Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

deps(python): bump checkov from 3.2.74 to 3.2.81 in /dependencies/python #5620

Closed
wants to merge 1 commit into from
Closed

deps(python): bump checkov from 3.2.74 to 3.2.81 in /dependencies/python #5620

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 6, 2024

Bumps checkov from 3.2.74 to 3.2.81.

Release notes

Sourced from checkov's releases.

3.2.79

Feature

  • sast: Add 10 TS CDK - #6194
  • sast: add typescript - DONT MERGE - #6193
  • sast: Filter js files generate by ts - #6220
  • secrets: bump bc-detect-secrets 1.5.9 - #6205
  • terraform: Add GCP policy - #6177
  • terraform: Add resource attributes to jsonify - #6203
  • terraform: Ensure dedicated data endpoints are enabled - #6188
  • terraform: support provider in tf_plan graph - #6195
  • terraform: Update CloudArmorWAFACLCVE202144228.py - #6217

Bug Fix

  • general: add print to random test - #6229
  • general: fix integration test in build - #6227
  • general: fix integration tests - #6207
  • kubernetes: Update checkov-job.yaml - #5985
  • sca: remove old test for the depracated workflow github-action - #6232
  • terraform_plan: Edges not created because of indexing in resource["address"] when resources in modules use count - #6145
  • terraform: CKV_AWS_23 rule description fixed for clarity - #5993
  • terraform: Fix CKV_AWS_358 to handle plan files - #6202

Platform

  • ansible: add create_definitions function for ansible framework - #6225

Documentation

  • general: Fix docs html brackets - #6051
  • general: Remove Python 3.7 - #6200
Changelog

Sourced from checkov's changelog.

CHANGELOG

Unreleased

3.2.79 - 2024-05-02

Feature

  • sast: Add 10 TS CDK - #6194
  • sast: add typescript - DONT MERGE - #6193
  • sast: Filter js files generate by ts - #6220
  • secrets: bump bc-detect-secrets 1.5.9 - #6205
  • terraform: Add GCP policy - #6177
  • terraform: Add resource attributes to jsonify - #6203
  • terraform: Ensure dedicated data endpoints are enabled - #6188
  • terraform: support provider in tf_plan graph - #6195
  • terraform: Update CloudArmorWAFACLCVE202144228.py - #6217

Bug Fix

  • general: add print to random test - #6229
  • general: fix integration test in build - #6227
  • general: fix integration tests - #6207
  • kubernetes: Update checkov-job.yaml - #5985
  • sca: remove old test for the depracated workflow github-action - #6232
  • terraform_plan: Edges not created because of indexing in resource["address"] when resources in modules use count - #6145
  • terraform: CKV_AWS_23 rule description fixed for clarity - #5993
  • terraform: Fix CKV_AWS_358 to handle plan files - #6202

Platform

  • ansible: add create_definitions function for ansible framework - #6225

Documentation

  • general: Fix docs html brackets - #6051
  • general: Remove Python 3.7 - #6200
Commits
  • be6ad9a Merge 532a4ed7be3cb45b5621ccc5ebe1dbd629d68bb6 into 4a1fc23a61e80e943b9be07aa...
  • 02c1b58 feat(sast): run all cdk integration test (#6256)
  • 4b421b4 Merge 395423ed0a07ebe3dc83428b1b341dc433ec42bb into 4a1fc23a61e80e943b9be07aa...
  • 63e6d3b fix(general): fix changed serif path (#6251)
  • 4a1fc23 feat(github): add summary message in github_failed_only output (#6131)
  • 6cc0665 chore(sca): When trying to load policies, continue if it's custom (#6230)
  • 2a79210 chore: update release notes
  • 64151da Merge 53e48842ebb6934a3e58760660328117ad93084d into 2856530cdd54a3f0f24801171...
  • 686fefa feat(secrets): bump bc-detect-secrets 1.5.9 (#6205)
  • 5467b78 chore(general): run bump version after all integrations tests (#6233)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
deps(python): bump checkov from 3.2.74 to 3.2.81 in /dependencies/python
5776511 
Bumps [checkov](https://github.com/bridgecrewio/checkov) from 3.2.74 to 3.2.81.
- [Release notes](https://github.com/bridgecrewio/checkov/releases)
- [Changelog](https://github.com/bridgecrewio/checkov/blob/main/CHANGELOG.md)
- [Commits](bridgecrewio/checkov@3.2.74...3.2.81)

---
updated-dependencies:
- dependency-name: checkov
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels May 6, 2024
@github-actions github-actions bot enabled auto-merge May 6, 2024 13:34
@ferrarimarco ferrarimarco added this to the 6.5.0 milestone May 8, 2024
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github May 13, 2024

Superseded by #5634.

@dependabot dependabot bot closed this May 13, 2024
auto-merge was automatically disabled May 13, 2024 13:26

Pull request was closed

@dependabot dependabot bot deleted the dependabot/pip/dependencies/python/checkov-3.2.81 branch May 13, 2024 13:26
@ferrarimarco ferrarimarco removed this from the 6.5.0 milestone May 13, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@zkoppert zkoppert Awaiting requested review from zkoppert zkoppert is a code owner

@Hanse00 Hanse00 Awaiting requested review from Hanse00 Hanse00 is a code owner

@ferrarimarco ferrarimarco Awaiting requested review from ferrarimarco ferrarimarco is a code owner

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@ferrarimarco