Misconfig of AVD-AWS-0057 with format function not detecting #6272
Closed
rangamani54
started this conversation in
False Detection
Replies: 3 comments 1 reply
-
@nikpivkin can you take a look? |
Beta Was this translation helpful? Give feedback.
0 replies
-
It's detecting in the 0.48.3 version. Later, when we upgrade to 0.49.1 version even without ignore inline comment, it's not able to detect. Is it kind of bug or feature. |
Beta Was this translation helpful? Give feedback.
0 replies
-
Hi @rangamani54 ! The fact that this check worked in previous versions was a bug. Now it is fixed, as wildcard is allowed at object level. |
Beta Was this translation helpful? Give feedback.
1 reply
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
IDs
AVD-AWS-0057
Description
In the latest version of trivy 0.49.1. It's not able to detect no policy wildcard for resources s3 bucket when we use format function format("%s/*", aws_s3_bucket.example.arn) AVD-AWS-0057 to the mentioned actions.
Reproduction Steps
Target
AWS
Scanner
Misconfiguration
Target OS
Ubuntu:22.04
Debug Output
Version
Checklist
-f json
that shows data sources and confirmed that the security advisory in data sources was correctBeta Was this translation helpful? Give feedback.
All reactions