tfsec

Changelog

82be9c0 Add new logo and tweak readme (#852)
d74b1af Bump github.com/zclconf/go-cty from 1.8.4 to 1.9.0 (#851)
dad5689 Prepare move to aquasecurity org (#850)
32acb6a Update the login for Dockerhub (#853)

Docker images

• docker pull aquasec/tfsec-ci:v0.45.5
• docker pull aquasec/tfsec-ci:v0.45.5
• docker pull aquasec/tfsec-ci:v0.45
• docker pull aquasec/tfsec:v0.45.5
• docker pull aquasec/tfsec-alpine:v0.45.5
• docker pull aquasec/tfsec-scratch:v0.45.5
• docker pull aquasec/tfsec-scratch:v0.45
• docker pull aquasec/tfsec:v0.45.5
• docker pull aquasec/tfsec:v0.45
• docker pull aquasec/tfsec-alpine:v0.45.5
• docker pull aquasec/tfsec-alpine:v0.45
• docker pull aquasec/tfsec-scratch:v0.45.5

Changelog

695d53b Handle map values in the contains function (#775)
8ae99b7 Update aws001.go (#776)
fbe4e48 support prerelease (#779)

Docker images

• docker pull tfsec/tfsec-ci:v0.40.1-prerelease
• docker pull tfsec/tfsec:v0.40.1-prerelease
• docker pull tfsec/tfsec-alpine:v0.40.1-prerelease
• docker pull tfsec/tfsec-scratch:v0.40.1-prerelease

• Scans will now fail if an HCL parse error is encountered. Can be bypassed with --ignore-hcl-errors

Changelog

766441b regex ignore undefined (#761)

Docker images

• docker pull tfsec/tfsec-ci:latest
• docker pull tfsec/tfsec-ci:v0.39.42
• docker pull tfsec/tfsec-ci:v0.39
• docker pull tfsec/tfsec:latest
• docker pull tfsec/tfsec:v0.39.42
• docker pull tfsec/tfsec:v0.39
• docker pull tfsec/tfsec-alpine:latest
• docker pull tfsec/tfsec-alpine:v0.39.42
• docker pull tfsec/tfsec-alpine:v0.39
• docker pull tfsec/tfsec-scratch:latest
• docker pull tfsec/tfsec-scratch:v0.39.42
• docker pull tfsec/tfsec-scratch:v0.39

Changelog

d59fcf6 add ignore info and set info level on CMK checks (#759)

Docker images

• docker pull tfsec/tfsec-ci:latest
• docker pull tfsec/tfsec-ci:v0.39.41
• docker pull tfsec/tfsec-ci:v0.39
• docker pull tfsec/tfsec-scratch:latest
• docker pull tfsec/tfsec-scratch:v0.39.41
• docker pull tfsec/tfsec-scratch:v0.39
• docker pull tfsec/tfsec:latest
• docker pull tfsec/tfsec:v0.39.41
• docker pull tfsec/tfsec:v0.39
• docker pull tfsec/tfsec-alpine:latest
• docker pull tfsec/tfsec-alpine:v0.39.41
• docker pull tfsec/tfsec-alpine:v0.39

Changelog

7d54588 add custom check action for tags (#757)

Docker images

• docker pull tfsec/tfsec-ci:latest
• docker pull tfsec/tfsec-ci:v0.39.40
• docker pull tfsec/tfsec-ci:v0.39
• docker pull tfsec/tfsec:latest
• docker pull tfsec/tfsec:v0.39.40
• docker pull tfsec/tfsec:v0.39
• docker pull tfsec/tfsec-alpine:latest
• docker pull tfsec/tfsec-alpine:v0.39.40
• docker pull tfsec/tfsec-alpine:v0.39
• docker pull tfsec/tfsec-scratch:latest
• docker pull tfsec/tfsec-scratch:v0.39.40
• docker pull tfsec/tfsec-scratch:v0.39

Changelog

11dce4d Custom checks should still have impact (#756)

