Martin Petkov
Martin Petkov
The CLI format table has static columns, but the JSON results file has more data that is worth showing in the table, particularly "Remediation". Presumably the goal is for someone...
## Description The check "3.2.3: Ensure packages are automatically scanned for license implications" does not seem to be implemented. At https://github.com/aquasecurity/chain-bench/blob/main/internal/checks/dependencies/validate_packages/rules.rego#L16, it appears to be checking the same thing as...
Context: https://github.com/github/renaming I haven't tried this myself, but these are the supposed [steps](https://www.techrepublic.com/article/github-to-replace-master-with-main-starting-in-october-what-developers-need-to-know/#:~:text=This%20change%20across%20the%20tech,time%20to%20get%20used%20to.) to do this: ```bash # Move the master branch to main. $ git branch -m master main...
**This is primarily to get https://github.com/aquasecurity/defsec/pull/1338. The related changes are under `./docs/checks/google/iam/no-conditions-workload-identity-pool-provider/`** I'm following https://github.com/aquasecurity/tfsec/blob/master/CONTRIBUTING.md but I had to do several extra things. I'm using Go 1.21. Running `go mod...
While the core of Portable Secret uses the W3C Web Cryptography APIs (which is great!), the specific choices of cryptography parameters matter and can drastically affect the security of the...
Just thought this would be useful, in case you don't want to only install the latest release. It could be combined with `userSelect` but I didn't feel like adding the...