Giters

ShiftLeftSecurity / sast-scan

Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.

Home Page:https://discord.gg/DCNxzaeUpd

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Terraform scans are broken with the latest image

prabhu opened this issue · comments

commented

Couple of issues. First one was related to the packaging version which had to be downgraded to <22.
The second issue is this weird warning in the json file that is failing the parsing.

2023-01-12 00:15:45,839 [MainThread  ] [WARNI]  --no-guide is deprecated and will be removed in a future release. Use --skip-download instead
{
    "check_type": "terraform",
    "results": {
        "failed_checks": [
            {
                "check_id": "CKV_AWS_17",
                "bc_check_id": null,
                "check_name": "Ensure all data stored in RDS is not publicly accessible",
                "check_result": {
                    "result": "FAILED",
                    "evaluated_keys": [
                        "publicly_accessible"
                    ]
                },
                "code_block": [