Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: add trivy and cxone checks #237

Merged
merged 13 commits into from
Apr 19, 2024
Merged

Conversation

fjsnogueira
Copy link
Contributor

@fjsnogueira fjsnogueira commented Apr 17, 2024

Proposed Changes

add checks with CxOne (SAST & IaC) and Trivy

Checklist

  • I covered my changes with tests.
  • I Updated the documentation that is affected by my changes:
    • Change in the CLI arguments
    • Change in the configuration file

I submit this contribution under the Apache-2.0 license.

Copy link

kics-logo

KICS version: v1.7.13

Category Results
HIGH HIGH 0
MEDIUM MEDIUM 0
LOW LOW 0
INFO INFO 0
TRACE TRACE 0
TOTAL TOTAL 0
Metric Values
Files scanned placeholder 9
Files parsed placeholder 9
Files failed to scan placeholder 0
Total executed queries placeholder 53
Queries failed to execute placeholder 0
Execution time placeholder 1

@fjsnogueira fjsnogueira changed the title Feat/add trivy and cxone checks feat/add trivy and cxone checks Apr 17, 2024
@fjsnogueira fjsnogueira changed the title feat/add trivy and cxone checks feat: add trivy and cxone checks Apr 17, 2024
Copy link

Logo
Checkmarx One – Scan Summary & Details4c85e257-627c-45d3-8348-5168ab39790a

New Issues

Severity Issue Source File / Package Checkmarx Insight
HIGH CVE-2023-45288 Go-golang.org/x/net-v0.21.0 Vulnerable Package
MEDIUM Denial_Of_Service_Resource_Exhaustion /lib/utils/http.go: 41 Attack Vector
MEDIUM Denial_Of_Service_Resource_Exhaustion /lib/utils/http.go: 41 Attack Vector
MEDIUM Privacy_Violation /lib/reporting/sarif.go: 91 Attack Vector
MEDIUM Privacy_Violation /lib/reporting/sarif.go: 89 Attack Vector
MEDIUM Privacy_Violation /lib/reporting/sarif.go: 88 Attack Vector
MEDIUM Privacy_Violation /lib/reporting/sarif.go: 87 Attack Vector
MEDIUM Privacy_Violation /lib/reporting/sarif.go: 86 Attack Vector

@fjsnogueira fjsnogueira marked this pull request as ready for review April 17, 2024 17:49
@fjsnogueira fjsnogueira enabled auto-merge April 17, 2024 17:49
@fjsnogueira fjsnogueira requested a review from cx-monicac April 17, 2024 17:49
@fjsnogueira fjsnogueira disabled auto-merge April 17, 2024 18:10
@fjsnogueira fjsnogueira requested a review from cx-ruio April 17, 2024 18:11
Copy link
Collaborator

@cx-ruio cx-ruio left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. Just one question: the high vulnerability introduced can't be fixed?

@fjsnogueira fjsnogueira added this pull request to the merge queue Apr 19, 2024
Merged via the queue into master with commit f30907f Apr 19, 2024
23 of 25 checks passed
@fjsnogueira fjsnogueira deleted the feat/add-trivy-and-cxone-checks branch April 19, 2024 17:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants