-
## Design notes
- Put WAF resources in the network layer so that WAF rules can be shared across all apps in a network
## References
- https://docs.bridgecrew.io/docs/ensure-public-facing-alb-are-pr…
-
As noted in comments of: https://github.com/bridgecrewio/checkov-vscode/issues/72 (which has been closed)...
containers left around are:
bridgecrew/checkov:2.0.1037
-
bridgecrew api supports this, add to provider
-
https://docs.bridgecrew.io/docs/bc_gcp_logging_2
-
**Describe the feature**
Currently (v3.2.249) Checkov does not seem to support GitLab's `!reference tags`.
I have a `.gitlab-ci.yml` file and when I run Checkov I see the following warning i…
-
This issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more.
## Rate-Limited
These updates a…
-
Its not a feature request, but bug report. Didnt found any better fit:
Add this to /etc/hosts:
127.0.0.1 api0.prismacloud.io
Try running checkov on empty json
`checkov -f empty.json --prisma-a…
-
Feature request:
Support out of the box the ability to report only on files modified within a Pull Request.
In the event of a Pull Request, do not scan the entire target directory. Instead, invo…
-
We've had some PRs to add vendor accounts that aren't publicly documented. I've generally avoided these because:
1) The vendor might not want their account ID to be publicly known (not a great reaso…
-
If an output marked as sensitive is specifically output, then the sensitive value is exposed in the workflow log.
For example, if I have the following outputs:
```yaml
output "access_key_id" {
…