Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

checkov fail for azurerm_subnet_network_security_group_association #6211

Open
rajagopalan-trimble opened this issue Apr 25, 2024 · 0 comments
Open

checkov fail for azurerm_subnet_network_security_group_association #6211

rajagopalan-trimble opened this issue Apr 25, 2024 · 0 comments
Labels
checks Check additions or changes

Comments

@rajagopalan-trimble
Copy link

Describe the issue
CKV2_AZURE_31: I created a set of network resources using custom modules and then run checkov scan on the plan file. Though, there is subnet_nsg association, checkov fails the test case saying there is no association. I checked another example block for azurerm_subnet_network_security_group_association from the Terraform documentation and again run checkov on the plan output and this time, it passed. I don't understand what is the difference between two plan files. Please help me understand what is going wrong.

Examples
The plan output that is not passing the check
tflan.json

The plan that passed the check
exampleplan.json
`

Version (please complete the following information):

  • Checkov Version 3.2.39

Additional context
"Ensure VNET subnet is configured with a Network Security Group (NSG)"
@rajagopalan-trimble rajagopalan-trimble added the checks Check additions or changes label Apr 25, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
checks Check additions or changes
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@rajagopalan-trimble