Data

Tools

Indexes

Applications

Experiments

Open Source Science

Recent Releases of terrascan

terrascan - v1.19.9

Changelog

  • bd6d393de9800a8777029e3920d6e432a11fcfcd [Fix/1702]Fix protobuf errors in binary built in docker build (#1706)

- Go
Published by github-actions[bot] over 1 year ago

terrascan - v1.19.8

Changelog

  • Fixed vulnerability detected by docker scout
  • Following are the vulnerabilities CVE-2024-3817 CVE-2024-6257 CVE-2022-36049 CVE-2024-41110 CVE-2024-23651 CVE-2024-23652 CVE-2024-23653 CVE-2024-26147 CVE-2022-30636

- Go
Published by github-actions[bot] over 1 year ago

terrascan - v1.19.6

Changelog

  • Fix vulnerabilities detected in docker scout

- Go
Published by github-actions[bot] over 1 year ago

terrascan - v1.19.1

Changelog

  • 4422eb52 Resource type attribute changes and stability fixes for yaml parsing and other config changes APE-16695, APE-16692, APE-16734 (#1673)

- Go
Published by github-actions[bot] almost 2 years ago

terrascan - v1.18.12

Changelog

  • 2e75f8fd Display line numbers for cft violations (#1671)

- Go
Published by github-actions[bot] almost 2 years ago

terrascan - v1.18.11

Changelog

  • 3bf466dd Fix type mismatch error in json unmarshal for float to struct (#1660)

- Go
Published by github-actions[bot] about 2 years ago

terrascan - v1.18.10

Changelog

  • 9ce8b180 Fix type mismatch error in json unmarshal for float to struct (#1659)

- Go
Published by github-actions[bot] about 2 years ago

terrascan - v1.18.9

Changelog

  • 3aa1c57f Sanitize the cft template file for aws:: words as it causes parser to fail (#1656)

- Go
Published by github-actions[bot] about 2 years ago

terrascan - v1.18.7

Changelog

  • 575d95bd Added feature to implement SSM parameters (#1653)

- Go
Published by github-actions[bot] about 2 years ago

terrascan - v1.18.6

Changelog

  • 575d95bd Added feature to implement SSM parameters (#1653)

- Go
Published by github-actions[bot] about 2 years ago

terrascan - v1.18.5

Changelog

  • 791983cd Bump up the binary version from the code (#1648)

- Go
Published by nmoretenable about 2 years ago

terrascan - v1.18.4

Changelog

  • 9e99f08e 1061: generate multi-architecture (amd64, arm64) docker image (#1568)
  • 1461ae0e Bump golang.org/x/net from 0.7.0 to 0.17.0 (#1625)
  • 2efa8e52 Bump google.golang.org/grpc from 1.51.0 to 1.56.3 (#1631)
  • 20293211 CICD patch for appid (#1637)
  • 7efbb9d5 changes to make docker push internal (#1636)
  • 8bec6007 cicd deployment update (#1630)
  • 7a3779a9 fix for crash in lambda function cft yaml if code key is not present (#1644)
  • 5a4c44a0 removed image tag to remove error of docker push (#1646)

- Go
Published by github-actions[bot] about 2 years ago

terrascan - v1.18.3

Changelog

  • 659310cd release/v1.18.3 (#1598)
  • 597d9f75 update net deps to fix vuln (#1597)

- Go
Published by github-actions[bot] over 2 years ago

terrascan - v1.18.2

Changelog

  • 13c4c8c7 Increased timeout for webhook test (#1591)
  • f7acf0c5 Releaser fixes for archives. (#1595)
  • cae77e2d Spelling (#1496)
  • 79055c13 fix openssl-libcrypto1.1@1.1.1u-r1 library vulnerability (#1592)
  • e76ef83d only high vulns detected by docker scan fixed (#1588)
  • 94dfb5d7 release/v1.18.2 (#1594)
  • ce41093a remove k8s admission log UI (#1556)

- Go
Published by github-actions[bot] over 2 years ago

terrascan - v1.18.1

Changelog

  • 4f1e403b Bump github.com/docker/docker (#1552)
  • 77ba67b5 Snyk test (#1550)
  • ef2c91d6 added sonar-properties file to skip tests from sonar analysis (#1544)
  • 205e2b5c bugfix: provider version coming as 0.0.0 or empty (#1553)
  • 0432a133 release 1.18.1 (#1554)

- Go
Published by github-actions[bot] almost 3 years ago

terrascan - v1.18.0

Changelog

  • 29f05143 Support one or more values.yaml file as an input to helm scan (#1501)
  • bf56754e Bump github.com/aws/aws-sdk-go from 1.43.16 to 1.44.193 (#1534)
  • 2e8c825a Bump google.golang.org/api from 0.103.0 to 0.109.0 (#1530)
  • 0e10c3c7 Consolidate spelling of severity levels to all uppercase LOW/MEDIUM/HIGH (#1516)
  • 9d58834b Fix description and version rule (#1523)
  • b463df51 Remove wrongly placed github_repository policy from gcp folder (#1515)
  • 69f403d2 error due to new attribute in terraform cause all other working module and resources to be ignored (#1517)
  • 32cbc36a release/v1.8.0 (#1536)

- Go
Published by github-actions[bot] about 3 years ago

terrascan - v1.17.1

Changelog

  • 84f0888c Add github-actions to dependabot (#1365)
  • 752d2a0d Add iac providers endpoint (#1307)
  • d9a7bf8f Bump github.com/hashicorp/go-getter from 1.5.11 to 1.6.2 (#1298)
  • 7cf9d3cf Include DirScanErrors info in SARIF file (#1398)
  • 6da2dca1 Mention pre-requirements in the README (#1375)
  • 08934f48 Policy IDs update (#1396)
  • e289cc65 Update RDS Policies (#1424)
  • da754a75 Update README.md (#1265)
  • 3b428a50 Update README.md (#1409)
  • b7719edf Update object.get first parameter (#1433)
  • d031a56f Update opa and cobra version (#1472)
  • 87cddb03 Update/release command (#1430)
  • 1a460703 added tar.gz archive for windows (#1474)
  • e4a4aec1 added terraform and provider version in resource config (#1469)
  • 8ae13452 adding PITR attribute mapping config for dyanmodb (#1340)
  • 849eef79 allow host policy update (#1400)
  • 7365ecf5 bump goformation from v6 to v7 (#1440)
  • a9f115a2 container funcs to return dev friendly warnings (#1319)
  • d2f87705 fix remote source url (#1437)
  • 48f78e34 fix vulns (#1486)
  • 313ccf31 fix: build/Dockerfile to reduce vulnerabilities (#1315)
  • baf1dfd1 fixed typo of the function name (#1373)
  • 94989ea9 ignored matching provider verson in tests (#1470)
  • fa11e0ee minor release 1.17.0 (#1459)
  • 0f53f055 refs resolution (#1445)
  • 944087f8 release/v1.16.0 (#1427)
  • cf348804 release/v1.17.1 (#1492)
  • 5a49729c update cft map for elb/s3 bucket (#1434)
  • af10a246 update libraries (#1385)
  • 730c83fd update rds instance cft map (#1422)
  • 5c9eaab3 updated deployment scripts (#1429)
  • 064c993c updated policy (#1288)
  • db3b7aef vuln tests (#1394)

- Go
Published by github-actions[bot] about 3 years ago

terrascan - v1.17.0

Changelog

  • 84f0888c Add github-actions to dependabot (#1365)
  • 752d2a0d Add iac providers endpoint (#1307)
  • 7cf9d3cf Include DirScanErrors info in SARIF file (#1398)
  • 6da2dca1 Mention pre-requirements in the README (#1375)
  • 67bdf147 Merge branch 'master' into release/v1.17.0
  • 08934f48 Policy IDs update (#1396)
  • e289cc65 Update RDS Policies (#1424)
  • da754a75 Update README.md (#1265)
  • 3b428a50 Update README.md (#1409)
  • b7719edf Update object.get first parameter (#1433)
  • 87cddb03 Update/release command (#1430)
  • 8ae13452 adding PITR attribute mapping config for dyanmodb (#1340)
  • 849eef79 allow host policy update (#1400)
  • 7365ecf5 bump goformation from v6 to v7 (#1440)
  • a9f115a2 container funcs to return dev friendly warnings (#1319)
  • d2f87705 fix remote source url (#1437)
  • 313ccf31 fix: build/Dockerfile to reduce vulnerabilities (#1315)
  • baf1dfd1 fixed typo of the function name (#1373)
  • fee466b6 minor release 1.17.0
  • fa11e0ee minor release 1.17.0 (#1459)
  • 0f53f055 refs resolution (#1445)
  • 944087f8 release/v1.16.0 (#1427)
  • 5a49729c update cft map for elb/s3 bucket (#1434)
  • af10a246 update libraries (#1385)
  • 730c83fd update rds instance cft map (#1422)
  • 42d07eba update version for sarif golden files
  • 5c9eaab3 updated deployment scripts (#1429)
  • 064c993c updated policy (#1288)
  • db3b7aef vuln tests (#1394)

- Go
Published by github-actions[bot] over 3 years ago

terrascan - v1.16.0

Changelog

  • 84f0888c Add github-actions to dependabot (#1365)
  • 752d2a0d Add iac providers endpoint (#1307)
  • 6da2dca1 Mention pre-requirements in the README (#1375)
  • 7c45879f Merge branch 'tenable:master' into master
  • 08934f48 Policy IDs update (#1396)
  • e289cc65 Update RDS Policies (#1424)
  • da754a75 Update README.md (#1265)
  • 3b428a50 Update README.md (#1409)
  • 8ae13452 adding PITR attribute mapping config for dyanmodb (#1340)
  • 849eef79 allow host policy update (#1400)
  • a9f115a2 container funcs to return dev friendly warnings (#1319)
  • 313ccf31 fix: build/Dockerfile to reduce vulnerabilities (#1315)
  • baf1dfd1 fixed typo of the function name (#1373)
  • 73c1d04b release/v1.16.0
  • 944087f8 release/v1.16.0 (#1427)
  • af10a246 update libraries (#1385)
  • 730c83fd update rds instance cft map (#1422)
  • 064c993c updated policy (#1288)
  • db3b7aef vuln tests (#1394)

- Go
Published by github-actions[bot] over 3 years ago

terrascan - v1.15.2

Changelog

  • 00664bcc Adding CFT support for new resources (#1293)
  • c729550e fixes: panic in case of zap logger init on windows os (#1283)
  • 3ee999ad release/v1.15.2 (#1292)

- Go
Published by github-actions[bot] over 3 years ago

terrascan - v1.15.1

Changelog

  • 01b7dffe Fix descriptions to install terrascan (#1254)
  • ec6cae94 Rebranding repository to Tenable brand (#1253)
  • 9ae26fc8 Rebranding to Tenable (#1246)
  • 5d968e3f Update README.md (#1245)
  • fb1bbcc0 fix: remove master ref check from release docker push step (#1244)
  • feb646ac nil pointer check to avoid panic (#1260)
  • 7126c48f release/v1.15.1 (#1267)
  • 48b63935 support reading terraformrc file from env var (#1264)

