github Checkmarx/kics v1.5.8
on GitHub

latest releases: v2.0.1, v2.0.1-integrations, v2.0.0...
24 months ago

🚀 New features and improvements

added 4 queries for Kubernetes
feat(query): add new k8s rule to detect port-forwarding into containers (RBAC) (#5266) by @Churro
feat(query): add new k8s rule to detect account impersonation (RBAC) (#5267) by @Churro
feat(query): add new k8s rule to detect bind or escalate permissions (RBAC) (#5268) by @Churro
feat(query): add new k8s rule to detect exec permissions (RBAC) (#5286) by @Churro

🐛 Bug fixes

fix(query): adjusted severity rating and added searchLine in rbac_wildcard_in_rule k8s rule (#5264) by @Churro
fix(password and secrets): improve performance (#5334)
fix(cpu): fixed number of cpus available info (#5321)
fix(samples): k8s queries (#5322)
fix(doc): fix syntax (#5309) by @nv35

📦 Dependency updates bumps

build(deps): bump github.com/aws/aws-sdk-go from 1.44.4 to 1.44.11 (#5297) (#5299) (#5306) (#5318) (#5323) (#5329) (#5330)
build(deps): bump github.com/moby/buildkit from 0.10.2 to 0.10.3 (#5324)
build(deps): bump github.com/johnfercher/maroto from 0.36.1 to 0.37.0 (#5331)

ci(deps): bump golang from 1.18.1-alpine to 1.18.2-alpine (#5332)
ci(deps): bump docker/setup-qemu-action from 1 to 2 (#5315)
ci(deps): bump docker/build-push-action from 2.10.0 to 3.0.0 (#5316)
ci(deps): bump docker/login-action from 1.14.1 to 2.0.0 (#5317)

👻 Maintenance

update(query): update Network ACL With Unrestricted Access To RDP (#5296)
update(query): update category and severities according with issue 5220 (#5292)
update(query): update StatefulSet Without Service Name for Kubernetes (#5303)
update(query): update Remote Desktop Port Open To Internet and HTTP Port Open To Internet (#5307)
update(query): update Audit Policy Not Cover Key Security Concerns for Kubernetes (#5326)
update(query): update Missing Flag From Dnf Install for Dockerfile (#5310)
update(query): update Storage Account Not Using Latest TLS Encryption Version for Terraform Azure (#5314)
update(queries): add check for traffic direction in port queries in some providers (#5313)
update(docs): update installation options and notes (#5293) by @konstruktoid
update(docs): removed results formats list from results section (#5308)

Contributors: @Churro, @konstruktoid, @nv35

Check out latest releases or
releases around Checkmarx/kics v1.5.8

Don't miss a new kics release

NewReleases is sending notifications on new releases.

Get notifications