integrations v1.5.12 updated #5631
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
* Update README.md * Update README.md * fixed GetExcludePaths * correcting log msg
* docs: preparing for release 1.5.7 * updated version Co-authored-by: rafaela-soares <rafaela-soares@users.noreply.github.com> Co-authored-by: rafaela-soares <rafaela.soares@checkmarx.com>
) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.4 to 1.44.5. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](aws/aws-sdk-go@v1.44.4...v1.44.5) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.5 to 1.44.6. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](aws/aws-sdk-go@v1.44.5...v1.44.6) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…20 (#5292) * Queries severity and category change * update SNS Topic is Publicly Accessible ansible * update SNS Topic is Publicly Accessible for cF * update SNS Topic is Publicly Accessible ansible * update description * change any principal check * update CloudTrail Log Files Not Encrypted With CMK * update yaml sample * change yaml sample * update line * fix issues * fixing e2e errors
This change is possible as core team members mostly create PRs instead of opening issues.
) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.6 to 1.44.7. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](aws/aws-sdk-go@v1.44.6...v1.44.7) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: rogeriopeixotocx <rogeriopeixotocx@users.noreply.github.com>
* update installation options and notes Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com> * fix links Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com> * another broken link Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com> * add deprecated Homebrew instructions Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
Signed-off-by: joaorufi <joao.rufino@checkmarx.com>
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 2.10.0 to 3.0.0. - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@v2.10.0...v3.0.0) --- updated-dependencies: - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [docker/login-action](https://github.com/docker/login-action) from 1.14.1 to 2.0.0. - [Release notes](https://github.com/docker/login-action/releases) - [Commits](docker/login-action@v1.14.1...v2.0.0) --- updated-dependencies: - dependency-name: docker/login-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.7 to 1.44.8. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](aws/aws-sdk-go@v1.44.7...v1.44.8) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* update check for matching labels * update label checking method & queries description * update keyExpectedValue * update description
broken markdown syntax without line before list
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 1 to 2. - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](docker/setup-qemu-action@v1...v2) --- updated-dependencies: - dependency-name: docker/setup-qemu-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.8 to 1.44.9. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](aws/aws-sdk-go@v1.44.8...v1.44.9) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/moby/buildkit](https://github.com/moby/buildkit) from 0.10.2 to 0.10.3. - [Release notes](https://github.com/moby/buildkit/releases) - [Commits](moby/buildkit@v0.10.2...v0.10.3) --- updated-dependencies: - dependency-name: github.com/moby/buildkit dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…dcard_in_rule k8s rule (#5264) * fix(query): adjusted severity rating and added searchLine in rbac_wildcard_in_rule k8s rule * updated severity to HIGH
…netes (#5326) * add audit policy check * empty commit
…ome providers (#5313) * add check for inbound direction * add check for inbound direction * update alicloud queries to check for ingress * change function Name * empty commit
* (kics auto remediation): first approach * adding tests * replacement approach change * added E2E tests * fixing unit test + improving * fix errors * fix * correcting f.Close * improving * improving * fixing E2E * test * adding more tests * fixing codacy issue * improving tests * improving writeRemediation * requested changes * correcting cli_test.go * fixing E2E file permissions * changing permissions * improving * improving * correcting * correcting * restricting to .tf
#5584) * (kics auto remediation): first approach * adding tests * replacement approach change * QUERIES THAT VERIFY A FIELD SET TO FALSE * added E2E tests * fixing unit test + improving * fix errors * fix * correcting f.Close * FIELD SET TO AN UNRECOMMENDED VALUE * improving * VERIFY A FIELD SET TO TRUE * c * improving * fixing E2E * test * adding more tests * fixing codacy issue * correcting E2E_CLI_033_RESULT.json * correcting E2E * improving tests * improving writeRemediation * requested changes * correcting cli_test.go * fixing E2E file permissions * changing permissions * improving * improving * correcting * correcting * restricting to .tf Co-authored-by: rafaela-soares <rafaela.soares@checkmarx.com>
