chore(deps): update bridgecrew/checkov docker tag to v3.2.174
This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| bridgecrew/checkov | image-name | patch |
3.2.159 -> 3.2.174
|
Release Notes
bridgecrewio/checkov (bridgecrew/checkov)
v3.2.174
Feature
- arm: add CKV_AZURE_172 to ensure autorotation of Secrets Store CSI Driver secrets for AKS clusters - #6533
- arm: add CKV_AZURE_173 to ensure that API management uses at least TLS 1.2 - #6478
- arm: AppServicePlanZoneRedundant - #6472
- arm: AzureSearchSLAIndex - #6530
- arm: SQLDatabaseZoneRedundant - #6515
- azure: add new policies for Azure Synapse - #6520
- general: update detect secrets package - #6535
v3.2.173
v3.2.172
v3.2.171
Feature
- arm: add CKV_AZURE_171 to ensure that AKS cluster upgrade channel is chosen - #6532
- arm: add CKV_AZURE_175 to ensure that Web PubSub uses a SKU with an SLA - #6523
- arm: add CKV_AZURE_178 to ensure that linux VM enables SSH with keys for secure communication - #6486
- arm: add CKV_AZURE_85 to ensure that Azure Defender is set to On for Kubernetes - #6279
- arm: CKV_AZURE_99 to Ensure Cosmos DB accounts have restricted access - #6498
- arm: DataFactoryNoPublicNetworkAccess - #6479
- arm: DataLakeStoreEncryption - #6516
- arm: EventHubNamespaceMinTLS12 - #6485
Bug Fix
- openapi: [CKV_OPENAPI_3] Prevent false-positive when checking for http+!basic - #6406
- terraform_json: support locals block in CDKTF output - #6452
- terraform: Deprecate CKV2_AWS_67 - #6529
v3.2.169
v3.2.168
v3.2.167
v3.2.166
v3.2.164
Documentation
- general: Add Python note - #6521
v3.2.163
Feature
- arm: add CKV_AZURE_174 to ensure that API management public access is disabled - #6480
- arm: AppServicePHPVersion - #6436
- arm: AppServicePublicAccessDisabled - #6467
- arm: KeyVaultEnablesPurgeProtection - #6465
- arm: PubsubSpecifyIdentity - #6483
v3.2.162
v3.2.161
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot.
Edited by Soos