudwatch

Pull Request - State: open - Opened by SanaaYousaf over 1 year ago - 8 comments
Labels: stale

#1050 - Added new check - object lock configuration

Pull Request - State: closed - Opened by VikrantCGaikwad over 1 year ago - 2 comments