Skip to content

chore(deps): update dependency checkov to v3.2.413 #5279

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
May 1, 2025
Merged

chore(deps): update dependency checkov to v3.2.413 #5279

merged 1 commit into from
May 1, 2025

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Apr 29, 2025
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
checkov 3.2.404 -> 3.2.413 age adoption passing confidence

Release Notes

bridgecrewio/checkov (checkov)

v3.2.413

Compare Source

Feature

  • terraform: Add new check for overly permissive SQS policy - #​7125

Bug Fix

  • terraform: support CLI notation in CKV_AZURE_228 for EventHub locations - #​7124

v3.2.412

Compare Source

v3.2.411

Feature

  • secrets: Add support in git history for producer consumer - #​7123

Bug Fix

  • general: Make --download-external-modules Optional[bool] - #​7121
  • secrets: Fix test directory tree race - #​7122
  • terraform: add aws_elasticache_serverless_cache to CKV2_AWS_5 - #​7079

v3.2.410

Compare Source

v3.2.409

v3.2.408

Feature

  • terraform: Over permissive Lambda Cors check (Terraform & Cloudformation) - #​7113

Bug Fix

  • general: base_runner: Properly escape excluded directories that begin with '.' - #​7112

v3.2.407

Feature

  • terraform: Add new check and update old around cipher suites - #​7108

v3.2.406

Bug Fix

  • kustomize: handle kustomize file with empty resources section - #​7109

v3.2.405

Configuration

📅 Schedule: Branch creation - "before 10am every 4 day" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the dependencies Pull requests that update a dependency file label Apr 29, 2025
@renovate renovate bot enabled auto-merge (squash) April 29, 2025 07:41
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Apr 29, 2025
edited
Loading

🦙 MegaLinter status: ⚠️ WARNING

Descriptor Linter Files Fixed Errors Warnings Elapsed time
✅ API spectral 1 0 0 1.84s
⚠️ BASH bash-exec 6 1 0 0.01s
✅ BASH shellcheck 6 0 0 0.14s
✅ BASH shfmt 6 0 0 0 0.61s
✅ COPYPASTE jscpd yes no no 3.13s
✅ DOCKERFILE hadolint 131 0 0 34.11s
✅ JSON jsonlint 20 0 0 0.22s
✅ JSON v8r 22 0 0 12.43s
⚠️ MARKDOWN markdownlint 269 0 304 0 24.28s
✅ MARKDOWN markdown-table-formatter 269 0 0 0 145.35s
⚠️ PYTHON bandit 219 67 0 6.39s
✅ PYTHON black 219 0 0 0 5.33s
✅ PYTHON flake8 219 0 0 2.67s
✅ PYTHON isort 219 0 0 0 1.14s
✅ PYTHON mypy 219 0 0 11.81s
✅ PYTHON pylint 219 0 0 34.53s
✅ PYTHON ruff 219 0 0 0 0.76s
✅ REPOSITORY checkov yes no no 41.35s
✅ REPOSITORY git_diff yes no no 1.08s
⚠️ REPOSITORY grype yes 27 no 31.45s
✅ REPOSITORY secretlint yes no no 9.01s
✅ REPOSITORY syft yes no no 2.54s
✅ REPOSITORY trivy yes no no 13.44s
✅ REPOSITORY trivy-sbom yes no no 22.38s
✅ REPOSITORY trufflehog yes no no 5.15s
✅ SPELL cspell 727 0 0 16.58s
⚠️ SPELL lychee 351 23 0 49.12s
✅ XML xmllint 3 0 0 0 1.24s
✅ YAML prettier 160 0 0 0 5.77s
✅ YAML v8r 103 0 0 14.58s
✅ YAML yamllint 161 0 0 3.72s

See detailed report in MegaLinter reports

MegaLinter is graciously provided by OX Security

@renovate renovate bot force-pushed the renovate/checkov-3.2.x branch from 25b9409 to c898579 Compare April 29, 2025 10:19
@renovate renovate bot changed the title chore(deps): update dependency checkov to v3.2.411 chore(deps): update dependency checkov to v3.2.412 Apr 29, 2025
@renovate renovate bot force-pushed the renovate/checkov-3.2.x branch from c898579 to a4d4644 Compare April 29, 2025 11:05
@renovate renovate bot force-pushed the renovate/checkov-3.2.x branch from a4d4644 to dbbe4fa Compare April 29, 2025 11:17
@renovate renovate bot force-pushed the renovate/checkov-3.2.x branch from dbbe4fa to 0d3fa69 Compare April 29, 2025 16:59
@renovate renovate bot changed the title chore(deps): update dependency checkov to v3.2.412 chore(deps): update dependency checkov to v3.2.413 Apr 29, 2025
@renovate renovate bot force-pushed the renovate/checkov-3.2.x branch from 0d3fa69 to a7b36cd Compare April 29, 2025 20:23
@renovate renovate bot merged commit 7103c02 into main May 1, 2025
132 checks passed
@renovate renovate bot deleted the renovate/checkov-3.2.x branch May 1, 2025 15:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bdovaz bdovaz bdovaz approved these changes

@nvuillam nvuillam Awaiting requested review from nvuillam nvuillam is a code owner

@echoix echoix Awaiting requested review from echoix echoix is a code owner

@Kurt-von-Laven Kurt-von-Laven Awaiting requested review from Kurt-von-Laven Kurt-von-Laven is a code owner

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@bdovaz