Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.
Couple of issues. First one was related to the packaging version which had to be downgraded to <22.
The second issue is this weird warning in the json file that is failing the parsing.
2023-01-12 00:15:45,839 [MainThread ] [WARNI] --no-guide is deprecated and will be removed in a future release. Use --skip-download instead
{
"check_type": "terraform",
"results": {
"failed_checks": [
{
"check_id": "CKV_AWS_17",
"bc_check_id": null,
"check_name": "Ensure all data stored in RDS is not publicly accessible",
"check_result": {
"result": "FAILED",
"evaluated_keys": [
"publicly_accessible"
]
},
"code_block": [
Couple of issues. First one was related to the packaging version which had to be downgraded to <22. The second issue is this weird warning in the json file that is failing the parsing.