- Go
Published by github-actions[bot] almost 4 years ago

terrascan - v1.15.0

Changelog

  • 2bf371dc Add dep scan (#1223)
  • 990dd2f2 Bump alpine from 3.14.6 to 3.15.4 in /build (#1237)
  • 5be816d4 Bump github.com/hashicorp/go-getter from 1.5.7 to 1.5.11 (#1233)
  • 67f3c9d2 Removing workflow file (#1236)
  • beca33cb Update Docker (#1242)
  • fc492880 Update alpine version (#1222)
  • eb1df81d Update mkdocs-material from 8.2.6 to 8.2.14 (#1240)
  • e3153a1f Use Docker buildx for multi-platform support (#1062)
  • 53457cd6 file out writer implementation (#1229)
  • 9baa8ef7 fix panic while scanning https://github.com/bridgecrewio/cfngoat (#1238)
  • 93a7c879 marks ecr e2e test pending till we find alternative (#1224)
  • dea27da1 release/v1.15.0 (#1243)
  • 471df8b2 support for new flag to define custom temp directory (#1217)

- Go
Published by github-actions[bot] almost 4 years ago

terrascan - v1.14.0

Changelog

  • 50ad728d Bump go 1.17 (#1026)
  • 504aa1a3 Add backward compatible implementation of ACAWS0214 (#1173)
  • b34f65a4 Add security policy (#1189)
  • a59fc2be Adds: dir scan errors in human readable output format (#1196)
  • c005c1f3 Feature/best effort cft file load (#1168)
  • d818b60a Feature/endpoint policy download (#1200)
  • d2cf489d Update README.md (#1206)
  • 830e0792 Update mkdocs from 1.2.3 to 1.3.0 (#1203)
  • 13d2e45d Update mkdocs-material from 8.2.1 to 8.2.6 (#1195)
  • 664798df add CODEOWNERS (#1194)
  • 71648680 adds: git in container which is required for go build (#1193)
  • 2345a4a9 changes to honour custom temp dir path for downloading (#1214)
  • 173ec8f8 fix: reworded error to explain tests performed (#1164)
  • 655761a6 proceed to terraform static analysis when root is not nil (#1211)
  • 3dbcc4fa release/v1.14.0 (#1215)
  • cc59c890 remove sourcecodehash mapping (#1197)
  • 8a630d80 remove undefined template variable (#1179)
  • 2225cffc run go mod tidy (#1184)
  • 119958ee skip building windows arm64 binary (#1216)
  • a6a6a372 skip policy download if used -p flag and skip docker login on non master branch (#1210)
  • 6a6510a7 skip vuln test for dependabot (#1185)
  • 5e50a2ed typo: Change "desitnation" to "destination". (#1192)
  • f8c03439 update lambda function mapper (#1199)
  • b9094603 updating s3 bucket policies for v4 aws provider (#1175)

- Go
Published by github-actions[bot] almost 4 years ago

terrascan - v1.13.2

Changelog

  • b018d772 Adding CFT scanning support for the resources: (#1149)
  • 2f3c2d9a Adds: missing release tag push step (#1151)
  • a524076b Bugfix/coginto pool (#1159)
  • 2f294b45 Bugfix/s3 user policy (#1157)
  • f1acad73 Feature/s3 policy update (#1153)
  • ccca7eee Update mkdocs-material from 8.1.10 to 8.2.1 (#1155)
  • c8234f4d fix rds encryptionc check policy (#1156)
  • 21a73844 release 1.13.2 changelog (#1161)
  • b45a099e skip terrascan init for --config-with-error flag (#1160)

- Go
Published by github-actions[bot] almost 4 years ago

terrascan - v1.13.1

Changelog

  • 0fd6b7dd Add Policy ACGCP0296 - Service Attachment with ACCEPT_AUTOMATIC (#1147)
  • b0259e8b Adds: logger in case of flag parsing fails (#1115)
  • 969d8dfa Allow internal github repos to pass ACGCP0231 & ACGITHUB0002 (#1131)
  • 090d7679 Allow tfplan format version 0.2 (#1074)
  • 14a634ba Feature/ec2 cog lambda acm cft (#1129)
  • 575bff2e Feature/eks msk vpc version (#1140)
  • 4dae7e4a Feature/rds sage dms load emr msk (#1133)
  • 94cc7ced Fix gcp policy ACGCP0014 - dnsStateIsNotOn (#1033) (#1107)
  • 87ce30e6 Fix typos in docs and release_checklist (#1138)
  • c37172a5 Prevent adding both skipped and failure elements (#1123)
  • ae4eccb6 Update README.md (#1109)
  • d7316b69 Update mkdocs-material from 8.1.4 to 8.1.8 (#1124)
  • 683de81c Update mkdocs-material from 8.1.8 to 8.1.9 (#1132)
  • b6f2ed06 Update mkdocs-material from 8.1.9 to 8.1.10 (#1141)
  • 52e4cdb2 Updates CloudFormation mapper to support additional resources (#1120)
  • 08ec43b4 add ability to output normalized resource config with errors (#1134)
  • 9780e131 add rule id to docs (#1136)
  • b75cab78 fix panic in cft (#1146)
  • 7325cf96 fix: pkg/iac-providers/docker/v1/testdata/file-test-data/dockerfile-withmultiple-stages to reduce vulnerabilities (#1144)
  • db9103e8 fixes failing docker iac provider test (#1145)
  • 950e20ba release/v1.13.1 (#1150)
  • 1dc8ebbe update cft mapper (#1143)
  • 20ef2321 update cft mapper (#1148)
  • f205cff5 updated discord link (#1118)

- Go
Published by github-actions[bot] about 4 years ago

terrascan - v1.13.0

Changelog

  • 790b1dd Fix Sarif file uri path invalid in Windows and update go-sarif to latest (#1070)
  • ffd5d75 New k8s policy to detect CVE-2021-25742 (#1069)
  • 2cde272 Update mkdocs-material from 7.3.4 to 7.3.6 (#1075)
  • 5761394 Update mkdocs-material from 7.3.6 to 8.0.3 (#1092)
  • 81f67ad Update mkdocs-material from 8.0.3 to 8.0.5 (#1095)
  • ddad143 Update mkdocs-material from 8.0.5 to 8.1.3 (#1101)
  • c8344ba Update mkdocs-material from 8.1.3 to 8.1.4 (#1106)
  • 6a849d4 fix go mod (#1094)
  • 83afdb7 fix input CFT templates based on goformation structs (#1105)
  • 84eae3f fix: handles nil pointer issue while extracting container images (#1076)
  • 9dec8e8 making change in imageVersionnotusinglatest.rego (#1068)
  • 9f75f75 release/v1.13.0 (#1108)
  • d2ede64 updating policies to detect cve-2021-25742 (#1071)

- Go
Published by github-actions[bot] about 4 years ago

terrascan - v1.12.0

Changelog

4ee5e04 Accept notification webhook configs as CLI args (#1042) 056c30c Add support for getting line numbers for all attributes (#1055) 474f1b6 Add support for repo-url and branch name in CLI flags and scan output (#1059) 0719c9c Fix notification webhook flow (#1051) f81d81f Update atlantis base image (#1054) a3e7161 Update mkdocs from 1.2.2 to 1.2.3 (#1058) 1b60b11 Update mkdocs-material from 7.3.2 to 7.3.3 (#1057) 9c89ec1 Update mkdocs-material from 7.3.3 to 7.3.4 (#1060) 743756d release v1.12.0 (#1066) 835f90b update container image version in helm and kustomize sources (#1050)

- Go
Published by github-actions[bot] over 4 years ago

terrascan - v1.11.0

Changelog

eaf5927 Adds additional dockerfile policies (#984) b6337a0 Adds: e2e tests for vulnerability (#1009) 56b6964 Adds: support for harbor registry vulnerability fetching (#1015) de98118 Optimized disk encryption check code. (#1037) b11c43a Update README.md with instsall instructions for ArchLinux / Manjaro (#1011) a400d98 Update docs for AWS.LambdaFunction.Logging.Low.0472 policy (#1027) 683be27 Update mkdocs-material from 7.2.4 to 7.2.6 (#1012) ec87a48 Update mkdocs-material from 7.2.6 to 7.3.2 (#1043) c11052e accepted 2xx in response code as success (#1040) d76a41a fix #1046: helm chart breaking due to invalid configfile name extension (#1047) 362aa86 fix permission issues in creating webhook mode logs file persistence 2bf4cdb fix: added null check before value conversion to avoid panic (#1020) db18509 release v1.11.0 (#1048)

- Go
Published by github-actions[bot] over 4 years ago

terrascan - v1.10.0

Changelog

d1a11f3 Adds additional policies for dockerfile (#996) cecdd6e Adds: e2e test for docker IaC provider (#968) 687863e Bump github.com/hashicorp/go-getter from 1.5.2 to 1.5.7 (#993) d24a8b8 Bump github.com/hashicorp/hcl/v2 from 2.10.0 to 2.10.1 (#972) 68c36a1 Bump github.com/pelletier/go-toml from 1.8.1 to 1.9.3 (#999) e55a624 Bump github.com/spf13/afero from 1.5.1 to 1.6.0 (#970) 6ae1274 Extract Docker images from Terraform templates (#937) b42be70 Extract Docker images from k8s YAML files (#905) 256facf Extract images from Dockerfiles (#1002) 309e9f5 Fix dependency issue that caused dependabot to fail (#966) 05a65a3 Fixes supported Kustomize version (should be v4) (#932) 01184ad Initial support for image scanning (#989) 81495a9 Revert "update resource type to map[string]bool (#992)" (#1001) c3458b1 Update helm.sh/helm/v3 v3.6.1 (#1000) 1269301 Update mkdocs-material from 7.2.2 to 7.2.3 (#978) e9017b1 Update mkdocs-material from 7.2.3 to 7.2.4 (#985) a559f4b added binary based support for kustomize v2 and v3 (#988) 5077005 adds brew instructions to release checklist (#987) c9f7483 bump up version to 1.10 (#1008) ced64a2 fix(policies): removing false-positive for K8s namespaces (#961) a2b9bd2 modify wait logic for service account creation (#979) 5c6a2c1 terrascan should exit with non zero exit code when scan error are present (#994) 9aea292 update changelog (#1005) 3e8d964 update resource type to map[string]bool (#992)

- Go
Published by github-actions[bot] over 4 years ago

terrascan - v1.9.0

Changelog

c1b2d57 Add support for CFT nested stacks (#949) 7fb8bb4 Adds Terrascan pre-commit (#953) 5477227 Adds support for using Terraform modules cached locally (#940) 11db729 Dockerfile support (#849) f922d00 Update README.md (#945) 485d577 Update mkdocs-material from 7.1.11 to 7.2.0 (#939) aaacce2 Update mkdocs-material from 7.2.0 to 7.2.1 (#947) af9deed Update mkdocs-material from 7.2.1 to 7.2.2 (#954) d1d21fc fix - config only option used with remote repo scan generates panic (#948) fad5d92 release v1.9.0 (#965) a3e0b6e temporary fix for k8s policy filtering issue (#963) b0c9873 update helm chart progress checklist (#943)

