Skip to content

chore(deps): update dependency checkov to v3.0.40

RENOVATE_GITLAB_TOKEN requested to merge renovate/checkov-updatetype into main

This MR contains the following updates:

Package Update Change
checkov patch 3.0.13 -> 3.0.40

Release Notes

bridgecrewio/checkov (checkov)

v3.0.40

Compare Source

v3.0.39

Compare Source

v3.0.38

Compare Source

Feature
  • terraform: Adding YAML based build time policies for corresponding PC runtime policies - #​5714

v3.0.37

Compare Source

Bug Fix
  • terraform: fix valid value for aws keyspaces_table encryption_specification type - #​5756

v3.0.36

Compare Source

Bug Fix
  • terraform: check min TLS version also on azure app slots - #​5753

v3.0.35

Compare Source

v3.0.34

Compare Source

Feature
  • general: add possibility to change parallelization type - #​5737
Bug Fix
  • cloudformation: ignore unresolved references in CKV_AWS_45 - #​5747

v3.0.33

Compare Source

v3.0.32

Compare Source

Feature
  • sast: Python cdk policies batch 2 - #​5725
Bug Fix
  • general: add option to pass --skip-download with github-action - #​5734
Platform
  • general: print the log upload location if the --support flag is used - #​5738

v3.0.31

Compare Source

v3.0.30

Compare Source

v3.0.29

Compare Source

v3.0.28

Compare Source

Bug Fix
  • terraform: Adding both azurerm_linux_web_app_slot & azurerm_windows_web_app_slot in scope of the test CKV_AZURE_153 - #​5687
Documentation
  • general: Switch references to Bridgecrew with Prisma Cloud - #​5704

v3.0.27

Compare Source

v3.0.26

Compare Source

v3.0.25

Compare Source

Bug Fix
  • general: do not require a repo ID when using an API key and --list - #​5726

v3.0.24

Compare Source

Feature
  • sast: add new python CDK policies - #​5706
  • terraform: Ensure that only critical system pods run on system nodes - #​5665

v3.0.23

Compare Source

v3.0.22

Compare Source

v3.0.21

Compare Source

Feature
  • terraform: Ensure App Service Environment is zone redundant - #​5662
  • terraform: Ensure that Standard Replication is enabled - #​5649
Bug Fix
  • sca: Setting only relevant cves for the extracted reachable functions with risk factor of ReachableFunction as True - #​5715
  • terraform: CKV_AWS_208 valid Amazon MQ versions - #​5653

v3.0.20

Compare Source

v3.0.19

Compare Source

Feature
  • sca: adjusting the cli-output to support indicating of reachable functions - #​5713
  • terraform: Adding YAML based build time policies for corresponding PC runtime policies - #​5637
  • terraform: bigtable deletion protection [depends on #​5625] - #​5626
  • terraform: drop and deletion checks for spanner - #​5625
Bug Fix
  • sast: add cveid to reachability report - #​5708

v3.0.18

Compare Source

v3.0.17

Compare Source

v3.0.16

Compare Source

Feature
  • sca: Extending reachability post-runner in checkov and enriching cves with ReachableFunction data - #​5707

v3.0.15

Compare Source

Bug Fix
  • general: fix duplicate components in CycloneDX report - #​5705

v3.0.14

Compare Source

Bug Fix
  • general: address python 3.12 SyntaxWarning - #​5699
  • terraform: fix variable rendering for foreach resources with dot included names - #​5701

Configuration

📅 Schedule: Branch creation - "every weekend" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this MR and you won't be reminded about this update again.

  • If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Merge request reports