Open AnkitRao17 opened 3 years ago
cesar-rodriguez
commented
3 years ago Hi, @AnkitRao17 does the skip_rules flag works for you when using Terrascan locally outside of the action?
The inventory of the latest policies included by default on Terrascan is here: https://github.com/accurics/terrascan/tree/master/pkg/policies/opa/rego We also keep a manually updated human-readable version here: https://runterrascan.io/docs/policies/
AnkitRao17
commented
3 years ago Hi @cesar-rodriguez ,
Apologies for the late response. The skip flag works locally when using terrascan. But through the action, it somehow doesn't seem to work. Also, can you please provide insights on which rule id to use while using the skip flag ?
yellowhat
commented
2 years ago Same for me, the github action:
terrascan:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- uses: tenable/terrascan-action@main
with:
skip_rules: "AC_DOCKER_0020,AC_DOCKER_0041"
verbose: trueThe log:
...
Executing terrascan as follows:
terrascan scan -d . --skip-rules='AC_DOCKER_0020,AC_DOCKER_0041' -v --repo-url ... --repo-ref main
...
Violation Details -
...
Rule ID : AC_DOCKER_0020
...
Rule ID : AC_DOCKER_0041
...
etienne-napoleone
commented
2 years ago same here
loganmarchione
commented
1 year ago Same here. Tried using skip_rules: "AC_AWS_0207" and skip_rules: "AWS.S3Bucket.EncryptionandKeyManagement.High.0405" but neither worked.
anwarnk
commented
1 year ago Did anyone get this to work?
Hi Team,
When using the terrascan github action, the skip flag does not seem to work.
Flag used in below format: skip_rules: AC_AWS_0460
Further, can anyone please share the inventory with the details of all rules and the correct ids to be used for skip flag.
Could not find rule details for "S3 Access log"policy in any documentation.
-TIA