- Go
Published by github-actions[bot] over 4 years ago

terrascan - v1.8.1

Changelog

35afbe6 Add support for arm linked templates (#903) 2443118 Do not initiate policy engine incase of --config-only flag cf582eb Remove unnecessary KMS deletion window code (#918) 35c7ca1 Update mkdocs from 1.2.1 to 1.2.2 (#935) dbf90e8 Update mkdocs-material from 7.1.10 to 7.1.11 (#938) 29201a7 Update mkdocs-material from 7.1.9 to 7.1.10 (#929) ef959f1 Update overview.md (#919) 656744d Updating the dax cluster policy (#909) 8bba815 add github-sarif writer for github suited sarif output (#907) 89555e5 add integrations overview and minor fixes (#913) 80c00e0 fix error log message for terraform file (#914) c9d73e0 fix go mod files (#941) 73bcc12 fix(sws/cloudfront): wrong check tls version (#928) d231a43 fixed e2e test cases for --config-only 5513a0f fixes: broken doc links (#921) 1721cde minor-doc-fix (#916) c299d50 policy to detect a service without selector (#931) bf23634 release v1.8.1 (#942) 87efa51 terraform 0.15 support (#860) aba0d62 update getting started and Usage, fix links (#920)

- Go
Published by github-actions[bot] over 4 years ago

terrascan - v1.8.0

Changelog

325985d Add ID Field in Azure Policies (#872) 9e962b9 Add Microsoft Azure ARM as an IaC Provider (#736) 95b02c4 Added "id" field support & policy validation tests (#843) 7a4de55 Addind AWS Network Security Policies (#866) 32a4c15 Adding Id fix for github policies (#874) 6e3cc71 Adding missing Id field for GCP policies (#870) 6b7b83f Bugfix/az nw sec policies (#862) 4bbb647 Bugfix/k8s id field (#873) bcc4cf2 Change api, Add support for s3 bucket resource and better cft loader (#865) 9f050b3 Fix authorization header for http request (#877) b8fda7c Fixes incorrect filepath reporting in sarif output & added e2e tests for sarif output (#863) 7fd8ba0 Minor documentation fixes (#908) 1b58346 Spilt usage docs (#890) c3f372f Update Integration Docs.md (#885) c43ec4a Update cicd.md (#901) 51a71f8 Update cicd.md (#902) 4bf9b35 Update mkdocs from 1.1.2 to 1.2.1 (#886) 1db0999 Update mkdocs-material from 7.1.4 to 7.1.8 (#859) 0734df7 Update mkdocs-material from 7.1.8 to 7.1.9 (#895) a74765d Update usage.md (#893) decb1e9 Updates documentation on Terrascan github action (#894) c04acd4 Updating network security policies for GCP (#869) bedfaa1 Use CGO independent package for sqlite (#906) 40c0aa8 add in-file instrumentation segment (#910) 36ca6eb add proper values via metadata (#888) 7d20723 adding ID field (#871) c642063 fix broken link to usage.md (#855) 80902fa fix error messages reported from hcl diags (#911) 2ca5eb1 fix(pkg/policies/opa/rego/azure/azurermcontainerregistry/containerregistryresourcelock.rego): check correct fields (#858) 617ef74 fixed sarif unit tests hardcoding code smell (#857) cee9ab4 fixes: recursive loop when parent and child module has same local block (#900) 4fd7642 improves: filename in remote module (#867) 2fdc14d k8s policies refactor (#879) 0f0be20 mod policies to achieve parity with siac (#878) 1f316eb release v1.8.0 (#912)

- Go
Published by github-actions[bot] over 4 years ago

terrascan - v1.7.0

Changelog

95aba12 Add AWS CFT as an IaC Provider (#815) a4d7af9 1. fix failing test due to log message assertion (#812) b899922 Add ID Field for AWS Policies' Metadata (#831) 48f92ef Add ID Field for K8s Policies' Metadata (#826) cb2be19 Add module name in violation summary for terraform scans (#774) 07c1e4f Add a kustomize based guide for setting up terrascan server and validating webhook in kubernetes (#739) 0a1912f Add e2e tests for k8s admission control validating webhook (#772) 1d7e5b9 Add webhook setup capability and remote repo scan capability in the helm charts (#778) 940a446 Added sourcerange 0.0.0.0/0 (any) to avoid rule violations (#776) 3f02324 Adding Aws new policies cloudTrail (#810) 5f4b15a Adds support to scan config resources with applicable policies & Refactors filteration (#803) 5057073 Adds: in-file instrumentation for resource prioritizing (#802) 05e4db3 Automate generation of TLS Certs using Helm (#779) 8fc20b2 Bugfix/use ref id old format (#846) 0f03866 Bump up to Go 1.16 (#836) 9adfe1d Do not trim resource id from tfplan json (#825) 53eda39 Documentation (#768) 37cef51 Feature/az id field (#808) 72e3ebc Fix accurics.azure.AKS.3 (#712) 0eae483 Fixing the bug for googlekmscryptokey policies (#848) 01c8d78 Initial addition of terrascan helm chart (#688) 636515e JSON and Rego updated (#787) 82e5242 Support for spaces in policy referenceid (#833) 0cf4ed6 Update mkdocs-material from 7.1.2 to 7.1.4 (#746) 9db3868 Update mkdocs-redirects from 1.0.1 to 1.0.3 (#710) d7e16f6 Update policy description to match correct port. (#777) 9ac1667 Update usage.md (#765) 1839b24 [feat.] Merge Webhook and Server Helm Chart (#817) 1229942 [fix] Add Alternate names for k8s services (#834) 9ff6f2f add check for env vars and kms, fixes #682 (#827) 0d8bc97 add id field for matching policies siac/terrascan (#824) 0ed8ef7 add logging middleware for server (#785) afc2a18 add support for YAML format for terrascan config file (#816) fafdda4 add support for sarif format violation reports (#806) dc0b428 add validation for tls private key and cert file values (#771) 971845a bucket policy check false positive fix (#828) 358fc67 check for loopback addresses in endpoint slice (#830) a3f26c1 config file changes for terrascan server (#780) b012204 enhancing aws policies (#829) 23bb0ae fix multierror variable issue for helm, kustomize and k8s (#818) cbbde51 fix terraform inner block reference resolution (#844) 0c3c547 fix: add validation for module local source dir in terraform iac (#793) 0e4c830 fix: modified docker file to use UID of user (#773) eff166f fix: moves the pending test to running (#819) 5060bbb fixing the policy (#847) ff2c2a5 improve unit tests for config reader package (#820) 66159bd making file paths relative for k8s IaC (#821) e4ae20c policy metadata changes to include `policytypeandresource_type` (#792) 9316d5d reference ids with & and fixed (#845) 446b80f release 1.7.0 (#850) bea2473 removed pod level securityContext support (#790) 669631a shifted custom atlantis container source under integrations/ directory (#758) 696481d shifted opa engine warning message to debug log level (#800) dec6618 type assertion check for hcl.Body (#832)

- Go
Published by github-actions[bot] over 4 years ago

terrascan - v1.6.0

Changelog

9c4918e AWS policy pack update (#737) 964167b Adding release checklist (#734) 4590a3a Feature/aws new policies sp (#751) 2d06d74 Fix NSG associations (#727) d242c2e Gh action terrscan_atlantis release (#733) e6e6b8e Update admission-controller-webhooks-usage.md (#722) 320b191 Update mkdocs.yml (#741) 0c7f4ca add terrascan atlantis container files, scripts and doc. (#684) c44734a adds agrocd integration dockerfile, scripts, doc and examples (#732) 52481bc adds implementation for skipped server mode k8s scan e2e tests (#706) 762c561 adds support to scan directory with all iac providers in cli mode (#674) dee8090 adds support to scan sub folders for terraform iac provider (#640) 881417a changes for argocd integration (#724) 4878eeb doc: add homebrew badge (#714) 0af155d fix failing test (#740) 3bd67ae fixes infinite loop while local variable resolution for terraform (#700) 02c8bce modify iac dir path validation (#720) 95a739e release v1.6.0 (#764) ba7a76a update argo cd documentation (#742) d8fd9c4 update version (#713)

- Go
Published by github-actions[bot] almost 5 years ago

terrascan - v1.5.1

Changelog

e8e5281 Handle multiple vpc flow logs (#680) a09b879 Moving linux builds to static builds (#708) aecf28d Update index.md (#707) 4c66c22 adding new policy and enhancing the nosiy policy (#575) 5a289d6 adds changelog for v1.5.0 (#692) 5669cbf fix severity output case insensivity fix (#691) 7962a8f updates installation instructions to deduct latest release (#695)

- Go
Published by github-actions[bot] almost 5 years ago

terrascan - v1.5.0

Changelog

5abf9af 1. fix panic for list variable with no type definition in terraform config (#654) dbaf3a1 AWS Risk Category Changes (#603) cca6d2f AWS new Categories (#581) dfc0d08 Add /go/bin to PATH. (#637) 317a536 Adding openssh to Dockerfile for downloading modules via ssh (#625) 1d1addf Adding support to scan IAC from atlantis workflow (#648) bc364ad Azure Risk Category Changes (#604) 1752bb7 Bugfix/revert policies (#602) 55c1ae1 Category flag e2e tests (#605) 2033718 Fixes broken link in README (#671) 1257ec2 Fixes docs format (#661) d1a198c Log error in LoadIacDir before continuing (#613) 225a914 Makes saving of admission requests configurable via a config file option (#665) c39c7fa Making Category Changes (#606) c6aef0b Moving from goreleaser GH action (#694) 02d312e New Policies for Azure & Category Updates. (#580) 8625834 Reorganized and Updated docs (#655) 23ca9f7 Support for authenticated tf module download (#658) 9546bcc Take file extension from uploaded file (#593) 6bdcf0c Terrascan K8s New categories and ruleRef ID changes (#583) a30788a Terrascan init and config handling refactor (#576) 4a20105 Update cicd.md (#667) c61f306 Update mkdocs-material from 7.0.1 to 7.0.5 (#590) 4d12986 Update mkdocs-material from 7.0.5 to 7.0.6 (#615) 41b159c Update mkdocs-material from 7.0.6 to 7.1.0 (#636) 6929cb2 Update mkdocs-material from 7.1.0 to 7.1.2 (#676) 714cf60 Update mkdocs.yml (#660) a4db22d Update route53LoggingDisabled.rego to ignore private zones (#626) dbb5a91 Updating Rule reference Id's and Policy categories (#582) 71b776f add authentication with API key for the /logs endpoint (#663) dcfbd54 add support for kubernetes validating admission webhook 6604c23 adds support to run k8s validating webhook without dashboard by default (#683) a3bcac7 feature: add support to specify desired categories of violations to be reported (#547) 4df6ce6 filepath fixes in e2e tests (#591) a11f71e fix - init behavior change (#624) 258206b fix - process local sources in remote modules for terraform iac 6103c45 fix kustomize scan breakage on windows (#630) 114222a fix panic for floating point variables for terraform cty types(#653) 585edcc fix recursive variable reference resolution for terraform (#677) 5db6cb2 fix windows tests (#635) 23c8281 make k8s source paths relative to the provided directory for scanning b6732c7 policy download refactor (#618) adf9e7f release v1.5.0 (#689) 9baf154 resolve complex variable types for terraform and add unit tests (#657) 9fe74b4 revert k8s old changes (#608) 538b9ed update helm default chart name and namespace values (#589) 99dc630 updating documentation for k8s admission control (#679) 71a677f v1.4.0 doc updates (#588)

