github Checkmarx/kics v1.7.2

latest releases: v2.1.3, v2.1.3-integrations, v2.1.2...
16 months ago

🚀 New features and improvements

feat(query): Aurora With Disabled at Rest Encryption query for Terraform in #6392
feat(query): DynamoDB Table not Encrypted Query in #6400
Performance(Engine) - Increase Resolvers Performance by reutilizing resolved files in #6388
feat(query): EFS Volume With Disabled Transit Encryption in #6357
feat(query): Elasticsearch with HTTPS disabled for Ansible in #6393
feat(query): Elasticsearch with HTTPS disabled for CloudFormation in #6398
feat(query): Elasticsearch with HTTPS disabled for Pulumi in #6399
feat(query): Elasticsearch with HTTPS disabled for Terraform in #6394
feat(query): ec2 instance monitoring disabled for CloudFormation in #6401
feat(terraform/gcp): Add GKE Shielded Nodes is Disabled query for Terraform. by @bbergstrom in #6248
feat(query): Elasticsearch Log Disabled in #6410
feat(query): Elasticsearch with HTTPS disabled for CloudFormation in #6412
feat(query): Publicly Accessible Amazon DMS in #6352
Feature(Engine) Resolve internal/external section references in #6405

🐛 Bug fixes

Bug(query) - Fix not correct line for query RDS Storage Encryption Disabled in #6372
Bug(query) - Add query specificity for php composer in #6374
fix(query): KMS Key With Full Permissions in #6389
Bug(query) - Add support for v1 to query API Gateway V2 Stage Access Logging Settings Not Defined in #6371
bug(docs): Changed Light Scheme Name in #6415
fix(regex) - Fix generic password regex rule in #6461
fix(analyzer): Removed void Symlinks in #6452

📦 Dependency updates bumps

build(deps): bump github.com/docker/distribution from 2.8.1+incompatible to 2.8.2+incompatible in #6375
build(deps): bump github.com/gookit/color from 1.5.2 to 1.5.3 in #6271
build(deps): bump github.com/spf13/cobra from 1.6.1 to 1.7.0 in #6280
ci(deps): bump golangci/golangci-lint-action from 3.4.0 to 3.5.0 in #6424
ci(deps): bump golang from 1.20.2-alpine to 1.20.4-alpine in #6337
ci(deps): bump golang from 1.20.4-alpine to 1.20.5-alpine in #6431

👻 Maintenance

Github Action tag update in #6368
Change severity of CloudTrail Log Files Not Encrypted With KMS to Medium and add edge case in #6369
Update kics-gh-action.yaml in #6382
remove unused allowRule in #6439
docs(secrets): add entropy info in #6421
chore(-): update gitlab sast schema to 15.0.6 by @stegojulia in #6426
fix(tests): update incomplete positive expected results in #6300
Dockerfile: upgrade alphine to 3.18.0 in #6428
docs(queries): update queries catalog in #6378

New Contributors

Don't miss a new kics release

NewReleases is sending notifications on new releases.