Rename .github/checkov.yaml to .github/workflows/checkov.yaml #1
cmehatAnnotations
11 errors
|
scan
CodeQL Action major versions v1 and v2 have been deprecated. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2025-01-10-code-scanning-codeql-action-v2-is-now-deprecated/
|
|
scan
CKV_AWS_23: "Ensure every security group and rule has a description"
|
|
scan
CKV_AWS_24: "Ensure no security groups allow ingress from 0.0.0.0:0 to port 22"
|
|
scan
CKV_AWS_260: "Ensure no security groups allow ingress from 0.0.0.0:0 to port 80"
|
|
scan
CKV_AWS_189: "Ensure EBS Volume is encrypted by KMS using a customer managed Key (CMK)"
|
|
scan
CKV_AWS_3: "Ensure all data stored in the EBS is securely encrypted"
|
|
scan
CKV_AWS_126: "Ensure that detailed monitoring is enabled for EC2 instances"
|
|
scan
CKV_AWS_46: "Ensure no hard-coded secrets exist in EC2 user data"
|
|
scan
CKV_AWS_8: "Ensure all data stored in the Launch configuration or instance Elastic Blocks Store is securely encrypted"
|
|
scan
CKV_AWS_79: "Ensure Instance Metadata Service Version 1 is not enabled"
|
|
scan
CKV_AWS_135: "Ensure that EC2 is EBS optimized"
|