- Go
Published by github-actions[bot] almost 5 years ago

terrascan - v1.4.0

Changelog

2a7627a Adding code of conduct 2296d3a Adds support for scanning tfplan json file (#562) e838bb5 Bump github.com/spf13/cobra from 1.0.0 to 1.1.1 (#493) 91c018a Fixed incorrect description of a rego policy for RDS encryption bbe97ce Initial changes for e2e testing framework (#553) 7b3593f Merge pull request #501 from dev-gaur/severityflag efeed62 Merge pull request #527 from patilpankaj212/support-junitXML dabcffb Merge pull request #532 from nathannaveen/nathan/fix/InitializesTerrascan f14d608 Merge pull request #534 from dev-gaur/updatereadme 1afca98 Merge pull request #537 from accurics/docs/v1.3.2 c406568 Merge pull request #541 from patilpankaj212/log-level-fixes 9f3569b Merge pull request #542 from alex-petrov-vt/issue538 b785481 Merge pull request #545 from jlk/add-code-of-conduct 10d6706 Merge pull request #552 from dev-gaur/fixterrascaninit f9aea57 Merge pull request #558 from dev-gaur/bumpversions f4d7465 Update CHANGELOG.md b579bec Update mkdocs-material from 6.2.7 to 6.2.8 (#539) 98e57b3 Update mkdocs-material from 6.2.8 to 7.0.1 (#567) 69541fb add options to specify desired severity level of violations to be reported 237c04e add writer for junit-xml 58e5f45 added tests for NewExecutor func bda153e adds e2e test scenarios for help and scan command (#564) bbb4a56 adds e2e tests for api server (#585) 6728908 adds support to display passed rules (#572) b93b508 bump versions to v1.3.3 6b79a9c changed the description message (#559) 26bae02 enhancement: scan terraform registry modules as remote type (#513) 78f6458 fix - improved description for init command 1027346 fix filepaths and home directory lookup (#566) b24b89b fix the 'repo already exist' bug and improve error logging for terrascan init fa44485 fix: renamed the json file to remove spaces (#560) f390891 fixes typo 3ef25b6 include docs for latest policy updates 3ffda3e incorporate review changes 3e5170b log level changes for load iac functions ab29871 release 1.4.0 (#586) 6d9e34e reverts to master version 065e010 support for config_only option in api server file scan output (#579) 57ade8a updated go module files (#557) 82dc401 updated readme for v1.3.2 bdfcba8 updates changelog for v1.3.2 ba304e5 updates with new version

- Go
Published by github-actions[bot] almost 5 years ago

terrascan - v1.3.3

Changelog

1d244a6 Adding code of conduct 4d16e32 Bump github.com/spf13/cobra from 1.0.0 to 1.1.1 (#493) 54f740b Fixed incorrect description of a rego policy for RDS encryption 9088544 Merge pull request #509 from accurics/amirbenv-patch-1 62069cb Merge pull request #514 from accurics/pyup-update-mkdocs-material-6.2.5-to-6.2.6 78dd045 Merge pull request #515 from harkirat22/policy/k8s-improvement ae9effc Merge pull request #516 from harkirat22/policy/aws-launch-config 47d55e0 Merge pull request #517 from gaurav-gogia/fix405 fd73ed6 Merge pull request #518 from gaurav-gogia/fix376 31bd625 Merge pull request #520 from harkirat22/harkirat22/bug-fix dd0643a Merge pull request #522 from harkirat22/aws-instance-policies 7682371 Merge pull request #523 from gauravgahlot/docs-fixes 5641824 Merge pull request #524 from accurics/pyup-update-mkdocs-material-6.2.6-to-6.2.7 0b0e9ec Merge pull request #526 from harkirat22/fix391 40a9ac6 Merge pull request #529 from dev-gaur/fix#521 4febd3b Merge pull request #531 from dev-gaur/inithot_fix 8c8afcd Update CHANGELOG.md 372796a Update CHANGELOG.md 270f7fd Update README.md d6827b2 Update mkdocs-material from 6.2.5 to 6.2.6 9265b67 Update mkdocs-material from 6.2.6 to 6.2.7 439de58 Update mkdocs-material from 6.2.7 to 6.2.8 (#539) b7f17a1 add support for pod container fcec126 adding new rule to fix bug #391 029a082 bump terrascan version to v1.3.2 1d869c1 bump versions to v1.3.3 6e7a4dd fix - improved description for init command 8cb8e7c fix the 'repo already exist' bug and improve error logging for terrascan init 9b134e8 fix typos in docs aba0c76 fixes #376 4eb3d33 fixes #405 ed57996 fixes typo 471b58e include docs for latest policy updates 92942a9 incorporate review changes 0868005 log level changes for load iac functions 7deaf8e made rule reference ids unique, solves bug#519 afb7ec5 new set of policies for EC2 instance 0fda427 policy for instance profile (launch config) 52625fd policy to check launch config has imdsv1 cc306bc policy to check monitoring for launch config e2ff0a7 policy to check security group for lauch config 24bdc7a refactor init command for robust policy download checks 1fa832f removed irrelevant error 0afa877 removed local policy testing folder 31cff39 reverts to master version df1bd8a terrascan init will download new policies 1d25c62 updated CHANGELOG.md 3869f87 updated go module files (#557) 6d348fe updated readme for v1.3.2 25ce756 updates changelog for 1.3.1 226f00e updates changelog for v1.3.2 cde0357 updates docs with 1.3.1 version 0c72906 updates with new version

- Go
Published by github-actions[bot] about 5 years ago

terrascan - v1.3.2

Changelog

9088544 Merge pull request #509 from accurics/amirbenv-patch-1 62069cb Merge pull request #514 from accurics/pyup-update-mkdocs-material-6.2.5-to-6.2.6 78dd045 Merge pull request #515 from harkirat22/policy/k8s-improvement ae9effc Merge pull request #516 from harkirat22/policy/aws-launch-config 47d55e0 Merge pull request #517 from gaurav-gogia/fix405 fd73ed6 Merge pull request #518 from gaurav-gogia/fix376 31bd625 Merge pull request #520 from harkirat22/harkirat22/bug-fix dd0643a Merge pull request #522 from harkirat22/aws-instance-policies 7682371 Merge pull request #523 from gauravgahlot/docs-fixes 5641824 Merge pull request #524 from accurics/pyup-update-mkdocs-material-6.2.6-to-6.2.7 0b0e9ec Merge pull request #526 from harkirat22/fix391 40a9ac6 Merge pull request #529 from dev-gaur/fix#521 4febd3b Merge pull request #531 from dev-gaur/inithotfix fed8436 Merge pull request #533 from dev-gaur/releasev1.3.2 372796a Update CHANGELOG.md 270f7fd Update README.md d6827b2 Update mkdocs-material from 6.2.5 to 6.2.6 9265b67 Update mkdocs-material from 6.2.6 to 6.2.7 b7f17a1 add support for pod container fcec126 adding new rule to fix bug #391 029a082 bump terrascan version to v1.3.2 9b134e8 fix typos in docs aba0c76 fixes #376 4eb3d33 fixes #405 7deaf8e made rule reference ids unique, solves bug#519 afb7ec5 new set of policies for EC2 instance 0fda427 policy for instance profile (launch config) 52625fd policy to check launch config has imdsv1 cc306bc policy to check monitoring for launch config e2ff0a7 policy to check security group for lauch config 24bdc7a refactor init command for robust policy download checks 0afa877 removed local policy testing folder df1bd8a terrascan init will download new policies 25ce756 updates changelog for 1.3.1 cde0357 updates docs with 1.3.1 version

- Go
Published by github-actions[bot] about 5 years ago

terrascan - v1.3.1

Changelog

3bc7f14 1. initial changes for registry module support 2. fix issue of remote module containing local modules 390eed3 1. initial changes for registry module support 2. fix issue of remote module containing local modules bfbd608 1. initial changes for registry module support 2. fix issue of remote module containing local modules 78fd1d2 1. initial changes for registry module support 2. fix issue of remote module containing local modules 5885f2c Bump github.com/hashicorp/go-getter from 1.5.1 to 1.5.2 181d5b3 Bump github.com/hashicorp/go-retryablehttp from 0.6.6 to 0.6.8 e153cde Merge branch 'master' into dependabot/gomodules/github.com/hashicorp/go-getter-1.5.2 13670d7 Merge branch 'remote-module-support' of https://github.com/patilpankaj212/terrascan into remote-module-support 3589f96 Merge branch 'remote-module-support' of https://github.com/patilpankaj212/terrascan into remote-module-support 8e3e41b Merge pull request #495 from accurics/dependabot/gomodules/github.com/hashicorp/go-getter-1.5.2 a8461cf Merge pull request #496 from accurics/dependabot/gomodules/github.com/hashicorp/go-retryablehttp-0.6.8 26c7ee4 Merge pull request #503 from accurics/readmeskip 51aaf1f Merge pull request #505 from patilpankaj212/remote-module-support 51b686e Merge pull request #507 from williepaul/fix-darwin-arm64-build 6a282a9 Merge pull request #508 from kanchwala-yusuf/v1.3.1 64e6608 Update README.md e6691bb Update README.md ee2a46d Update README.md 1abfc7a Update README.md b452f0a Update README.md bf49487 Update README.md 4b7462e fix dependencies that were breaking the darwin/arm64 build bc015ac fix static check failure 8cb68f1 fix static check failure f784302 fix static check failure 4ccc1d0 go mod tidy 1fe039d refactor DownloadRemoteModule func and more tests 19128c9 refactor DownloadRemoteModule func and more tests e64db7f refactor DownloadRemoteModule func and more tests 88073ee release v1.3.1 3b70d88 tests for remote module 48ae5d9 tests for remote module 32c1196 tests for remote module 7f02c6b tests for remote module

