github Checkmarx/kics v1.5.1
on GitHub

latest releases: v2.1.2, v2.1.2-integrations, v2.1.1...
2 years ago

🚀 New features and improvements

added 18 new queries (Google Deployment Manager, CloudFormation, Buildah, and Terraform)
feat(analyzer): added support to Cloud Development Kit for Terraform (CDKTF) (#4770)
feat(buildah): added initial Buildah support (#4740)

🐛 Bug fixes

fix(query): fix terraform query for ingress/egress description (#4736)
fix(golang): fixed golang data races and make file (#4741)
fix(version): fixed bug with version checking (#4675) (#4760)
fix(parser): added type handler to Terraform convertBody function (#4768)
fix(parser): added YAML alias as string (#4767)
fix(query): limited "IAM Access Analyzer Undefined" only for AWS (#4772)
fix(query): service should match containerPort using targetPort (#4762)
fix(report): fixed CycloneDX report for compressed files (#4761)
fix(report): fixed null ASFF report (#4756)

📦 Dependency updates bumps

build(deps): bump github.com/hashicorp/hcl/v2 from 2.10.1 to 2.11.1 (#4716)
build(deps): bump github.com/spf13/cobra from 1.2.1 to 1.3.0 (#4717)
build(deps): bump github.com/BurntSushi/toml from 0.4.1 to 1.0.0 (#4718)
build(deps): bump github.com/aws/aws-sdk-go from 1.37.0 to 1.42.44 (#4765)
build(deps): bump github.com/johnfercher/maroto from 0.33.0 to 0.34.0 (#4746)
build(deps): bump helm.sh/helm/v3 from 3.7.2 to 3.8.0 (#4747)
build(deps): bump github.com/hashicorp/go-getter from 1.5.9 to 1.5.11 (#4745)
build(deps): bump github.com/tdewolff/minify/v2 from 2.9.29 to 2.10.0 (#4778)
build(deps): bump github.com/emicklei/proto from 1.9.1 to 1.9.2 (#4777)
build(deps): bump github.com/open-policy-agent/opa from 0.34.2 to 0.37.1 (#4776)
ci(deps): bump peter-evans/create-pull-request from 3.12.0 to 3.12.1 (#4769)
ci(deps): bump docker/build-push-action from 2.8.0 to 2.9.0 (#4775)

👻 Maintenance

update(report): updated gitlab sast report schema version (#4720)
update(terraformer): added timestamp to generated import folder (#4733)
build(env): added dev build tag (#4729)
docs(kics.io): removed references to binaries usage and changed all cmds to Docker cmds (#4757)

💔 Deprecation

Please be notified that KICS is deprecating the availability of binaries in the GitHub releases assets as of 1.5.0.
We intend to stop publishing the binaries along with KICS 1.5.2 (scheduled for Mid of February).
It is advised to update all systems (pipelines, integrations, etc.) to use KICS Docker Images.

Check out latest releases or
releases around Checkmarx/kics v1.5.1

Don't miss a new kics release

NewReleases is sending notifications on new releases.

Get notifications