bridgecrewio/checkov issues and pull requests

#5248 - Feature request: CLI flag to fail (exit non-zero) if parsing errors occur

Issue - State: closed - Opened by bryanburke over 1 year ago - 2 comments
Labels: stale, integrations

#5248 - Feature request: CLI flag to fail (exit non-zero) if parsing errors occur

Issue - State: open - Opened by bryanburke over 1 year ago - 1 comment
Labels: stale, integrations

#5241 - Create configuration schema

Issue - State: open - Opened by bdovaz over 1 year ago - 1 comment
Labels: stale, best practices

#5241 - Create configuration schema

Issue - State: closed - Opened by bdovaz over 1 year ago - 2 comments
Labels: stale, best practices

#5241 - Create configuration schema

Issue - State: open - Opened by bdovaz over 1 year ago - 1 comment
Labels: stale, best practices

#5240 - Allow var-file to be passed as environment variable

Issue - State: closed - Opened by roddick-mark over 1 year ago - 2 comments
Labels: good first issue, best practices

#5240 - Allow var-file to be passed as environment variable

Issue - State: closed - Opened by roddick-mark over 1 year ago - 2 comments
Labels: good first issue, best practices

#5240 - Allow var-file to be passed as environment variable

Issue - State: closed - Opened by roddick-mark over 1 year ago - 2 comments
Labels: good first issue, best practices

#5240 - Allow var-file to be passed as environment variable

Issue - State: closed - Opened by roddick-mark over 1 year ago - 2 comments
Labels: good first issue, best practices

#5238 - Checkov not loading/using custom checks

Issue - State: closed - Opened by ws-daniel-d over 1 year ago - 1 comment
Labels: checks

#5238 - Checkov not loading/using custom checks

Issue - State: closed - Opened by ws-daniel-d over 1 year ago - 1 comment
Labels: checks

#5238 - Checkov not loading/using custom checks

Issue - State: closed - Opened by ws-daniel-d over 1 year ago - 1 comment
Labels: checks

#5238 - Checkov not loading/using custom checks

Issue - State: closed - Opened by ws-daniel-d over 1 year ago - 1 comment
Labels: checks

#5233 - Missing guide link for CKV_AZURE_3 report output

Issue - State: closed - Opened by kwame-mintah over 1 year ago - 6 comments
Labels: stale, outputs

#5231 - --skip-path regexp is sometimes compared to the absolute path

Issue - State: open - Opened by izeau over 1 year ago - 4 comments
Labels: graph

#5212 - unable to skip checks in a module specifying a count number and using --repo-root-for-plan-enrichment flag

Issue - State: open - Opened by fleroux514 over 1 year ago - 6 comments
Labels: skips, terraform plan

#5209 - feat(general): add local cache

Pull Request - State: closed - Opened by gruebel over 1 year ago - 5 comments

#5207 - Complex terraform variables aren't rendering correctly

Issue - State: closed - Opened by stokesy56 over 1 year ago - 2 comments
Labels: stale, graph

#5206 - Skip not working calling module with for_each statement

Issue - State: closed - Opened by ConsciousML over 1 year ago - 4 comments
Labels: More info required, skips, terraform

#5206 - Skip not working calling module with for_each statement

Issue - State: closed - Opened by ConsciousML over 1 year ago - 4 comments
Labels: More info required, skips, terraform

#5206 - Skip not working calling module with for_each statement

Issue - State: closed - Opened by ConsciousML over 1 year ago - 4 comments
Labels: More info required, skips, terraform

#5206 - Skip not working calling module with for_each statement

Issue - State: closed - Opened by ConsciousML over 1 year ago - 4 comments
Labels: More info required, skips, terraform

#5198 - How can I check the configuration for terraform backend block

Issue - State: closed - Opened by devopsevd over 1 year ago - 3 comments
Labels: stale, terraform, graph