- Go
Published by github-actions[bot] about 5 years ago

terrascan - v1.3.0

Changelog

2b8e2cd #394: recognize that empty values for username and password in masterauth block will disable basic auth c33ebed -support color for default output -change color for 'file' 9d40d8e 1. added setup func to download policies 2. fix code smells 4fbe4ac 1. fix debug messages 2. fix typos in test name 3fd3d95 1. fix debug messages 2. fix typos in test name c36691f 1. fix panic for list variables 2. test for list variables 33cd0e7 1. fix summary order 2. fix colored writer test bf202e0 1. format summary 2. print empty quotes when resource name is absent 10ee6d5 1. modify existing tests of Run 2. add new tests for Run e0c2e07 1. remove _ from test func 2. define variable for error string in test func 63d9867 1. support of rule skip comment for tf 2. human readable output modifications 0212180 1. support skip and scan rules in the server mode 2. refactor the existing config reader code 3. update unit tests 4. incorporate PR review comments f0cbb79 1. support skip resource with comment. 2. skipped resource violations in output. 2ca27b9 1. toml config file based rule skipping 2. tests around rule scanning and skipping c4b9aa7 1. update fix for exit code 2. remove default command code 6603436 APE-1319: Revamped Getting Started Section a086a65 Add Docker image release tagging on release 6d79769 Add new policy for checking insecuressl on githubrepositorywebhook 185f8c6 Add policy AC-K8-NS-SE-M-0188 for CVE-2020-8554 3f759b9 Add v13 flag option for terraform iac 6da5e88 Add v13 flag option for terraform iac 1f296e6 Added Unit test coverage for Kustomize V3 Iac-provider b1c5360 Added terraform v14 support d356d5c Apply fix for self referential variables to non-parent modules 87cf969 Bump github.com/gorilla/mux from 1.7.4 to 1.8.0 4d74093 Bump github.com/hashicorp/go-version from 1.2.0 to 1.2.1 eb7e1dc Bump github.com/hashicorp/go-version from 1.2.0 to 1.2.1 03ea645 Bump github.com/iancoleman/strcase from 0.1.1 to 0.1.3 2330164 Bump github.com/mattn/go-isatty from 0.0.8 to 0.0.12 a264778 Bump github.com/mattn/go-isatty from 0.0.8 to 0.0.12 9664dcc Bump github.com/pelletier/go-toml from 1.8.0 to 1.8.1 7d0e3a0 Bump github.com/spf13/afero from 1.3.4 to 1.5.1 feb1a9e Bump github.com/zclconf/go-cty from 1.2.1 to 1.7.1 7a14d2d Bump go.uber.org/zap from 1.13.0 to 1.16.0 07092e5 Bump sigs.k8s.io/kustomize/api from 0.6.5 to 0.7.1 1801ce9 Bump sigs.k8s.io/kustomize/api from 0.7.1 to 0.7.2 385da16 Bump sigs.k8s.io/kustomize/api from 0.7.1 to 0.7.2 a4dc4ef Fire clientCertificateEnabled rule when client certificate is enabled 8a70f9e Fix infinite loop on variable resolution 21d311b Fix link to rego playground in policies documentation 7e1a1bb Fix typo in architecture documentation 2986401 Fix: potential bug added in PR #470 2536a09 Fix: potential bug added in PR #470 66c14cd Fixing policy description 12ce5c6 For human readable output display json output when '--config-only' is used 433415c IMDSv1 check policy d6872fa IMDSv1 policy: update category, description df73bc4 IMDSv1 policy: update category, description 5fc9818 Merge branch 'imdsv1-fix' of github.com:accurics/terrascan into imdsv1-fix 283d7d9 Merge branch 'master' into dependabot/gomodules/go.uber.org/zap-1.16.0 2df50b4 Merge branch 'master' into issue-422 23fe143 Merge branch 'master' of github.com:accurics/terrascan into argo-cd-hook 9058454 Merge pull request #386 from HorizonNet/issue-355 4d42c95 Merge pull request #387 from accurics/pyup-update-mkdocs-material-6.1.4-to-6.1.5 dbd5237 Merge pull request #393 from dinedal/fixinfinitelooponvariableresolution 6a24967 Merge pull request #396 from acc-jon/issue394 d37fb58 Merge pull request #397 from therasec/bugfix/gcpcosimage ab97a48 Merge pull request #399 from dev-gaur/issue379 55a6c2c Merge pull request #401 from accurics/pyup-update-mkdocs-material-6.1.5-to-6.1.6 9b32df3 Merge pull request #402 from lucas-giaco/master a463ede Merge pull request #409 from HorizonNet/issue-403 4614d5d Merge pull request #410 from HorizonNet/issue-398 8d6e722 Merge pull request #417 from harkirat22/master 929e377 Merge pull request #419 from accurics/imdsv1-fix 559c45d Merge pull request #420 from accurics/fix-jon-testorder 51d6b44 Merge pull request #423 from HorizonNet/issue-421 f96af13 Merge pull request #424 from HorizonNet/issue-422 2498741 Merge pull request #425 from accurics/pyup-update-mkdocs-material-6.1.6-to-6.1.7 9c5476c Merge pull request #427 from acc-jon/windows-colors 90e4ea7 Merge pull request #428 from gauravgogia-accurics/master 287b370 Merge pull request #430 from accurics/ape-1319 7cc4f16 Merge pull request #431 from patilpankaj212/humanreadableoutput 32ff137 Merge pull request #434 from kanchwala-yusuf/feature/skip-rules ce61b02 Merge pull request #435 from accurics/docs/fix-link c57bb06 Merge pull request #436 from patilpankaj212/scan-refactor b8a6849 Merge pull request #441 from patilpankaj212/scan-and-skip-rules 960c77b Merge pull request #443 from chenrui333/go-1.15 02e77b8 Merge pull request #444 from chenrui333/add-dependabot-support 432ec9f Merge pull request #445 from accurics/pyup-update-mkdocs-material-6.1.7-to-6.2.3 4557d22 Merge pull request #447 from accurics/dependabot/gomodules/github.com/gorilla/mux-1.8.0 9ac1b32 Merge pull request #448 from accurics/dependabot/gomodules/sigs.k8s.io/kustomize/api-0.7.1 6fab349 Merge pull request #449 from accurics/dependabot/gomodules/github.com/zclconf/go-cty-1.7.1 0f79088 Merge pull request #452 from accurics/docs/pipeline 5a19951 Merge pull request #454 from accurics/argo-cd-hook 20a4bdb Merge pull request #455 from patilpankaj212/annotations-based-skipping 45a7885 Merge pull request #456 from accurics/amirbenv-patch-1 5385258 Merge pull request #457 from harkirat22/master c39a76d Merge pull request #458 from patilpankaj212/fix-exit-code-on-error 76bf739 Merge pull request #460 from harkirat22/master f9b176c Merge pull request #462 from ScaleSec/deprecatedgcsbucket 3368850 Merge pull request #463 from accurics/amirbenv-patch-1 5c565e6 Merge pull request #464 from accurics/pyup-update-mkdocs-material-6.2.3-to-6.2.4 2272168 Merge pull request #465 from accurics/k8s-generateName e5f74e4 Merge pull request #466 from patilpankaj212/skip-comment-and-scan-summary-additions 49bf32d Merge pull request #470 from dev-gaur/tf14besides12 792166e Merge pull request #473 from harkirat22/harkirat22/362 7c974f6 Merge pull request #474 from harkirat22/harkirat22/359 12f226a Merge pull request #475 from harkirat22/harkirat22/352 c313c32 Merge pull request #476 from harkirat22/harkirat22/432 12b58f2 Merge pull request #479 from patilpankaj212/bugFix 29bbd42 Merge pull request #480 from williepaul/policy-update-2021-01-14 9b65423 Merge pull request #481 from accurics/dependabot/gomodules/github.com/pelletier/go-toml-1.8.1 0cbd6d0 Merge pull request #482 from accurics/dependabot/gomodules/github.com/hashicorp/go-version-1.2.1 9002ce6 Merge pull request #484 from accurics/dependabot/gomodules/github.com/iancoleman/strcase-0.1.3 c713b5c Merge pull request #485 from accurics/dependabot/gomodules/github.com/spf13/afero-1.5.1 5b63ac8 Merge pull request #486 from accurics/dependabot/gomodules/go.uber.org/zap-1.16.0 ddb6f64 Merge pull request #487 from accurics/v1.3-docs 4ef6ce1 Merge pull request #488 from accurics/pyup-update-mkdocs-material-6.2.4-to-6.2.5 a3cee2d Merge pull request #489 from harkirat22/harkirat22/331 4a05a56 Merge pull request #490 from harkirat22/harkirat22/382 643a76a Merge pull request #492 from accurics/dependabot/gomodules/github.com/mattn/go-isatty-0.0.12 b445fd0 Merge pull request #494 from accurics/dependabot/gomodules/sigs.k8s.io/kustomize/api-0.7.2 6251a4a Merge pull request #497 from dev-gaur/fixpotentialbug470 d301c3a Merge pull request #499 from dev-gaur/tfv13flag f75dd1a Merge pull request #502 from kanchwala-yusuf/release-1.3.0 f4c70ae Merge remote-tracking branch 'origin/master' into lucas-giaco/master 8b644b5 Return varRef instead of val e336ad6 Update CHANGELOG.md 01e26c4 Update CHANGELOG.md 34979da Update CHANGELOG.md 9ae9128 Update README.md bad6027 Update README.md 5f48ba9 Update README.md bcb5790 Update README.md bc4a4f3 Update README.md ae1763f Update README.md 916ecf8 Update go.mod f506ca4 Update go.sum 7bf5afa Update mkdocs-material from 6.1.4 to 6.1.5 766bae8 Update mkdocs-material from 6.1.5 to 6.1.6 8d82c92 Update mkdocs-material from 6.1.5 to 6.1.6 dd2d7fd Update mkdocs-material from 6.1.6 to 6.1.7 b6ce97a Update mkdocs-material from 6.1.7 to 6.2.3 9c71078 Update mkdocs-material from 6.2.3 to 6.2.4 cea7d75 Update mkdocs-material from 6.2.4 to 6.2.5 1fd99c3 Update mkdocs-material from 6.2.4 to 6.2.5 9ff312a Update policy example in the documentation be9c502 Using constants bae80a8 Using constants cecc7bf add ScanSummary to ViolationStore ff73e3a add annotations in test file 60ce034 add annotations in test file 62236df add cases for human readable fe0c724 add check for privileged containers (rule 106) 3bafe49 add comment for SkipRules in ResourceConfig struct df42ce9 add link to CLI options 31ee512 add support for extracting rules to skip from terraform resource config comments b6db0ae add test in run_test for scan and skip rules using config file c727767 add warning message for terraform v12 users a359304 added unit tests for breaking changes case a05d83d adding an else condition to relate management lock with resource group 39067c7 adding an else condition to relate the flow log with vpc ab0ebc6 adding rule to check if waf is enabled at cloud front distribution e0e6bd7 adding specific steps to argocd integration 51888c4 adding unit tests for extracting rule ids to skip from terraform resource config comments 380e60a adding unit tests for testing no rule ids present a194b49 adds gitlab and github ci integration docs a1e3947 adds link to k8s policy docs 12f6439 adds logo 4bd932b annotations based skipping 919aece annotations based skipping 443129b bump go to 1.15 6e7b687 changed the description to include the vulnerable versions 1f0e811 deps: add dependabot support 5a6d70e display error to user if config only used with human 66bdd4f docs updates for policies b1c8f99 exit with status 1 in case of an scan error 78b6822 fix code smells 451e72c fix code smells c02bd36 fix incorrect loop exit c79dce5 fix output format 305a8e2 fix sonar duplication issue fe2dca0 fix tests breaks due to resource config change 276ed9e fix too many arguments for Run func d583cd3 fix writer tests 91fa2ed fixes dead link to old getting started page f87e2b7 fixes docs 0953440 fixes gcp cos node image policy a95164e fixes links 3fff7b9 fixes typo a4857a3 fixing existing terraform unit tests 72653b4 fixing existing writer unit tests e3016dc fixing typos 932a1a6 hopefully remove test failures due to non-deterministic comparisons b2a7d06 hopefully remove test failures due to non-deterministic comparisons 8080e17 human readable output for terrascan bbc6e5a including a check for verifying in line policy is mentioned or not, thus solves the false positive issue #359 0ea7356 incorporate review comments 49562fe incorporated the review comments 26120dc initial changes for rule id based scan and skip e90045c introduce constructor func for ScanOptions 3942de8 local make cicd results be19375 makes case agnostic e5cec3e merge with origin 580847e modify tests for k8s iac-provider 08f94ec move function to extract rules IDs to utils package 9103637 other scan summary details e8d1068 policy for CVE-2020-8555 293a98e policy update 2021-01-14 37 rule(s) added 0 rule(s) deleted 6530dc8 rebase and fix failing test 8b2528e recognize metadata.generateName bc056a5 refactor scan command eefda2c rego update d2cb1a8 remove lines added for testing eeab9fe remove rules that have been replaced by the newer format 71645d2 rename ScanCommand to ScanOptions 209fb65 run refactor and tests 9f68c60 service check wasn't required e6af151 set console mode on windows so colors render dcd02a1 snake case for human readable 91790db solves issue #331 f3cf216 solves issue #331 8fbe227 solves issue #382, and improved policy to relate disk with the instance fdf8dae solves issue #382, and improved policy to relate disk with the instance 66bb640 terrascan argo-cd instructions d7a2543 test for resource skipping 846a792 test for resource skipping cb11130 tests for writers cf4e248 tweak argo cd instructions 73a1169 update regex and unit tests 88481ce update version to v1.3.0 96dfc94 update version to v1.3.0 117c40c update writer tests 349d5c9 updates changelog 0ddc688 updates changelog 1b56749 updates changelog for next release 321cf34 updates policy docs 303d716 updates policy docs 522abb9 updates relevant to v1.3.0 and latest features 2101022 updates version flag on help a56806c using hash placeholder instead of latest. 9eaf1a2 writer test

