checkov

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

APACHE-2.0 License

Downloads
4.3M
Stars
6.8K
Committers
400
View Code on GitHub Visit Website
Ecosystems: Terraform, Kubernetes, Azure, Amazon Web Services

Bot releases are visible (Hide)

checkov - 3.2.55

Published by github-actions[bot] 7 months ago

Feature

  • sast: Adding typescript cdk part 6 paz - #6149

Bug Fix

  • sca: enabling suppression in the cli-output for IR-files and dockerfiles - #6148
checkov - 3.2.53

Published by github-actions[bot] 7 months ago

Feature

  • terraform: support s3 bucket name for references in graph - #6134
checkov - 3.2.52

Published by github-actions[bot] 7 months ago

Feature

  • general: Update the releases' zip file names to be generic - #6141
checkov - 3.2.51

Published by github-actions[bot] 7 months ago

Feature

  • general: add policy metadata filter exception flag - #6132
checkov - 3.2.50

Published by github-actions[bot] 7 months ago

Bug Fix

  • general: remove limitation of resource and provider in tf.json file - #6133
checkov - 3.2.49

Published by github-actions[bot] 7 months ago

Bug Fix

  • general: pin the version of schema to <=0.7.5 - #6125
checkov - 3.2.47

Published by github-actions[bot] 7 months ago

Feature

  • secrets: bump manually bc-detect-secrets - #6120
  • terraform: add fix for when tf_def is a string - #6121
checkov - 3.2.45

Published by github-actions[bot] 7 months ago

Feature

  • terraform: fix for_each resource handling - #6119
checkov - 3.2.44

Published by github-actions[bot] 7 months ago

Bug Fix

  • sca: Fix suppression integration crashing if licenseTypes is missing - #6117
checkov - 3.2.43

Published by github-actions[bot] 7 months ago

Bug Fix

  • terraform: Fixed bug in evaluate_conditional_expression and added zipmap support - #6106
checkov - 3.2.42

Published by github-actions[bot] 7 months ago

Feature

  • sast: support sast skipped checks - #6095

Bug Fix

  • secrets: ignore secret check in test file - #6105

Platform

  • general: handle API errors with more detail - #6107
checkov - 3.2.39

Published by github-actions[bot] 7 months ago

Feature

  • secrets: fix entropy detector FP - #6090
checkov - 3.2.38

Published by github-actions[bot] 7 months ago

Bug Fix

  • terraform: prevent side effects when updating variable rendering - #6087
checkov - 3.2.37

Published by github-actions[bot] 7 months ago

Feature

  • terraform: connect module resource to provider - #6083
checkov - 3.2.36

Published by github-actions[bot] 7 months ago

Bug Fix

  • gha: make sure to have prisma url - #6084
checkov - 3.2.35

Published by github-actions[bot] 7 months ago

Feature

  • general: add policy name and guidelines to CSV output - #6082

Bug Fix

  • sast: add attribute verification - #6078
checkov - 3.2.34

Published by github-actions[bot] 7 months ago

Bug Fix

  • terraform: Dont duplicate more vertices than needed for nested modules with large count/for each values + used cache to avoid extensive usage of os.path.realpath to drastically improve performance - #6072
checkov - 3.2.33

Published by github-actions[bot] 8 months ago

Platform

  • general: improve upload failure logging and log size of failed files - #6076
checkov - 3.2.32

Published by github-actions[bot] 8 months ago

Bug Fix

  • sast: do not log warning when using skip framework - #6066
checkov - 3.2.31

Published by github-actions[bot] 8 months ago

Bug Fix

  • terraform: better handling of interpolation rendering in conditional expressions - #6062
  • terraform: Changed a couple of checks from negative to positive check, behavior is the same - #6063
Package Rankings
Top 9.86% on Proxy.golang.org
Top 0.86% on Pypi.org
Badges
Extracted from project README
checkov Maintained by Prisma Cloud build status security status code_coverage docs PyPI Python Version Terraform Version Downloads Docker Pulls slack-community Open in Gitpod