#5195 - Problem setting the "no_proxy" environment for the VCS setup

Issue - State: closed - Opened by Stephane-Br over 1 year ago - 2 comments
Labels: stale, languages

#5195 - Problem setting the "no_proxy" environment for the VCS setup

Issue - State: open - Opened by Stephane-Br over 1 year ago - 1 comment
Labels: stale, languages

#5181 - CKV_AWS_356 does not apply to KMS key policy

Issue - State: closed - Opened by manjinder-mckc over 1 year ago - 5 comments
Labels: checks, stale

#5157 - CKV_OPENAPI_4 generates false positives

Issue - State: closed - Opened by secvladimir over 1 year ago - 2 comments
Labels: checks, stale

#5140 - chore: update bc-detect-secrets version to 1.4.29

Pull Request - State: open - Opened by gruebel over 1 year ago

#5139 - feat(terraform): foreach remove error from info log.

Pull Request - State: closed - Opened by ChanochShayner over 1 year ago

#5138 - chore: disable checkov-secrets GHA job

Pull Request - State: closed - Opened by gruebel over 1 year ago

#5137 - docs(general): Update operators with examples

Pull Request - State: open - Opened by tsmithv11 over 1 year ago

#5136 - fix(terraform): Should use UNKNOWN rather than skipped

Pull Request - State: closed - Opened by JamesWoolfenden over 1 year ago

#5135 - fix(terraform): exclude unrestrictable actions in CKV_AWS_355 and CKV_AWS_356

Pull Request - State: open - Opened by gruebel over 1 year ago

#5134 - Checkov v2.3.259 fails with CKV_AWS_356 for actions that must specify "all resources"

Issue - State: open - Opened by lborloz over 1 year ago - 1 comment
Labels: checks, terraform

#5133 - fix(cloudformation): yaml load utf8 decode

Pull Request - State: closed - Opened by achiar99 over 1 year ago

#5132 - feat(sca): adding validation for the file_line_number

Pull Request - State: closed - Opened by itai1357 over 1 year ago

#5131 - fix(kustomize): fix empty kustomize file crash

Pull Request - State: closed - Opened by gruebel over 1 year ago

#5130 - Output from checkov does not display colors when running through Jenkins CI

Issue - State: closed - Opened by sprathod369 over 1 year ago - 2 comments
Labels: stale, noise

#5129 - feat(terraform): extend CKV2_AWS_5 with new resources

Pull Request - State: closed - Opened by gruebel over 1 year ago

#5128 - kustomize fails on empty kustomization.yaml file without meaningful message

Issue - State: closed - Opened by marekiwaniak over 1 year ago - 1 comment

#5127 - platform(general): SBOM lines numbers adjusting

Pull Request - State: closed - Opened by NoaAzoulay over 1 year ago

#5126 - fix(gitlab): Skipping image blocks without name attribute

Pull Request - State: closed - Opened by Eliran-Turgeman over 1 year ago

#5125 - chore: bump requests from 2.30.0 to 2.31.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, python

#5124 - fix(terraform): fix terraform variable rendering for provider alias

Pull Request - State: closed - Opened by gruebel over 1 year ago

#5123 - chore: bump requests from 2.26.0 to 2.31.0 in /tests/sca_package_2/examples

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, python

#5122 - chore: bump requests from 2.26.0 to 2.31.0 in /tests/sca_package/examples

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, python

#5121 - CKV_AWS_338 - False positive on checking for retention days

Issue - State: closed - Opened by dbbc96 over 1 year ago - 1 comment
Labels: checks, terraform

#5120 - feat(sca): dockerfile image-referencer fixes

Pull Request - State: closed - Opened by ChanochShayner over 1 year ago

#5119 - chore: add type hints to tf modules and module_loading

Pull Request - State: closed - Opened by gruebel over 1 year ago

#5118 - terraform locals not expanded for non-default provider

Issue - State: closed - Opened by tommywo over 1 year ago - 1 comment
Labels: terraform, graph