- Go
Published by github-actions[bot] about 5 years ago

terrascan - v1.2.0

Changelog

a56270e Add check for visibility for githubrepository 53657d0 Add instructions for booting terrascan demo 85a0666 Add line about kubernetes YAML/JSON support c228665 Add new policy for checking insecuressl on githuborganizationwebhook 780408e Add policy set for GitHub provider 8b5f811 Add step-by-step instructions for interacting with the demo env 5b612ed Bring Go to 1.15 in Github Actions 414035d Bring Go to 1.15 in Github Actions d6eb16e Fix typo 9792a28 Fixed messed up merge cd2c0c5 Fixes header e783b6b Fixes typo 35c1c54 Merge branch 'colorize' of github.com:acc-jon/terrascan into colorize f799685 Merge branch 'master' into issue-325 2fe16cc Merge branch 'master' into issue-325 e1df4c1 Merge branch 'master' of https://github.com/accurics/terrascan 1f89abd Merge pull request #1 from accurics/master afc78b5 Merge pull request #319 from kklin/demo-badge 570cc9b Merge pull request #333 from HorizonNet/issue-326 424c823 Merge pull request #334 from HorizonNet/issue-325 c061f02 Merge pull request #335 from accurics/readme-update-k8s 0b22a65 Merge pull request #336 from accurics/auto-pickup-supportedtypes f380b89 Merge pull request #337 from accurics/docs/github-policies dcd76dd Merge pull request #340 from accurics/pyup-update-mkdocs-material-5.5.12-to-5.5.14 9aad2cf Merge pull request #343 from kmonticolo/fixtypo 25a7c45 Merge pull request #344 from accurics/bugfix/fix-providers-unit-test f1c80fe Merge pull request #345 from accurics/feature/downloader-support 45a6ee9 Merge pull request #346 from accurics/pyup-update-mkdocs-material-5.5.14-to-6.0.1 556d333 Merge pull request #347 from acc-jon/colorize 49f66ed Merge pull request #348 from accurics/pyup-update-mkdocs-material-6.0.1-to-6.0.2 347bee3 Merge pull request #350 from HorizonNet/issue-339 2c964d5 Merge pull request #351 from accurics/feature/support-resolve-variable-references a8084f6 Merge pull request #354 from acc-jon/master 4a5d34d Merge pull request #356 from accurics/pyup-update-mkdocs-material-6.0.2-to-6.1.0 222bd31 Merge pull request #357 from accurics/feature/aws-serverless-regos fd2bf7c Merge pull request #360 from accurics/bugfix/add-git-binary 935e3b0 Merge pull request #361 from accurics/bugfix/fix-http-request d7bc4aa Merge pull request #366 from accurics/bugfix/large-file 7a8e07f Merge pull request #368 from acc-jon/master fb7b01c Merge pull request #370 from accurics/pyup-update-mkdocs-material-6.1.0-to-6.1.2 411a4aa Merge pull request #371 from accurics/pyup-update-mkdocs-material-6.1.2-to-6.1.3 e3bb0bd Merge pull request #372 from acc-jon/master d375f0e Merge pull request #373 from acc-jon/issue365 ba331e0 Merge pull request #374 from accurics/pyup-update-mkdocs-material-6.1.3-to-6.1.4 73d29aa Merge pull request #377 from williepaul/add-helm-support 5c96b2f Merge pull request #378 from dev-gaur/addkustomizesupport 19f5527 Merge pull request #381 from williepaul/fix-helm-subchart-rendering 6512163 Merge pull request #383 from gliptak/patch-1 6b484b1 Merge pull request #384 from gliptak/patch-2 62a3549 Merge pull request #385 from williepaul/disable-cgo-in-dockerfile ee0bd01 Merge pull request #388 from therasec/docs/1.2.0 25d5b56 Merge pull request #389 from kklin/rm-demo 2d1374b Merge pull request #390 from kanchwala-yusuf/update-version/1.2.0 64a974a Remove demo badge f536982 Remove demo badge f4d9bd5 Renamed GitHub repository policy ID 51c3eb8 Update demo docs to use new Blimp demo version 84bb503 Update mkdocs-material from 5.5.12 to 5.5.14 e3f1b02 Update mkdocs-material from 5.5.14 to 6.0.1 0c7aa1e Update mkdocs-material from 6.0.1 to 6.0.2 2e6f213 Update mkdocs-material from 6.0.2 to 6.1.0 700b668 Update mkdocs-material from 6.1.0 to 6.1.2 ad98ac2 Update mkdocs-material from 6.1.2 to 6.1.3 164964a Update mkdocs-material from 6.1.3 to 6.1.4 c2a3b43 add JSON termcolor tests bf715f3 add JSON termcolor tests 0481625 add ability to download remote repository in CLI fc46888 add comments, debug log messages and code clean up c4457da add config only option to remote repo scanning API in http server 11be46b add cty map to golang map converter c3c2fc6 add downloader support c57aa66 add function to return list of supported Iac Types a15af41 add function to return list of supported policy types fe1044b add git binary to terrascan docker image, required by downloader 637d286 add method to clean up cached/installed repositories d834e2e add method to download remote repo with type specified d88a767 add method to generate random string 8492103 add policy path for tests d8b9d7c add remote scanning support in http server 8b274be add support for colored output 24272d0 add support for colored output 5fd0685 add support for downloading remote modules in terraform v12 Iac scanning c79f2a8 add support for resolving variable references for file scan 659e15b add support for resolving variable references in a module 538704c add support for resolving variables initialized/overriden in module calls 160743f add support to download remote repo in CLI 392c486 add support to get list of iac types with default versions 10bd8c9 add support to resolve cross module references 1bfce05 add support to resolve lookup references 0b0103e add support to resolve references in a slice 3d19a3f add supported to resolve multiple references in the same expression e057bfe add unit test for GenRandomString() method e72bf36 add unit test for downloader methods 530d679 add unit test for remote module installer clean up 58d4745 add unit tests for GetURLSubDir 25d8b94 add unit tests for module-download file 7c9fa06 add unit tests for policy package ece2ab1 added kustomize support 442e39a added vendor/ in .gitignore b92d331 address #365 by properly handling submodule path 6d5d3be adds analytics bde73b6 adds clarification on default behavior c0b5705 adds documentation for '-t all' flag b2ea41d adds helm docs e1a0422 adds initial helm support - supports loading of helm v3 charts via the iac dir command (iac file is invalid) - adds default iac versions for all iac types - adds unit tests - adds ability to properly specify default iac version for a given iac type 57ac4a2 adds kustomize to docs 733831c adds new policies e910754 adds policy docs 7ed87c5 adds policy to check kms on lambdas e07d60d adds rego checking lambda is config to launch on a vpc 5530d27 adds rego for insecure cors config 14fb90e adds rule for cloudwatch logs encryption 8dc98c2 adds section for github policies ae5d650 allow config file for global policy config 82ea9ac allow multiple cloud types, default to all 4b8d917 automatically pick supported Iac versions for help display 1a2f072 change file name 7e73f26 changes 34870a6 changing repo for testing a332115 changing repo url from ssh to http 1a35277 clean up flag handling 2a0e3ac clean up flag handling 250d464 commenting a log message for now 220795f fix a bug when rendering subcharts - in some cases, subcharts could not be rendered properly - change how we render values such that default capabilities are set, preventing rendering errors - set lintmode to true to allow ignoring of certain rendering errors from within the rendering engine - add resource count checking to load-dir unit tests - update error messages to make sure we are including the error data d5bde39 fix gofmt errors eb26ba5 fix imports ec68170 fix indentation 9c460f4 fix indentation f1f5231 fix lint, style issues 24c4948 fix logging init. clean up tests. use globlal toml config file for policy config 8d4bad1 fix send request method, previously hardcoded 772901b fix sonarcloud issues - avoids some repeated strings by using logger.With() - move rendering code into a separate function - remove a duplicate test - add more comments 83473ea fix sonarcloud issues - try #2 with cognitive complexity by moving for loop outside of the render func - update error level of some log messages 577d5ca fix style bbc2f90 fix style issue 94cd15a fix style, tests for policy type "all" 695801c fix supported providers unit test, sort the wanted result b038fab fix test args 43c4970 fix typo 6889c14 fix typo 613d2e5 fix unit tests daecab4 fix unit tests - make sure empty directories are created by adding a placeholder file 545692f fixes dockerfile build issues - disables CGO to prevent any dependencies from failing the build - the GOARCH variable was named incorrectly and not being picked up during the docker build - locked both the alpine and golang versions for the docker build ed26230 fixes policy name 48b6ea8 fixes review comments - adds .yml to the valid list of chart yamls - default to 1 instead of 0 for source line in the helmchart resource - TODO: add values.yml support for rancher a8fce5a fixes severity 95401c4 fixes severity d23b460 fixes typo b0f28f1 fixes typo and removes severity from reference id 62ce1c1 fixing error messages for unit tests fdc888a fixing exisiting unit tests 368fd23 fixing unit tests dcd6cb7 import 'sort' package f5fed60 improve isRef method, reorder switch cases for str ref resolution b5778ea improve regex pattern, getLocalName method and string replace method for local references 308c69b improve regex pattern, getLocalName method and string replace method for lookup references d27c892 improve regex pattern, getLocalName method and string replace method for module references 876587a improve regex pattern, getLocalName method and string replace method for variable references 4bf99eb improve variable regex pattern, improve gwtVarName method 25f258c last minute fixes 5960227 load global config from toml config file 5789f8f making staticcheck happy 8ac4d82 missing access logs 09d81f8 optimized yaml utility function 0e3d31a organizing reference resolution into multiple files 4f99d24 pick automatically pick up list of supported types in cli help 557294c properly handle nested submodules (#365) 765a2ef refactor and add unit test for remote scan repo API handler 794df55 refactor downloader package, add downloader interface d1806c3 refactor module download 5183da8 refactor styling to support styles file 2eed6bc refactor styling to support styles file 2f6b772 refactoring downloader package 9385d11 remove Chart.yml from valid helm chart names - Chart.yml is used by rancher, but we would likely support rancher in a separate iac type, so removing from helm 54b4891 remove redundant methods from cli/run.go ff4b428 removes comment c89ee87 removes large file 54ab58d removes severity from reference ids 03ac868 removing code smells bac379d reverting back the unit test cases changes 04be644 reverts to using latest aea0e0b rewording 20f32e0 rewording 3508fe5 sort supportedPolicyTypes output fff04ae trying to resolve sonar cloud code duplication issue 8a523ad update debug log messages 53db1a0 update go mod files 388a93b update module files 77be67d update module files b10a8e1 update version to v1.2.0 cfc49ca updates changelog 37d0f15 updates description a5cc45f updates error message severity and suppresses a normalization error - errors were output when helm template rendering created a blank file, which is still valid yaml - the "invalid kind" message is suppressed in this case, since rendering an empty template may be intentional - error log levels and also error messages were updated per review comments af0af4d updates latest k8s policies acf5e18 updates version and kustomize support 1f643b1 updating regex and logs 45d2b18 updating scannign section with additional examples