#5600) * (kics auto remediation): first approach * adding tests * replacement approach change * alicloud * QUERIES THAT VERIFY A FIELD SET TO FALSE * UNRECOMMENDED VALUE * added E2E tests * fixing unit test + improving * fix errors * fix * correcting f.Close * improving * improving * fixing E2E * test * adding more tests * fixing codacy issue * improving tests * testing permissions on Dockerfile.ubi8 * Merge branch 'kics_auto_remediation/terraform_alic * remove changes * delete newline at file end Co-authored-by: rafaela-soares <rafaela.soares@checkmarx.com>
…ries (#5601) * (kics auto remediation): first approach * adding tests * replacement approach change * added E2E tests * fixing unit test + improving * fix errors * fix * correcting f.Close * improving * improving * fixing E2E * test * AZure remediation * adding more tests * fixing codacy issue * improving tests * testing permissions on Dockerfile.ubi8 * update mutex * update * improving queries + tests * improving * correcting golint issues * improving * correcting GetRemediationSets * improving * removing go routines from testRemediationQuery Co-authored-by: rafaela-soares <rafaela.soares@checkmarx.com>
…5603) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.54 to 1.44.55. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](aws/aws-sdk-go@v1.44.54...v1.44.55) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: rafaela-soares <rafaela.soares@checkmarx.com>
…ueries (#5602) * (kics auto remediation): first approach * adding tests * replacement approach change * added E2E tests * fixing unit test + improving * fix errors * fix * correcting f.Close * improving * improving * fixing E2E * test * adding more tests * queries remediation * fixing codacy issue * improving tests * testing permissions on Dockerfile.ubi8 * update * update * update * update tests Co-authored-by: rafaela-soares <rafaela.soares@checkmarx.com>
…urity queries (#5606) * (kics auto remediation): first approach * adding tests * replacement approach change * added E2E tests * fixing unit test + improving * fix errors * fix * correcting f.Close * improving * improving * fixing E2E * test * adding more tests * fixing codacy issue * stage * improving tests * stage * testing permissions on Dockerfile.ubi8 * stage * fix merge * deleting * adding another check to getPayload * improving * change policies * update query to support value as string Co-authored-by: rafaela-soares <rafaela.soares@checkmarx.com>
fix(kics_ar): reverting go routine
* docs: preparing for release 1.5.12 * change version Co-authored-by: cxMiguelSilva <cxMiguelSilva@users.noreply.github.com> Co-authored-by: cxMiguelSilva <miguel.dasilva@checkmarx.com>
…5613) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.55 to 1.44.56. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](aws/aws-sdk-go@v1.44.55...v1.44.56) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…5617) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.56 to 1.44.57. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](aws/aws-sdk-go@v1.44.56...v1.44.57) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps alpine from 3.16.0 to 3.16.1. --- updated-dependencies: - dependency-name: alpine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: nunoocx <nunoocx@users.noreply.github.com>
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 3.0.0 to 3.1.0. - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@v3.0.0...v3.1.0) --- updated-dependencies: - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…5624) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.57 to 1.44.58. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](aws/aws-sdk-go@v1.44.57...v1.44.58) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) from 1.1.0 to 1.2.0. - [Release notes](https://github.com/BurntSushi/toml/releases) - [Commits](BurntSushi/toml@v1.1.0...v1.2.0) --- updated-dependencies: - dependency-name: github.com/BurntSushi/toml dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…5628) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.58 to 1.44.59. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](aws/aws-sdk-go@v1.44.58...v1.44.59) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: João Reigota <joao.reigota@checkmarx.com> Co-authored-by: Rafaela Soares <rafaelamsoaressilva@gmail.com>
joaoReigota1
approved these changes
Jul 21, 2022
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Proposed Changes
I submit this contribution under the Apache-2.0 license.