Skip to content

Releases: bridgecrewio/checkov

3.2.107

24 May 23:01
@github-actions github-actions
3.2.107
3c7aade
Compare
Choose a tag to compare
3.2.107 Latest
Latest

Bug Fix

  • terraform: Handle registry modules with a version in CKF_TF_2 - #6354
Assets 6

3.2.106

23 May 23:02
@github-actions github-actions
3.2.106
0987da7
Compare
Choose a tag to compare
3.2.106

Feature

  • arm: Ensure Databricks Workspace data plane to control plane co… - #6319
  • general: TF and ARM - Ensure that Databricks Workspaces enable… - #6313
  • secrets: Bump detect-secrets - #6346
Assets 6

3.2.105

22 May 23:01
@github-actions github-actions
3.2.105
01325b6
Compare
Choose a tag to compare
3.2.105

Feature

  • arm: add AppServiceJavaVersion - #6258
  • arm: add CKV_AZURE_145 to check that the function app uses the latest version of TLS encryption - #6323
  • arm: add CKV_AZURE_218 to ensure that Application Gateway defines secure protocols for in transit communicationApp gw defines secure protocols - #6320
  • arm: add CKV_AZURE_54 to ensure Enforce a minimal Tls version for the server - #6270
  • arm: add CKV_AZURE_71 to Ensure that Managed identity provider is enabled for web apps - #6272
  • arm: add CKV_AZURE_72 to ensure that remote debugging is not enabled for app services - #6281
  • arm: AzureDefenderOStorage - #6269
  • arm: MySQLPublicAccessDisabled-Azure MySQL: Restrict Public Access - #6263
  • arm: StorageSyncPublicAccessDisabled - #6331
  • secrets: eliminate false positives in entropy keyword combinator detector - #6327

Bug Fix

  • ansible: fix ansible resource id in local graph - #6344
  • secrets: fix entropy type - #6347
Assets 6

3.2.100

21 May 23:01
@github-actions github-actions
3.2.100
d991c3f
Compare
Choose a tag to compare
3.2.100

Feature

  • sast: TS-legacy-checks - #6311
  • secrets: entropy limit as env variable - #6332
Assets 6

3.2.98

20 May 23:01
@github-actions github-actions
3.2.98
fc9177e
Compare
Choose a tag to compare
3.2.98

Bug Fix

  • terraform: Remove invalid CIDRs in CKV2_AWS_44 - #6301
Assets 6

3.2.97

19 May 23:02
@github-actions github-actions
3.2.97
4707f1b
Compare
Choose a tag to compare
3.2.97

Feature

  • arm: add CKV_AZURE_73 to ensure that Automation account variables are encrypted - #6271
  • arm: add CKV_AZURE_76 to ensure that Azure Batch account uses key vault to encrypt data - #6280
  • arm: add FunctionAppDisallowCORS - password correctness check - #6248
  • arm: ARM FunctionAppHttpVersionLatest policy - #6244
  • arm: CKV_AZURE_74 to Ensure that Azure Data Explorer (Kusto) uses disk encryption - #6273
  • arm: MSSQLServerMinTLSVersion - #6245
Assets 6

3.2.95

17 May 23:02
@github-actions github-actions
3.2.95
ee7b487
Compare
Choose a tag to compare
3.2.95

Bug Fix

  • terraform: handle module source tag ref when it is not the first parameter - #6314
Assets 6

3.2.94

16 May 23:01
@github-actions github-actions
3.2.94
056a656
Compare
Choose a tag to compare
3.2.94

Bug Fix

  • sast: fix random test sast js - #6315

Platform

  • general: Double-Encode URI for RelayState Parameter - #6302
Assets 6

3.2.92

15 May 23:01
@github-actions github-actions
3.2.92
f3979be
Compare
Choose a tag to compare
3.2.92

Feature

  • sast: CDK TypeScript policies - #6161
  • terraform: add check for tf module versioned tag - #6213

Bug Fix

  • secrets: secret_filter_block_list filter by file name and suffixes - #6285
  • secrets: secret_filter_block_list filter by file name and suffixes 2 - #6306

Platform

  • general: Fix policy.name to use the spaces as specified on CLI. - #6296
Assets 6

3.2.91

12 May 23:01
@github-actions github-actions
3.2.91
173b073
Compare
Choose a tag to compare
3.2.91

Feature

  • secrets: bump bc-detect-secrets to 1.5.10 - #6297
Assets 6