- Go
Published by github-actions[bot] over 5 years ago

terrascan - v1.1.0

Changelog

e498942 Adds exit code when issues are found c7b4797 Fix headers 0a73752 Manage relative module path 5a30d06 Merge branch 'master' into kubernetes-support 4f0bd92 Merge branch 'master' into kubernetes-support c44a663 Merge pull request #291 from accurics/bugfix/xml-output b4caa81 Merge pull request #292 from accurics/pyup-update-mkdocs-material-5.5.6-to-5.5.7 1ae533b Merge pull request #295 from erichs/doc-fixes - Fixes typos in documentation 3f21021 Merge pull request #296 from accurics/bugfix/docker 37760a9 Merge pull request #297 from accurics/update-policies-082020 ca75f86 Merge pull request #298 from accurics/Upa-acc-patch-1 d170c17 Merge pull request #299 from accurics/feature/exitstatus 053660a Merge pull request #300 from accurics/pyup-update-mkdocs-material-5.5.7-to-5.5.8 17ffd93 Merge pull request #301 from accurics/bugfix/capitalization 118129a Merge pull request #306 from zmarouf/patch-1 b698de5 Merge pull request #307 from accurics/pyup-update-mkdocs-material-5.5.8-to-5.5.12 f98373b Merge pull request #308 from guilhem/relativemodule 618475a Merge pull request #309 from accurics/add-config-only-output d182f1c Merge pull request #313 from accurics/kubernetes-support 97b7612 Merge pull request #314 from accurics/jon-badges 2953c19 Merge pull request #315 from chenrui333/add-homebrew-installation 6eb0a6b Merge pull request #316 from accurics/bugfix/template-rendering-issue f6c1acb Merge pull request #317 from accurics/bugfix/output-logs-to-stderr 3402ba9 Merge pull request #318 from accurics/change-docker-default 67e42be Merge pull request #321 from accurics/bugfix/fix-checkIpForward-rule cbe6c35 Merge pull request #322 from accurics/revert-321-bugfix/fix-checkIpForward-rule 1a90445 Merge pull request #323 from accurics/fix-check-ip-forward 4c30787 Merge pull request #327 from accurics/docs/k8s ab92377 Merge pull request #328 from accurics/update-k8s-initial-policies 63b757e Rename KubeDashboardDisabled.rego to kubeDashboardDisabled.rego f107f76 Revert "fixed a bug in checkIpForward" 7d1f18a Typo fixes 434dba7 Typo fixes 246797c Update README.md 6beb097 Update about.md 298b6e6 Update about.md eb9cc0c Update mkdocs-diagrams from 0.0.2 to 1.0.0 b11d8ae Update mkdocs-diagrams to 1.0.0 c1a13ea Update mkdocs-material from 5.5.6 to 5.5.7 04fe83b Update mkdocs-material from 5.5.7 to 5.5.8 63727a1 Update mkdocs-material from 5.5.7 to 5.5.8 602a557 Update mkdocs-material from 5.5.8 to 5.5.12 ffe2a49 Update readme 605edca Updating changelog with v1.1.0 enhancements and bugfixes 65636ce Updating changelog with v1.1.0 enhancements and bugfixes ae346e8 add changes missing from the last commit - error message updates - added config-only unit test - removed unnecessary checks in the api server 89ad5b1 add support to print resource config as an output 52babb8 adds docs for k8s policies 6ee0af2 adds exit code explanation to docs 9ccf599 adds go get instructions 791123d bumps version references to 1.1.0 1edf439 changing header name from CLI Output formats to CLI Output types de8e375 chore(docs): add homebrew installation 9cb321b chore(docs): fix indent of tar extraction d5418b5 clean up go.mod/go.sum 75253ce documents policy changes 5b3ae20 fix template rendering bug - templates were only being rendered once per file, rather than once per rule - thus, the first render for each file would win, and violations could trigger (or be missed) if using a shared template f8267da fix typo 5b3a2b2 fix typo in readme, clean formatting 2719aac fix xml output e573629 fixed a bug in checkIpForward "not api.config.canipforward == true" should be "api.config.canipforward == true" by default, canipforward is false, so no need to check for existence of the key before checking if canipforward is true 688b7d1 fixed checkIpForward rule (gcp) ecd531b fixed location of the readOnlyRootFilesystem param 2372876 fixed merge issue - silenced a noisy log and downgraded the severity of another a94f375 fixed review comments - error message updates - added config-only unit test - removed unnecessary checks in the api server - changed resource representation to match terraforms resource naming 3dcd3c7 fixes a core dump when templateargs are not set in the rule 8bd290e fixes format errors on docs 85e88e4 fixes formatting error 7d8ad0a fixes github ref for pushing latest docker image af127cb fixes github ref for pushing latest docker image c468b39 fixes if statement 7742b15 fixes if statement 915ec5b fixes if statement 0ac6c04 fixes if statement 2fbe793 fixes issue template as we no longer use python 42853a7 initial kubernetes support (continued) - add Jon’s change for a relative directory resolve bug - go.mod tidy - don’t call os.exit() from run() when running unit tests - simplify k8s normalization—no manual json parsing - fix default AWS IaC type (was set to was instead of terraform) - fixed JSON loading bug - increased unit test coverage 04ceabe initial kubernetes support - adds support for kubernetes violation detection in yaml using repo - adds default iac versions/types per policy/cloud provider - policies and more unit tests to follow in the next checkin 3f3e7b5 initial policy set for k8s e97fa89 move server command out of ENTRYPOINT and into CMD - sets the base command as default - per @acc-jon 142dccc removes dup comment 4198bdc send logs to stderr instead of stdout f2a9f32 update documentation with description of different output formats supported in terrascan 44544f0 update readme ee580c0 updated download instructions post install b4565c9 updated k8s policy set and documentation 9ff59b2 updated policies to the latest set d978c3a updates with new help output which includes k8s relates instructions