Docker images

• docker pull tfsec/tfsec-ci:latest
• docker pull tfsec/tfsec-ci:v0.39.39
• docker pull tfsec/tfsec-ci:v0.39
• docker pull tfsec/tfsec:latest
• docker pull tfsec/tfsec:v0.39.39
• docker pull tfsec/tfsec:v0.39
• docker pull tfsec/tfsec-alpine:latest
• docker pull tfsec/tfsec-alpine:v0.39.39
• docker pull tfsec/tfsec-alpine:v0.39
• docker pull tfsec/tfsec-scratch:latest
• docker pull tfsec/tfsec-scratch:v0.39.39
• docker pull tfsec/tfsec-scratch:v0.39

Changelog

dce5774 Add functionality for self update (#754)
4e550bd Add the Key to the signature
dde8e08 add in ignore-warnings flag (#752)
bef2003 add the signing key

Docker images

• docker pull tfsec/tfsec-ci:latest
• docker pull tfsec/tfsec-ci:v0.39.38
• docker pull tfsec/tfsec-ci:v0.39
• docker pull tfsec/tfsec:latest
• docker pull tfsec/tfsec:v0.39.38
• docker pull tfsec/tfsec:v0.39
• docker pull tfsec/tfsec-alpine:latest
• docker pull tfsec/tfsec-alpine:v0.39.38
• docker pull tfsec/tfsec-alpine:v0.39
• docker pull tfsec/tfsec-scratch:latest
• docker pull tfsec/tfsec-scratch:v0.39.38
• docker pull tfsec/tfsec-scratch:v0.39

Changelog

d3d6665 Fix the version for built tfsec (#750)
08e744f add the nobody to scratch (#744)
e03ee09 issue 745 (#746)

Docker images

• docker pull tfsec/tfsec-ci:latest
• docker pull tfsec/tfsec-ci:v0.39.37
• docker pull tfsec/tfsec-ci:v0.39
• docker pull tfsec/tfsec:latest
• docker pull tfsec/tfsec:v0.39.37
• docker pull tfsec/tfsec:v0.39
• docker pull tfsec/tfsec-alpine:latest
• docker pull tfsec/tfsec-alpine:v0.39.37
• docker pull tfsec/tfsec-alpine:v0.39
• docker pull tfsec/tfsec-scratch:latest
• docker pull tfsec/tfsec-scratch:v0.39.37
• docker pull tfsec/tfsec-scratch:v0.39

Changelog

9f2bc6a Switch to using goreleaser for docker images

Docker images

• docker pull tfsec/tfsec-ci:latest
• docker pull tfsec/tfsec-ci:v0.39.36
• docker pull tfsec/tfsec-ci:v0.39
• docker pull tfsec/tfsec-scratch:latest
• docker pull tfsec/tfsec-scratch:v0.39.36
• docker pull tfsec/tfsec-scratch:v0.39
• docker pull tfsec/tfsec:latest
• docker pull tfsec/tfsec:v0.39.36
• docker pull tfsec/tfsec:v0.39
• docker pull tfsec/tfsec-alpine:latest
• docker pull tfsec/tfsec-alpine:v0.39.36
• docker pull tfsec/tfsec-alpine:v0.39

Changelog

59db077 Add the tag back in for docker
3a812d4 Adding additional AWS044 tests (#728)
957fae4 Switch to go releaser and sign artifacts (#741)
dbae85a Update name of AWS089 (#738)
51921c1 Use correct parameter name in warning prompt (#740)
025694d Use official Docker image in docker run (#736)
4ed2297 adding the first Oracle Cloud check (#735)
e99c0d7 correct documentation for AWS069 (#743)
b0f44e0 update the code signing GPG

• add container insights check
• add log group check

Adding additional checks

• config-configuration-aggregator
• redshift VPC check
• dynamodb PITR
• elasticache redis backup
• added links where they weren't set

• fix issue with AWS083

Adding some new checks
Tidying up some impacts

• adding some more checks

• some new checks
• updating doc generator
• adding impact and resolution to docs

fix bug in the sarif library