checkov 3.2.55

Infrastructure as code static analysis

Stars: 6478, Watchers: 6478, Forks: 1035, Open Issues: 180

The bridgecrewio/checkov repo was created 4 years ago and the last code push was 3 hours ago.
The project is extremely popular with a mindblowing 6478 github stars!

How to Install checkov

You can install checkov using pip

pip install checkov

or add it to a project with poetry

poetry add checkov

Package Details

Author

bridgecrew

License

Apache License 2.0

Homepage

https://github.com/bridgecrewio/checkov

PyPi:

https://pypi.org/project/checkov/

GitHub Repo:

https://github.com/bridgecrewio/checkov

Classifiers

• Security
• Software Development/Build Tools

Related Packages

Errors

A list of common checkov errors.

Code Examples

Here are some checkov code examples and snippets.

GitHub Issues

The checkov package has 180 open issues on GitHub

• Github Action ignores baseline file
• Implement cve skip by package name and severity
• CKV2_GCP_7 need to filter on database_version and find only mysql dbs
• CKV2 cloudformation checks are not packaged into the whl file
• CKV_AWS_92 : Update Failed Status
• PC-policy-team-build-once || AWS NAT Gateways should be utilized for the default route
• Support an HTML output format
• check tls policy for Elasticsearch
• Output format using TF planfile with for_each
• CKV_AZURE_98: Fails on new network profile
• Bump jsonschema to the latest version and make it compatible with versions 4.X
• CKV_K8S_31 false positive for CronJob with new "type: RuntimeDefault"
• Missing checks for CKV_DOCKER_3 (User exists)
• CKV2_AWS_23 is triggered when route_53_record type=A is set to an elasticbeanstalk environment
• Add support for outputting results to file

See more issues on GitHub