- Go
Published by github-actions[bot] over 5 years ago

terrascan - v1.0.0

Changelog

6e25de8 Add separate violation/results and reporter objects 1516139 Add separate violation/results and reporter objects 45c7fcc Add the gcp provider support into terrascan cd8d2ec Change OPA engine filename 45a7119 Change OPA engine filename cdbd444 Changes: - Add zap logger support - Logging changes in all files - Create normalized json in iac-provider 72c09c4 First commit to rewrite terrascan in go language 3aa34fa First cut of the policy engine - OPA can evaluate and read rego files in a given directory - Template regos are supported - Still some bugs to fix around mapping 8fd495d First cut of the policy engine - OPA can evaluate and read rego files in a given directory - Template regos are supported - Still some bugs to fix around mapping c6a5674 Fix FileInfo-related linter errors 38590bc Fix FileInfo-related linter errors 647282d Fix misc linter errors f030748 Fix misc linter errors ed55d99 Fixed static checker issues 9386cf1 Fixed static checker issues 5896ffc Merge branch 'master' into terrascan-v1.0 98d2a60 Merge pull request #258 from accurics/terrascan-v1.0-test-codecov-pr-comments 4722179 Merge pull request #259 from accurics/pyup-update-pytest-5.4.3-to-6.0.0 779b9ad Merge pull request #260 from accurics/pyup-update-pytest-6.0.0-to-6.0.1 a4476b1 Merge pull request #261 from accurics/terrascan-v1.0-http-unit-tests e8a70f6 Merge pull request #262 from accurics/terrascan-v1.0-add-webhook-notifications 7f3cdb8 Merge pull request #263 from accurics/terrascan-v1.0-docs fd4ca9d Merge pull request #264 from accurics/pyup-update-sphinx-3.1.2-to-3.2.0 7b940a9 Merge pull request #265 from accurics/terrascan-v1.0-docs 624c5b5 Merge pull request #266 from accurics/terrascan-v1.0-goreleaser 9331bf2 Merge pull request #267 from accurics/terrascan-v1.0-policy-support ced7f79 Merge pull request #268 from accurics/terrascan-v1.0-policy-support-refactor dda4687 Merge pull request #270 from accurics/bugfix/policy-exporter-update-rule-json 6df3b8a Merge pull request #271 from accurics/terrascan-v1.0-policy-support-fixes b6496eb Merge pull request #272 from accurics/terrascan-v1.0-policy-support 7b214c1 Merge pull request #273 from accurics/terrascan-v1.0-docs 77cb40b Merge pull request #274 from accurics/terrascan-v1.0-update-azure-policies b6b7eb2 Merge pull request #275 from accurics/terrascan-v1.0-init-support 9e1eb31 Merge pull request #276 from accurics/pyup-update-sphinx-3.2.0-to-3.2.1 0eaa228 Merge pull request #277 from accurics/terrascan-v1.0-usage-fixes f1b3608 Merge pull request #278 from accurics/terrascan-v1.0-update-policies 165d1cb Merge pull request #279 from accurics/terrascan-v1.0 592a7ca Merge pull request #280 from accurics/pyup-update-mkdocs-material-5.5.3-to-5.5.6 27d2ff8 Merge pull request #281 from accurics/bugfix/docker-tag-latest 3d49d6c Merge pull request #282 from accurics/bugfix/docker-tag-latest 5e4b57b Merge pull request #283 from accurics/bugfix/terrascan-init-branch 747b35f Merge pull request #284 from accurics/terrascan-v1.0-cobra c630fad Merge pull request #285 from accurics/terrascan-v1.0-param-update 64c03e9 Merge pull request #287 from accurics/bugix/fix-version 4a318e3 Merge pull request #288 from accurics/terrascan-v1.0-docs aa98f2e Merged in latest changes f06638f Rename OPA engine #2 6bb3463 Rename OPA engine #2 79cb369 Update Terrascan to use the latest policy format - Adds initial AWS and Azure policy set - Adds command line switch for policy path ad25711 Update Terrascan to use the latest policy format - Adds initial AWS and Azure policy set - Adds command line switch for policy path f2fc35d Update log message to indicate path of the built terrascan binary bf244fb Update mkdocs-material from 5.5.3 to 5.5.6 10f1d16 Update pytest from 5.4.3 to 6.0.0 6222f4b Update pytest from 6.0.0 to 6.0.1 6a501c2 Update sphinx from 3.1.2 to 3.2.0 1b466c3 Update sphinx from 3.2.0 to 3.2.1 aab1a20 Updates with 0.2.3 info 7992292 accepting log-type for server mode as well af49fe7 add Github actions badge for CI passing b00157b add Makefile b757c71 add cobra command support 2d59f2c add codecov integration to generate code coverage reports efaf11b add codecov yaml 8a2e136 add command registration for future commands update long command descriptions split command-specific code out of the root command 2600219 add debug logs to terrascan init code path 96cb4de add docker build and push to github actions 02c0ef0 add docker-compose file for terrascan 36742e5 add first drop of gcp policies 9fbd957 add fixes to normalized json format 9704e2f add go build pipeline and remove python piplines 6fa60dd add go mod verification to Makefile 61c3224 add gofmt, govet and golint validation scripts 3765fea add goreleaser support ad2e4c1 add help, staticcheck and test commands to Makefile d4a96c9 add iac-providers with interfaces 3faeda9 add missed store.go file 887911b add more unit test for terraform v12 package 1fac82b add more unit tests for pkg/utils package ae98831 add more unit tests for scan file c068097 add notifier unit tests to runtime package 201648c add output format option to cli args c5ecf5b add output format option to cli args cadae23 add scan file endpoint to the API server e7730ba add script for running static code analysis b724edc add script to build docker image, update Makefile to build docker image 4d2f837 add script to push docker image, update Makefile to push docker image 930ac6d add script to run unit tests and generate code coverage report 759bf66 add source line info to normalized resource config 1df64e4 add source line info to normalized resource config b2a8a46 add staticcheck to build pipeline 0ddf0a0 add support for sending webhook notifications 3f64c3f add support for terrascan server mode 96480b8 add support for webhook notifier 4f0fb96 add support for writer c901135 add support for writer 1851c58 add support parsing terraform config files from a module based directory structure 0638d9c add terraform init support 599a9aa add terrascan Dockerfile 5678b32 add terrascan cli support df9e63f add terrascan runtime package 95201e4 add testdir to testdata in runtime package 41e04cf add unit test execution step in build pipeline de76066 add unit test for logger package 9007143 add unit test for notifications package 93018e3 add unit tests for FindAllDirectories func 0c3d58f add unit tests for FindAllDirectories func a705368 add unit tests for cloud-provider package b71f018 add unit tests for iac-provider package 730ec19 add unit tests for iac-provider package 3500161 add unit tests for pkg/utils package and refactor accordingly fb4e51a add unit tests for runtime package and refactor accordingly ee73d71 add unit tests for utils.WrapError func 92e5cd2 add version information 1ff02e8 add xml writer support 62d625b add xml writer support 23f4bfe added line number and file name output support policy changes—removed policies with errors (will need to fix). these errors include things like missing reference IDs and invalid severity strings record time duration of the scan fixed Engine.GetResults and updated the interface reduced the scope of the members of the Engine type misc code cleanup 3133289 added line number and file name output support policy changes—removed policies with errors (will need to fix). these errors include things like missing reference IDs and invalid severity strings record time duration of the scan fixed Engine.GetResults and updated the interface reduced the scope of the members of the Engine type misc code cleanup 5009e22 adding .DS_Store files 60d243d adding more unit tests for terraform v12 1218201 adding stubs for the different sections 051fb7e adds ability to sort tables 290c451 adds about page contents 9fdf9c0 adds analytics bbacbab adds arch description 1f7810b adds architecture high level description 4fa4d9e adds badges and help menu 853c037 adds changelog 3db6f53 adds cli client fd59e45 adds consistency to changelog 4961867 adds contributing guide 57fe3bb adds contributing guide to nav 09d0f6d adds diagram 8d42259 adds docs badge 31d38ee adds docs for policies ed73118 adds docs requirements 4d0942d adds explanation of docs sections 1c5bdc0 adds favicons 03004a7 adds footer 9814799 adds getting started guide a3c8304 adds license 2c80eda adds markdown include acc72ca adds missing descriptions c6d158e adds nav 8563d3a adds new favicon ee42410 adds new usage info 7001128 adds objects 9d355ac adds permalink setting bbbf2a5 adds policy rule description 9950bcd adds policy rule file description 370b4e1 adds pre-commit info 6c750ab adds title 34fa426 change json, yaml tags from camel case to underscore notation 52bfc38 change json, yaml tags from camel case to underscore notation c81629d changes to github action, make file and scripts to push docker image with latest tag 0e81499 changing input/ouput type from interface{} to data specific types 483920a changing input/ouput type from interface{} to data specific types 3d8571f changing shell in validation scripts ac8b93b changing workflow name to 'build' 13e79e6 create cloud-providers layout with interfaces 600a6e6 disable codecov commit status b50538a fix TestFindAllDirectories unit tests ab2f8d7 fix TestFindAllDirectories unit tests ef820ea fix file name not showing in output also adds resource data in the violation 0ecec77 fix file name not showing in output also adds resource data in the violation cb7c3ee fix file paths for terraform config dir 59203de fix file paths for terraform config dir 38cdd40 fix http-server unit tests d776638 fix http-server unit tests 9cef225 fix iac file path 5ed6e69 fix iac file path 91ce740 fix remove unnecessary data from output 066e21c fix remove unnecessary data from output 71e2854 fix runtime unit tests 24ecda8 fix runtime unit tests c33b805 fix static check errors e822fad fix static check errors dc15081 fix terraform v12 unit tests c6bf4ce fix terraform v12 unit tests 07e5292 fix typo c66dbef fix unit tests for runtime package b98401e fix unit tests for runtime package fe52997 fix version and help usage dbdbe25 fixed issue processing templates - removed input file output - updated violation output format - added more error logs - changed most log entries to debug 3cabf6a fixes bullets a63d950 fixes doc status badge 5d8697b fixes edges 949b9d9 fixes entrypoint ee3b675 fixes link to contributing guide 900a5d6 fixes merge issues - moves some types into a separate file - addresses some linter/staticcheck issues - fixes bad counter 40776f5 fixes typo abe7d97 fixing bullets d56e25e fixing golint errors bb18e34 fixing http-server unit tests 00cf125 fixing if condition expression 3a8a314 fixing lint error 5180043 fixing normalized json format 81cc9dd fixing output json, yaml tags 4bf1ab5 fixing output json, yaml tags 7959c9d fixing runtime unit tests 81b6534 fixing static code bugs 1afe5b9 fixing violations output 3f96d23 fixing violations output 6606496 improving tests for logging package 492db06 improving unit tests for terraform/v12 package 0564e55 improving unit tests for utils package 56991e2 initial docs format d1243c4 initial getting started b255717 initial take at readme cb8e514 make current directory as default for scanning IaC 9571b67 make current directory as default for scanning IaC 24b88a6 make scan as default command 462d8b8 moves docs requirements file a319542 organizes full diagram 0b1d0cf organizes layout 158d2df organizing installation instructions db30a60 print help if no flags are passed a7a3fb8 pull default policies from master 0a087d2 rebasing changes b0ca89f refactor and add unit tests to http-server package 0f84d9e refactor terrascan init code path b22944e refactoring cli package 0d0f113 refactoring http server and logging packages cd1e30c refactoring policy package 9230d5d refactoring policy package d37a627 remove cloud provider stage 1b177f7 remove fix-gofmt from gofmt validation step 1fac32c remove hardcoded version 5545099 remove text writer as it does not exist in this code 593f580 removed 3 gcp rules with warnings for now 96079c8 removes favicon b6284a6 removes old makefile 622bfec removes tabs 1aa2338 removing homebrew for now b1bbbe5 removing learning for now 68d6dca removing learning from nav as it's still WIP 4463be9 removing providers for now e899e91 removing staticcheck from pipeline for now ad162a3 renames to contributing 8e15ba2 simplify iac provider registration a0c19c5 update Copyrights info in all files 5f0ce1a update Makefile comments 930daf5 update azure policies with the latest format f5c9cbf update code coverage script c515621 update docker push to push docker images with latest tag 926b553 update go dependency files feb58c8 update go mod files 7cddec1 update metadata json format for consistency 4a9db01 update parameters and usage description changed output-type to output added "p" as the shortcut for policy-path 43c3ccd update usage message 881284d updated all policies to latest format also removed policies with errors/warnings f4beb3a updated to the latest aws and azure policy set 268760a updated to use built in snippets e779724 updates description 7e152c9 updates favicon 0264e8d updates font c5ecc37 updates for golang 25371fc updates getting started page 1223bdd updates gitignore to remove python related extensions and add golang 0276b9e updates nav order 7aaabfc updates nav order d4b0e29 updates release notes 01c9bb7 use GO111MODULE=on in the build command 1892bac wrap engine input and output objects to lock the engine interface added low/medium/high/total violation counts removed reporting placeholder code (reporting to be done by caller of executor) 204501a wrap engine input and output objects to lock the engine interface added low/medium/high/total violation counts removed reporting placeholder code (reporting to be done by caller of executor)

- Go
Published by github-actions[bot] over 5 years ago

terrascan - v0.2.3

Introduces the '-f' flag for passing a list of ".tf" files for linting and the '--version' flag.

- Go
Published by cesar-rodriguez over 5 years ago

terrascan - v0.2.2

Adds Docker image and pipeline to push to DockerHub

- Go
Published by cesar-rodriguez over 5 years ago

terrascan - v0.2.1

This release includes a fixes a bug where the pyhcl hard dependency in the requirements.txt file caused issues if a higher version was installed. This was fixed by using the ">=" operator.

- Go
Published by cesar-rodriguez over 5 years ago

terrascan - v0.2.0

Adds support for terraform 0.12+

- Go
Published by cesar-rodriguez about 6 years ago

terrascan - v0.1.2

Adds ability to setup terrascan as a pre-commit hook

- Go
Published by cesar-rodriguez about 6 years ago

terrascan - v0.1.1

  • Updates dependent packages to latest versions
  • Migrates CI to GitHub Actions from travis

- Go
Published by cesar-rodriguez about 6 years ago

terrascan - Initial version

- Go
Published by cesar-rodriguez about 8 years ago