Releases: bridgecrewio/checkov
Releases · bridgecrewio/checkov
3.2.100
Feature
- sast: TS-legacy-checks - #6311
- secrets: entropy limit as env variable - #6332
3.2.98
Bug Fix
- terraform: Remove invalid CIDRs in CKV2_AWS_44 - #6301
3.2.97
Feature
- arm: add CKV_AZURE_73 to ensure that Automation account variables are encrypted - #6271
- arm: add CKV_AZURE_76 to ensure that Azure Batch account uses key vault to encrypt data - #6280
- arm: add FunctionAppDisallowCORS - password correctness check - #6248
- arm: ARM FunctionAppHttpVersionLatest policy - #6244
- arm: CKV_AZURE_74 to Ensure that Azure Data Explorer (Kusto) uses disk encryption - #6273
- arm: MSSQLServerMinTLSVersion - #6245
3.2.95
Bug Fix
- terraform: handle module source tag ref when it is not the first parameter - #6314
3.2.94
Bug Fix
- sast: fix random test sast js - #6315
Platform
- general: Double-Encode URI for RelayState Parameter - #6302
3.2.92
Feature
- sast: CDK TypeScript policies - #6161
- terraform: add check for tf module versioned tag - #6213
Bug Fix
- secrets: secret_filter_block_list filter by file name and suffixes - #6285
- secrets: secret_filter_block_list filter by file name and suffixes 2 - #6306
Platform
- general: Fix policy.name to use the spaces as specified on CLI. - #6296
3.2.91
Feature
- secrets: bump bc-detect-secrets to 1.5.10 - #6297
3.2.90
Feature
- general: Add deep-analysis to GHA - #6288
- terraform: Add more hype policies - #6239
Bug Fix
- ansible: fix ansible definitions raw type - #6292
Platform
- ansible: add set definitions raw to ansible runner - #6286
- general: Handle SAST suppressions (suppressions V2) - #6109
Documentation
- general: add RENDER_EDGES_DUPLICATE_ITER_COUNT to docs - #6291
- general: Update README links for PyPi - #6231
3.2.85
Platform
- ansible: add missing arg to ansible runner - #6276
3.2.84
Feature
- sast: Enable cdk ts integraion test - #6158
Bug Fix
- secrets: add files for secret to skip - #6275
- terraform: Update CKV_AWS_31 for RBAC - #6224