bridgecrewio/checkov
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
PythonApache-2.0
Issues
- 0
CKV2_AWS_44 is showing false negative
#6333 opened by rickythain - 1
Scanning external modules in Terraform
#6328 opened by cbhat-ie - 0
CKV_AZURE_80 outdated
#6343 opened by l33tCod-er - 3
CKV_TF_2 false positive on Terraform Registry modules with pinned version
#6335 opened by Constantin07 - 2
CKV_DOCKER_9 fires when `apt` appears as an argument (e.g. to `rm -rf` )
#6310 opened by jeffcasavant - 5
Terraform plan scan is hanging from v3.2.65 onwards
#6223 opened by nbowes24 - 8
CKV_TF_2 doesn't validate against version field
#6307 opened by egmar - 5
False positive on CKV_TF_2 using shallow clone
#6308 opened by mouellet - 1
CKV2_AWS_44 is showing false positive
#6277 opened by rickythain - 0
Issue while using multiple resources blockd
#6317 opened by prr19776 - 3
False positves CKV2_AWS_67
#6294 opened by aaleksandrov - 0
Support for scanning Containerfiles
#6305 opened by cbhat-ie - 1
CKV_AWS_224 is actually checking two different things
#6265 opened by dancorne - 1
False positives in ckv_aws_237
#6300 opened by pingoleon108 - 3
CKV2_AZURE_41 false positive?
#6140 opened by acelebanski - 2
- 3
Checkov crash
#6260 opened by msl0 - 1
- 1
False Positives for CKV_AWS_70
#6287 opened by blue-tornado - 0
Checkov Generating Different Results in Image and Local with the same setups
#6295 opened by jqlynchien713 - 2
- 1
False positves CKV2_AWS_67
#6293 opened by aaleksandrov - 7
Skiping CKV2_GHA_1 is not honoured
#6216 opened by AttilaT - 0
- 3
Checkov Policy for AWS Cognito
#6240 opened by rlison47 - 2
False positive in CKV_AWS_145
#6264 opened by pingoleon108 - 1
CKV_AWS_94 should be updated to allow KMS mode: 'SSE-KMS-WITH-SERVICE-ROLE'
#6237 opened by robotparty - 0
Error parsing Bicep conditionals
#6234 opened by karpikpl - 0
- 3
CKV_GCP_73 False positive finding
#6214 opened by 1azunna - 0
in-toto Attestation Framework Output
#6208 opened by Forrin - 0
checkov fail for azurerm_subnet_network_security_group_association
#6211 opened by rajagopalan-trimble - 0
Adding common K8s kind/object widely used by the organization ( Apart from K8s default kind/object )
#6210 opened by karthickmuthuraj - 0
Documentation / contributing guide: Where are the Secret Scanning signatures/regex stored?
#6209 opened by rybal06 - 1
Checkov scanning Terraform plan needs to be updated.
#6204 opened by junhu73 - 1
False positive on CKV_AWS_304: When using scheduled expressions for secrets rotation
#6199 opened by cbowlby-bt - 1
Checkov list severity in GitHub
#6198 opened by JoaoLeao7 - 5
[CKV_SECRET_6] Only report some violations when run on a formatted JSON plan
#6184 opened by AliSoftware - 0
Azure Kubernetes Services - If "Planned Maintenance" is used, window duration should be equal or greater than four hours
#6190 opened by tdefise - 0
False positive on CKV2_AWS_28: "Ensure public facing ALB are protected by WAF"
#6180 opened by rutomo-humi - 1
- 0
False positive in CKV_OPENAPI_3: "Ensure that security schemes don't allow cleartext credentials over unencrypted channel - version 3.x.y files"
#6172 opened by ioggstream - 1
- 1
- 1
Missing check - S3 requiring SSL only connections
#6156 opened by dbbc96 - 1
Spelling error "Esnure" instead of "Ensure"
#6155 opened by milairhu - 0
- 0
Bicep Parsing Error: union() in resource deployment
#6142 opened by svwie - 0
- 0
Azure App Configuration Store - Ensure an additional replica is configured in order to support regional outages
#6136 opened by tdefise