bridgecrewio/checkov

Issues

• CKV2_AWS_44 is showing false negative

  #6333 opened 8 days ago by rickythain
  0

• Scanning external modules in Terraform

  #6328 opened 9 days ago by cbhat-ie
  1

• CKV_AZURE_80 outdated

  #6343 opened 8 days ago by l33tCod-er
  0

• CKV_TF_2 false positive on Terraform Registry modules with pinned version

  #6335 opened 8 days ago by Constantin07
  3

• CKV_DOCKER_9 fires when `apt` appears as an argument (e.g. to `rm -rf` )

  #6310 opened 14 days ago by jeffcasavant
  2

• Terraform plan scan is hanging from v3.2.65 onwards

  #6223 opened a month ago by nbowes24
  5

• CKV_TF_2 doesn't validate against version field

  #6307 opened 13 days ago by egmar
  8

• False positive on CKV_TF_2 using shallow clone

  #6308 opened 11 days ago by mouellet
  5

• CKV2_AWS_44 is showing false positive

  #6277 opened 9 days ago by rickythain
  1

• Issue while using multiple resources blockd

  #6317 opened 11 days ago by prr19776
  0

• False positves CKV2_AWS_67

  #6294 opened 19 days ago by aaleksandrov
  3

• Support for scanning Containerfiles

  #6305 opened 14 days ago by cbhat-ie
  0

• CKV_AWS_224 is actually checking two different things

  #6265 opened 22 days ago by dancorne
  1

• False positives in ckv_aws_237

  #6300 opened 15 days ago by pingoleon108
  1

• CKV2_AZURE_41 false positive?

  #6140 opened 2 months ago by acelebanski
  3

• run time increased drastically for secrets scanning in 3.2.65+

  #6206 opened 17 days ago by tberreis
  2

• Checkov crash

  #6260 opened 17 days ago by msl0
  3

• How to set CHECKOV_OUTPUT_CODE_LINE_LIMIT variable from config file ?

  #6284 opened 17 days ago by bioinfornatics
  1

• False Positives for CKV_AWS_70

  #6287 opened 20 days ago by blue-tornado
  1

• Checkov Generating Different Results in Image and Local with the same setups

  #6295 opened 19 days ago by jqlynchien713
  0

• Azure Web Apps - Ensure SCM minimum TLS version is set to 1.2

  #6283 opened 21 days ago by tdefise
  2

• False positves CKV2_AWS_67

  #6293 opened 19 days ago by aaleksandrov
  1

• Skiping CKV2_GHA_1 is not honoured

  #6216 opened a month ago by AttilaT
  7

• UnicodeDecodeError not caught & filename giving issues not reported.

  #6290 opened 20 days ago by GadgetSteve
  0

• Checkov Policy for AWS Cognito

  #6240 opened 25 days ago by rlison47
  3

• False positive in CKV_AWS_145

  #6264 opened 20 days ago by pingoleon108
  2

• CKV_AWS_94 should be updated to allow KMS mode: 'SSE-KMS-WITH-SERVICE-ROLE'

  #6237 opened 25 days ago by robotparty
  1

• Error parsing Bicep conditionals

  #6234 opened a month ago by karpikpl
  0

• Azure Container Registry - Dedicated data endpoint should be enabled

  #6187 opened a month ago by tdefise
  0

• CKV_GCP_73 False positive finding

  #6214 opened a month ago by 1azunna
  3

• in-toto Attestation Framework Output

  #6208 opened a month ago by Forrin
  0

• checkov fail for azurerm_subnet_network_security_group_association

  #6211 opened a month ago by rajagopalan-trimble
  0

• Adding common K8s kind/object widely used by the organization ( Apart from K8s default kind/object )

  #6210 opened a month ago by karthickmuthuraj
  0

• Documentation / contributing guide: Where are the Secret Scanning signatures/regex stored?

  #6209 opened a month ago by rybal06
  0

• Checkov scanning Terraform plan needs to be updated.

  #6204 opened a month ago by junhu73
  1

• False positive on CKV_AWS_304: When using scheduled expressions for secrets rotation

  #6199 opened a month ago by cbowlby-bt
  1

• Checkov list severity in GitHub

  #6198 opened a month ago by JoaoLeao7
  1

• [CKV_SECRET_6] Only report some violations when run on a formatted JSON plan

  #6184 opened a month ago by AliSoftware
  5

• Azure Kubernetes Services - If "Planned Maintenance" is used, window duration should be equal or greater than four hours

  #6190 opened a month ago by tdefise
  0

• False positive on CKV2_AWS_28: "Ensure public facing ALB are protected by WAF"

  #6180 opened a month ago by rutomo-humi
  0

• Azure Key Vault - Ensure RBAC for Azure Key Vault is enabled

  #6164 opened 2 months ago by tdefise
  1

• False positive in CKV_OPENAPI_3: "Ensure that security schemes don't allow cleartext credentials over unencrypted channel - version 3.x.y files"

  #6172 opened a month ago by ioggstream
  0

• Custom yml policy is not matching the contents of Terraform

  #6137 opened 2 months ago by rajagopalan-trimble
  1

• does not work to specify multiple external-checks-git and external-checks-dir

  #6159 opened 2 months ago by krizi
  1

• Missing check - S3 requiring SSL only connections

  #6156 opened 2 months ago by dbbc96
  1

• Spelling error "Esnure" instead of "Ensure"

  #6155 opened 2 months ago by milairhu
  1

• CKV_AZURE_72: Missing Function Apps, Function Apps Slots and Web App Slots

  #6143 opened 2 months ago by tdefise
  0

• Bicep Parsing Error: union() in resource deployment

  #6142 opened 2 months ago by svwie
  0

• Azure App Configuration Store - Ensure 'Soft Delete' is set to 7 days.

  #6139 opened 2 months ago by tdefise
  0

• Azure App Configuration Store - Ensure an additional replica is configured in order to support regional outages

  #6136 opened 2 months ago by tdefise
  0