Update checkmarx-ast-cli binaries with 2.3.40

[cx-anurag-dalke]

Updates checkmarx-ast-cli to 2.3.40

Auto-generated by [create-pull-request][2]

[cx-ben-alvo]

Checkmarx One – Scan Summary & Details – 635d5478-1c32-4f4a-86dc-2fb8cf8c30f5

New Issues (11)

Checkmarx found the following issues in this Pull Request

Severity	Issue	Source File / Package	Checkmarx Insight
	Passwords And Secrets - Generic Password	/release.yml: 105	details Query to find passwords and secrets in infrastructure code. ID: H0ivHBxkNH%2BEIA1eyvz9EEj%2BAgQ%3D
	ALB Deletion Protection Disabled	/positive1.tf: 15	details Application Load Balancer should have deletion protection enabled ID: zg1cBvbrhNLxVboSKpyjmWbqU9o%3D
	ALB Listening on HTTP	/positive1.tf: 9	details AWS Application Load Balancer (alb) should not listen on HTTP ID: O8byoDsd3nmhEbCNco1oynLXWfE%3D
	ALB Not Dropping Invalid Headers	/positive1.tf: 15	details It's considered a best practice when using Application Load Balancers to drop invalid header fields ID: qvZPpWm8avYYv6GPvrCd92IvwhE%3D
	CVE-2020-15250	Maven-junit:junit-4.10	details Recommended version: 4.13.1 Description: In JUnit4 from version 4.7 and before 4.13.1, the test rule TemporaryFolder contains a local information disclosure vulnerability. On Unix like sys... Attack Vector: LOCAL Attack Complexity: LOW ID: LZgv%2Fw1S60gFD%2BZDMmjIzsLjWfYWAmI%2B%2FCUK6IHGisc%3D Vulnerable Package
	ELBv2 LB Access Log Disabled	/positive1.tf: 15	details ELBv2 LBs should have access log enabled to capture detailed information about requests sent to your load balancer. ID: SwXIeYCAhsKw6kNGc%2FMAQiV6EFM%3D
	Reversible_One_Way_Hash	/src/main/java/com/checkmarx/ast/wrapper/Execution.java: 38	details The application is using a weak hashing primitive getInstance, in /src/main/java/com/checkmarx/ast/wrapper/Execution.java at line 209 ID: a%2FNLACgFNKgn997xWUHIKiQzjos%3D Attack Vector
	APT-GET Missing Flags To Avoid Manual Input	/Dockerfile: 5	details Check if apt-get calls use flags to avoid user manual input. ID: jfZh0UJk7d3yZvWU%2BMZVe%2FotGh4%3D
	Healthcheck Instruction Missing	/Dockerfile: 1	details Ensure that HEALTHCHECK is being used. The HEALTHCHECK instruction tells Docker how to test a container to check that it is still working ID: pq3yqo20YibWk%2BA6WnaVJTu%2F1y0%3D
	IAM Access Analyzer Not Enabled	/positive1.tf: 15	details IAM Access Analyzer should be enabled and configured to continuously monitor resource permissions ID: %2FH6Qs2M8HFCNkyCsi7bGU2GDt4g%3D
	Shield Advanced Not In Use	/positive1.tf: 15	details AWS Shield Advanced should be used for Amazon Route 53 hosted zone, AWS Global Accelerator accelerator, Elastic IP Address, Elastic Load Balancing,... ID: LQfE6q%2BzH43A5RiXDxGr8C7Cu98%3D

---

Use @Checkmarx to reach out to us for assistance.

Just send a PR comment with @Checkmarx followed by a natural language request.

Examples: @Checkmarx how are you able to help me? @Checkmarx rescan this PR