checkov 3.2.504

Infrastructure as code static analysis

Stars: 8474, Watchers: 8474, Forks: 1302, Open Issues: 147

The bridgecrewio/checkov repo was created 6 years ago and the last code push was 3 hours ago.
The project is extremely popular with a mindblowing 8474 github stars!

How to Install checkov

You can install checkov using pip

pip install checkov

or add it to a project with poetry

poetry add checkov

Package Details

Author

bridgecrew

License

Apache License 2.0

Homepage

https://github.com/bridgecrewio/checkov

PyPi:

https://pypi.org/project/checkov/

GitHub Repo:

https://github.com/bridgecrewio/checkov

Classifiers

• Security
• Software Development/Build Tools

Related Packages

Errors

A list of common checkov errors.

Code Examples

Here are some checkov code examples and snippets.

GitHub Issues

The checkov package has 147 open issues on GitHub

• feat: add evaluation_mode field to YAML custom policy attribute checks
• chore: Update Docker base image and components
• feat(general): license-expression lock version
• Lambda Runtimes are not representative with what has been deprecated, support wise, from AWS
• fix(terraform): Add support for 'aws:kms:dsse' in S3 encryption check (CKV_AWS_19)
• CKV_AWS_91: Support AWS::Logs::Delivery as valid NLB access logging configuration
• CKV_AZURE_215: False positive on azurerm_api_management_backend - protocol parameter doesn't control transport security
• CKV2_AWS_47 false positive when WAFv2 is defined in a different module
• Recommendation from SCA
• CKV_GCP_123 triggers even if remove_default_node_pool is set
• fix(terraform_plan): fix CloudStorageSelfLogging for buckets without logging
• fix(terraform): Fix CKV_GCP_93 false positive on multi-key Spanner configuration
• CKV_GCP_93 false positive when using multi-key configuration
• feat(terraform): add support for OpenTofu (.tofu/.tofu.json) file extensions
• fix(helm): Accept helm version greater than v3

See more issues on GitHub