chore(deps): update dependency checkov to v3.1.38
This MR contains the following updates:
| Package | Update | Change |
|---|---|---|
| checkov | minor |
3.0.40 -> 3.1.38
|
Release Notes
bridgecrewio/checkov (checkov)
v3.1.38
Feature
- sast: add integration test platform report - #5856
- sast: python Cdk policies batch 3 - #5820
- sast: python Cdk policies batch 4 - #5857
Bug Fix
- sast: add save local sast report to run integration script - #5863
v3.1.37
v3.1.36
v3.1.35
v3.1.34
Feature
- terraform: Used parallel run to run all split_graph iterations - #5840
v3.1.33
Feature
- general: anchor cyclonedx to last non breaking version - #5846
- general: Revert pipfile lock changes - #5848
- sast: add back commented checks - #5851
Bug Fix
- sast: fix reachability with no regular matches - #5847
- sca: not printing reachability data for lines without cves - #5849
v3.1.32
v3.1.31
v3.1.30
v3.1.29
Feature
- terraform: fix for check VPCPeeringRouteTableOverlyPermissive and add tests - #5837
Bug Fix
- sast: fix sast report format - #5811
v3.1.28
v3.1.27
Feature
- secrets: used 10 characters in secret violation - #5835
v3.1.26
Bug Fix
- general: check both path types for suppression - #5834
- terraform: Fix range issue in OCI RDP check - #5832
v3.1.25
v3.1.24
Bug Fix
- sca: Update the log level of specific logs - #5828
- terraform: CKV_GCP_26 Added additional google_compute_subnetwork purposes that do not support flow logs - #5812
- terraform: Fix CKV_GCP_30 for unknown service account - #5818
- terraform: Fixed to_dict of terraform block regarding source_module_object - #5822
v3.1.23
v3.1.22
v3.1.21
Feature
- ansible: add CKV_PAN_17 - Check for src and dst zone any - #5803
- sast: sast enabled from integration - #5780
- terraform: Adding Python based build time policies for corresponding PC runtime policies - #5762
- terraform: Adding YAML based build time policies for corresponding PC runtime policies - #5810
v3.1.20
Platform
- general: handle the updated on prem response from the platform - #5809
v3.1.19
Feature
- sca: Using alias data from assets.json for giving Package Used indication for aliased packages - #5808
v3.1.18
Bug Fix
- terraform: Add source_module_object to blocks from_dict func - #5806
v3.1.17
Feature
- ansible: PAN-OS IPsec checks - #5802
v3.1.16
v3.1.15
Feature
- ansible: add CKV_PAN_16 PAN-OS BPA Check for session log at start - #5794
- sast: Add alias data to imports assets - #5788
Bug Fix
- bicep: Update AppServiceHttps20Enabled to consider newer ApiVersion - #5795
v3.1.14
v3.1.13
v3.1.12
v3.1.11
Bug Fix
- general: Policy metadata API fixes - #5761
v3.1.10
v3.1.9
Bug Fix
- gha: Update GitHub Actions Workflow Schema #5742 - #5759
- terraform_plan: load terraform registry checks when using terraform plan - #5778
- terraform: Ensure HTTPS in Azure Function App and App Slots - #5766
Platform
- general: do not display an auth error when the runconfig endpoint returns a 500 - #5779
v3.1.8
v3.1.7
v3.1.6
v3.1.5
v3.1.4
Breaking Change
- general: set default parallelization type to spawn and leverage Terraform downloaded module by default - #5760
Feature
- terraform: Ensure ACR is zone-redundant - #5748
Bug Fix
- general: Revert parallelization commit - #5777
- sast: remove SAST frameworks for OSS users - #5773
- secrets: don't reinitialize the upload client without API key usage - #5771
Documentation
- general: properly escape CLI flags in the CLI command docs - #5768
v3.1.3
Feature
- sast: add integration test platform report - #5856
- sast: python Cdk policies batch 3 - #5820
- sast: python Cdk policies batch 4 - #5857
Bug Fix
- sast: add save local sast report to run integration script - #5863
v3.1.2
Feature
- terraform: fix for check VPCPeeringRouteTableOverlyPermissive and add tests - #5837
Bug Fix
- sast: fix sast report format - #5811
v3.1.1
Feature
- sca: Using alias data from assets.json for giving Package Used indication for aliased packages - #5808
v3.1.0
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot.
Edited by Soos