Highest Voted 'checkov' Questions

0

votes

1 answer

Build Checkov custom policy for VSCode extension

Checkov github repo (https://github.com/bridgecrewio/checkov) states how to build custom policies (terraform, docker) for checkov (cli). Is there a way we can build custom policy for VSCode as well, without buying the subscription.

python-3.x terraform checkov

asked Jul 05 '22 at 14:23

Dushyant Bhardwaj

178
8

0

votes

1 answer

Kubernetes Pod Security checks for InitContainer

Container must follow the Security best Practices from Kubernetes Community and developers and they need to apply alle the Recommendation from CIS Benchmark. what about InitContainer ,should they also follow the same Practices? and what if not ,…

security kubernetes penetration-testing checkov kube-bench

asked Mar 28 '22 at 15:37

almosaiki

71
5

0

votes

1 answer

Checkov attribute reference

I am currently learning policy-as-code with the help of Checkov. In the process, I am also writing my own policies. I would like to write a policy that checks the content inside "managed_rule_set". I know how to reference the attributes from the…

terraform policy checkov

asked Jan 27 '22 at 14:02

jk1234

1
1

0

votes

1 answer

How to run checkov scan on terraform plan

I would like to have checkov scan terraform plan output but I am not getting any success with that.Below is my code in terragrunt.hcl,GitHub Actions workflow and the message I got when my workflow completed.I have tried few methods to have it work…

checkov

asked Jan 06 '22 at 00:32

bibi

285
3
21

0

votes

1 answer

checkov custom policy to scan variables

I'm writing a custom policy in checkov in yaml format. For demo purpose I created a policy which will check the name of storage account and throws error if it has non-alphanumeric characters. My policy file is : metadata: name: "Ensure that…

terraform checkov

asked Dec 01 '21 at 22:55

santosh.a

503
5
20

0

votes

1 answer

Receiving a parsing error while using Checkov

Below is an attempt to run a checkov scan on a plan file terraform init terraform plan -out tf.plan terraform show -json tf.plan > tf.json checkov -f tf.json` Below is the beginning of what the output shows: cloudformation scan results: Passed…

terraform checkov

asked Nov 19 '21 at 16:02

Mike

83
8

-1

votes

1 answer

method to print checkov external modules downloading status

I'm using checkov to scan the static code for my terraform scripts. My terraform scripts internally imports few modules from private repo or public repos. Is there anyway to print the status of download of external modules. The problem is here as I…

terraform checkov

asked Dec 06 '21 at 22:39

santosh.a

503
5
20

-1

votes

1 answer

Checkov custom policy for checking IAM role name

We have a specific policy to include region name for IAM roles I've created custom policy for that, but It's not working: definition: and: - cond_type: "attribute" resource_types: - "aws_iam_role" -…

terraform amazon-iam checkov

asked Nov 18 '21 at 10:15

Andrew Striletskyi

91
9

-2

votes

3 answers

Checkov upgrade notice causing CI to fail

Beginning around 11:30am ET on 11/21/2022, our CI pipelines started failing due to a Checkov update/upgrade notice with an input prompt (see output below). Is there command line option to skip this check from bridgecrew? $ checkov _ …

checkov

asked Nov 21 '22 at 17:06

Dominic O'Connor

315
2
9

Questions tagged [checkov]