kics icon indicating copy to clipboard operation
kics copied to clipboard

verified publisher icon Checkmarx

Metadata

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

Results 445 kics issues
Sort by recently updated
recently updated
newest added

update(branch): sync master to release/1.6

**Automated Changes** - :magic_wand: Syncing master to release/1.6 Triggered by SHA: _4e807e72302e75c22b2ba5b7a2e9b1b8892311e5_

kicsbot avatar kicsbot

feat(queries): add new aws iam privilege escalation queries

3 comment

Closes # **Proposed Changes** - Added several new KICS queries for AWS IAM privilege escalation I submit this contribution under the Apache-2.0 license.

gafnit-lightspin avatar gafnit-lightspin

community

build(deps): bump github.com/tidwall/gjson from 1.14.1 to 1.14.2

Bumps [github.com/tidwall/gjson](https://github.com/tidwall/gjson) from 1.14.1 to 1.14.2. Commits 475b403 Allow for Index > 0 on path compontent that are not modifiers. 980f12c Merge pull request #282 from L2ncE/master 72953c7 Fix a...

dependabot[bot] avatar dependabot[bot]

dependencies
go

ci(deps): bump docker/build-push-action from 3.1.0 to 3.1.1

Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 3.1.0 to 3.1.1. Release notes Sourced from docker/build-push-action's releases. v3.1.1 Fix GitHub token not passed with Git context if subdir defined by @​crazy-max (#663) Replace deprecated fs.rmdir...

dependabot[bot] avatar dependabot[bot]

dependencies
github_actions

S3 Bucket Policy Accepts HTTP Requests False Positive

2 comment

I am unable to pass my KICS scan. I fail with this result (note I have removed some sensitive info from this output): ``` .0MO. OMMMx ;NMX; ... ... .......

dalenewman avatar dalenewman

bug
community

ci(deps): bump golang from 1.18.4-alpine to 1.19.0-alpine

Bumps golang from 1.18.4-alpine to 1.19.0-alpine. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golang&package-manager=docker&previous-version=1.18.4-alpine&new-version=1.19.0-alpine)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...

dependabot[bot] avatar dependabot[bot]

docker
dependencies

feat(engine): Kubernetes API support for runtime k8s clusters scan​

**Proposed Changes** - added Kubernetes API support for runtime k8s clusters scan​ I submit this contribution under the Apache-2.0 license.

rafaela-soares avatar rafaela-soares

feature
go
kuberneter

fix(keyExpectedValue): cloudformation-aws queries convert to a recommendation rather than a current status - stage 2

…endation rather than a current status - stage 2 Closes # **Proposed Changes** - - - I submit this contribution under the Apache-2.0 license.

liorj-orca avatar liorj-orca

community

fix(keyExpectedValue): cloudformation-aws queries convert to a recomm…

1 comment

…endation rather than a current status Closes # **Proposed Changes** - - - I submit this contribution under the Apache-2.0 license.

liorj-orca avatar liorj-orca

community

False positive: terraform ec2_instance_has_public_ip

Found a bug? You're welcome to [![GitHub Discussions](https://img.shields.io/badge/chat-discussions-blue.svg?style=flat-square)](https://github.com/Checkmarx/kics/discussions) - **Please make sure to:** - Describe in details what the problem is - Attach a log file with relevant data preferably...

jpriebe avatar jpriebe

bug
community

Metadata

1.9k
Stars
290
Forks
Watchers

Owner

verified publisher icon Checkmarx

Metadata

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

Back