Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
[//]: # "
PR Title
We use the title to create changelog automatically and therefore only allow specific prefixes
- break: to indicate a breaking change, this supersedes any of the other types
- feat: to indicate new features or checks
- fix: to indicate a bugfix or handling of edge cases of existing checks
- docs: to indicate an update to our documentation
- chore: to indicate adjustments to workflow files or dependency updates
- platform: to indicate a change needed for the platform
Each prefix should be accompanied by a scope that specifies the targeted framework. If uncertain, use 'general'.
#
Allowed prefixs:
ansible|argo|arm|azure|bicep|bitbucket|circleci|cloudformation|dockerfile|github|gha|gitlab|helm|kubernetes|kustomize|openapi|sast|sca|secrets|serverless|terraform|general|graph|terraform_plan|terraform_json
#
ex.
feat(terraform): add CKV_AWS_123 to ensure that VPC Endpoint Service is configured for Manual Acceptance
"
Description
Please include a summary of the change and which issue is fixed. Please also include relevant motivation and context. List any dependencies that are required for this change.
Fixes # (issue)
New/Edited policies (Delete if not relevant)
Description
Include a description of what makes it a violation and any relevant external links.
Fix
How does someone fix the issue in code and/or in runtime?
Checklist:
[ ] I have performed a self-review of my own code
[ ] I have commented my code, particularly in hard-to-understand areas
[ ] I have made corresponding changes to the documentation
[ ] I have added tests that prove my feature, policy, or fix is effective and works
[ ] New and existing tests pass locally with my changes
Generated description
Below is a concise technical summary of the changes proposed in this PR:
Refactor the JSON structure in the tests/secrets/masking_secrets directory to improve readability and maintainability. The changes involve restructuring the JSON objects in assets_report_with_pass.json and findings_report_with_pass.json by removing redundant fields and simplifying the nested structures. This update aims to enhance the clarity of the data representation, particularly focusing on the aws_instance.web_host resource, which is used for testing secret masking in Terraform configurations.
<table><tr><th>Topic</th><th>Details</th><tr><td><a href=https://baz.co/changes/bridgecrewio/checkov/6859?tool=ast&topic=Assets+Report+Refactor>Assets Report Refactor</a>
</td><td>Simplify JSON structure in <code>assets_report_with_pass.json</code> by removing redundant fields and restructuring nested objects for better readability and maintainability.<details><summary>Modified files (1)</summary><ul><li>tests/secrets/masking_secrets/assets_report_with_pass.json</li></ul></details><details><summary>Latest Contributors(1)</summary><table><tr><th>User</th><th>Commit</th><th>Date</th></tr><tr><td>matanshati@gmail.com</td><td>feat-secrets-Masking-s...</td><td>November 17, 2024</td></tr></table></details></td></tr>
Refactor findings_report_with_pass.json to streamline the JSON structure, focusing on the aws_instance.web_host resource, and remove unnecessary fields to enhance clarity.Modified files (1)
User description
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
[//]: # "
PR Title
"
Description
Please include a summary of the change and which issue is fixed. Please also include relevant motivation and context. List any dependencies that are required for this change.
Fixes # (issue)
New/Edited policies (Delete if not relevant)
Description
Include a description of what makes it a violation and any relevant external links.
Fix
How does someone fix the issue in code and/or in runtime?
Checklist:
Generated description
Below is a concise technical summary of the changes proposed in this PR:
Refactor the JSON structure in the
tests/secrets/masking_secretsdirectory to improve readability and maintainability. The changes involve restructuring the JSON objects inassets_report_with_pass.jsonandfindings_report_with_pass.jsonby removing redundant fields and simplifying the nested structures. This update aims to enhance the clarity of the data representation, particularly focusing on theaws_instance.web_hostresource, which is used for testing secret masking in Terraform configurations.findings_report_with_pass.jsonto streamline the JSON structure, focusing on theaws_instance.web_hostresource, and remove unnecessary fields to enhance clarity.Modified files (1)
Latest Contributors(1)