Checkov checks to benchmark (CIS/NIST) ID mapping

bridgecrewio / checkov

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

https://www.checkov.io/

Apache License 2.0

7.04k stars 1.1k forks source link

Checkov checks to benchmark (CIS/NIST) ID mapping #6537

Open cbhat-ie opened 3 months ago

cbhat-ie commented 3 months ago

QQ: Do you actively maintain Checkov ID to CIS/NIST benchmark mapping today for the checks? Looking at the code this does not seem to be the case.

Request: Is it possible to include the CIS/NIST benchmark id in the output along with the CheckovId? Or is it possible to easily derive this information for all the checks supported in Checkov today?

mannycepeda1989 commented 3 months ago

Good afternoon @cbhat-ie this is currently a platform only feature for Run,Build policies. There are no plans to add this to Checkov at this time.

cbhat-ie commented 3 months ago

I see, thanks for the clarification @mannycepeda1989