-
Notifications
You must be signed in to change notification settings - Fork 1.2k
Issues: bridgecrewio/checkov
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
Version bump rustworkx as 0.13.2 has no wheel for python 3.13
#7025
opened Feb 24, 2025 by
gone-for-coding
Azure DevOps entra federated identity & CKV_AZURE_249: "Ensure Azure GitHub Actions OIDC trust policy is configured securely"
checks
Check additions or changes
#7021
opened Feb 21, 2025 by
garddolau
Outdated package requirement: "networkx<2.7" - Is this intended?
contribution requested
This is a great feature idea, but we will need a contribution to get it added to Checkov.
#7020
opened Feb 20, 2025 by
cglanzer
Checkov does not detect hardcoded connection strings in Bicep appSettingsKeyValuePairs
#7017
opened Feb 16, 2025 by
ibadichi-whitesource
CKV_AWS_145: Move from aws_s3_bucket to aws_s3_bucket_server_side_encryption_configuration
checks
Check additions or changes
#7014
opened Feb 14, 2025 by
Malcolm-GetAHead
CKV2_AWS_52 Wrong/incomplete definition
checks
Check additions or changes
#7013
opened Feb 13, 2025 by
fire2
CKV2_IBM_1 is failing even when we set loadbalancer as type private
checks
Check additions or changes
#7009
opened Feb 12, 2025 by
Aashiq-J
Checkov (3.2.368) crashes with
KeyError: '__startline__' when scanning restructured serverless YAML file
crash
#7006
opened Feb 10, 2025 by
vish-space
CKV_GCP_125 goes against Google published best-practices
checks
Check additions or changes
#7005
opened Feb 10, 2025 by
issacg
File parsing error for Bicep subscriptionResourceId which is on multiple lines
crash
#6998
opened Feb 7, 2025 by
jonsamwell
CloudFormation: Unable to Validate Secret Manager Resource Policies Using forEach
languages
#6995
opened Feb 4, 2025 by
sarbole
[CKV2_AWS_6] False positives for s3 bucket public access blocks
checks
Check additions or changes
#6982
opened Jan 29, 2025 by
tarfeef101
CKV_GCP_125: check too big, not documented, cumbersome to satisfy
best practices
#6981
opened Jan 28, 2025 by
pndurette
Add docs on resolving CKV2_GHA_1: "Ensure top-level permissions are not set to write-all"
#6977
opened Jan 27, 2025 by
JoshuaKGoldberg
CKV2_AWS_49: False positive when endpoint_type not hardcoded
checks
Check additions or changes
#6955
opened Jan 17, 2025 by
DzeryCZ
Improve YAML Custom Policy for Checking Connection Dependencies
contribution requested
This is a great feature idea, but we will need a contribution to get it added to Checkov.
#6951
opened Jan 15, 2025 by
MatousVondal
update Python module packaging
contribution requested
This is a great feature idea, but we will need a contribution to get it added to Checkov.
#6950
opened Jan 14, 2025 by
AndreasPelzer
[Terraform] Parsing failure due to provider-defined functions in terraform
languages
#6947
opened Jan 13, 2025 by
gdowmont
Fix CKV2_AWS_20 false positives for NLB listeners on port 80 (TCP)
checks
Check additions or changes
#6945
opened Jan 9, 2025 by
pingoleon108
CVK_GCP_22 check fail with string gke version
checks
Check additions or changes
#6944
opened Jan 9, 2025 by
roxannelandry
Checksums of the prebuilt binaries
contribution requested
This is a great feature idea, but we will need a contribution to get it added to Checkov.
#6925
opened Dec 28, 2024 by
matous-volf
Previous Next
ProTip!
Mix and match filters to narrow down what you’re looking for.