#5117 - chore: bump sigstore/cosign-installer from 2.8.1 to 3.0.5

Pull Request - State: open - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions

#5116 - feat(secrets): add jwt detector to the secret runner

Pull Request - State: closed - Opened by omryMen over 1 year ago

#5115 - fix(dockerfile): improve update searching in CKV_DOCKER_5

Pull Request - State: closed - Opened by gruebel over 1 year ago

#5114 - docs(general): Update CLI Command Reference.md

Pull Request - State: closed - Opened by tsmithv11 over 1 year ago

#5113 - docs(general): Spdx docs

Pull Request - State: closed - Opened by tsmithv11 over 1 year ago

#5112 - feat(terraform_plan): Expose field changes to python checks

Pull Request - State: open - Opened by tarfeef101 over 1 year ago - 1 comment

#5111 - CKV2_AZURE_31 False positive

Issue - State: closed - Opened by askpatrickw over 1 year ago - 2 comments
Labels: checks

#5110 - False positives for CKV_AZURE_65 and CKV_AZURE_66

Issue - State: closed - Opened by askpatrickw over 1 year ago - 2 comments
Labels: checks

#5109 - fix/terraform/var file option

Pull Request - State: closed - Opened by StevePerezUK over 1 year ago - 1 comment

#5108 - feat(sca): adding the risk factor v2 to the vulnerability details

Pull Request - State: closed - Opened by itai1357 over 1 year ago

#5107 - feat(general): Added computation of git_root_path to igraph serialization

Pull Request - State: closed - Opened by bo156 over 1 year ago

#5106 - chore: enable mypy on part of terraform codebase

Pull Request - State: closed - Opened by gruebel over 1 year ago

#5105 - chore: update bc-detect-secrets version to 1.4.28

Pull Request - State: closed - Opened by gruebel over 1 year ago

#5104 - feat(general): add SPDX output

Pull Request - State: closed - Opened by gruebel over 1 year ago

#5103 - feat(secrets): Add new pre-commit hook for secrets

Pull Request - State: closed - Opened by james-otten-pan over 1 year ago

#5102 - Custom rule skipped issue with !Sub intrinsic function

Issue - State: closed - Opened by sarbole over 1 year ago - 2 comments
Labels: skips, cloudformation

#5101 - AWS S3 Bucket Existence when working on Bucket Policies

Issue - State: closed - Opened by 43976989 over 1 year ago - 6 comments
Labels: graph, cloudformation

#5100 - Check AWS::Lambda::Function has any AWS::CloudWatch::Alarm set

Issue - State: open - Opened by pixelizedPeanut over 1 year ago - 1 comment
Labels: More info required, checks, cloudformation

#5099 - CKV_GIT_4 always fail with terraform_plan

Issue - State: open - Opened by Becojo over 1 year ago
Labels: checks, secrets, terraform plan

#5098 - feat(sca): showing line numbers in the cli output for licenses

Pull Request - State: closed - Opened by itai1357 over 1 year ago

#5097 - False Positive on CKV2_AWS_12: "Ensure the default security group of every VPC restricts all traffic"

Issue - State: open - Opened by txsutton over 1 year ago
Labels: checks

#5096 - feat(sca): showing line numbers in the cli output for csv

Pull Request - State: closed - Opened by itai1357 over 1 year ago

#5095 - test add pydantic - ignore

Pull Request - State: closed - Opened by matansha over 1 year ago
Labels: title needs adjustment

#5094 - Custom policy for Kustomize

Issue - State: closed - Opened by paulozava over 1 year ago - 2 comments
Labels: stale, languages

#5093 - feat(kubernetes): seperate service acoount builder to improve performance

Pull Request - State: closed - Opened by bo156 over 1 year ago

#5092 - feat(sca): using the lines in the directly in the record, rather than in the "vulnerability_details" + having it in ExtraResources

Pull Request - State: closed - Opened by itai1357 over 1 year ago

GitHub / bridgecrewio/checkov issues and pull requests