Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: add trivy and cxone checks #237

Merged
merged 13 commits into from
Apr 19, 2024
Merged

feat: add trivy and cxone checks #237

merged 13 commits into from
Apr 19, 2024

Conversation

fjsnogueira
Copy link
Contributor

@fjsnogueira fjsnogueira commented Apr 17, 2024
edited by cx-ruio
Loading

Proposed Changes

add checks with CxOne (SAST & IaC) and Trivy

Checklist

  • I covered my changes with tests.
  • I Updated the documentation that is affected by my changes:
    • Change in the CLI arguments
    • Change in the configuration file

I submit this contribution under the Apache-2.0 license.

@github-actions GitHub Actions
Copy link

kics-logo

KICS version: v1.7.13

Category Results
HIGH HIGH 0
MEDIUM MEDIUM 0
LOW LOW 0
INFO INFO 0
TRACE TRACE 0
TOTAL TOTAL 0
Metric Values
Files scanned placeholder 9
Files parsed placeholder 9
Files failed to scan placeholder 0
Total executed queries placeholder 53
Queries failed to execute placeholder 0
Execution time placeholder 1

@fjsnogueira fjsnogueira changed the title Feat/add trivy and cxone checks feat/add trivy and cxone checks Apr 17, 2024
@fjsnogueira fjsnogueira changed the title feat/add trivy and cxone checks feat: add trivy and cxone checks Apr 17, 2024
@github-actions GitHub Actions
Copy link

Logo
Checkmarx One – Scan Summary & Details4c85e257-627c-45d3-8348-5168ab39790a

New Issues

Severity Issue Source File / Package Checkmarx Insight
HIGH CVE-2023-45288 Go-golang.org/x/net-v0.21.0 Vulnerable Package
MEDIUM Denial_Of_Service_Resource_Exhaustion /lib/utils/http.go: 41 Attack Vector
MEDIUM Denial_Of_Service_Resource_Exhaustion /lib/utils/http.go: 41 Attack Vector
MEDIUM Privacy_Violation /lib/reporting/sarif.go: 91 Attack Vector
MEDIUM Privacy_Violation /lib/reporting/sarif.go: 89 Attack Vector
MEDIUM Privacy_Violation /lib/reporting/sarif.go: 88 Attack Vector
MEDIUM Privacy_Violation /lib/reporting/sarif.go: 87 Attack Vector
MEDIUM Privacy_Violation /lib/reporting/sarif.go: 86 Attack Vector

@fjsnogueira fjsnogueira marked this pull request as ready for review April 17, 2024 17:49
cx-ruio
cx-ruio approved these changes Apr 18, 2024
View reviewed changes
Copy link
Collaborator

@cx-ruio cx-ruio left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. Just one question: the high vulnerability introduced can't be fixed?

@fjsnogueira fjsnogueira added this pull request to the merge queue Apr 19, 2024
Merged via the queue into master with commit f30907f Apr 19, 2024
23 of 25 checks passed
@fjsnogueira fjsnogueira deleted the feat/add-trivy-and-cxone-checks branch April 19, 2024 17:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@cx-ruio cx-ruio cx-ruio approved these changes

@cx-monicac cx-monicac Awaiting requested review from cx-monicac

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@fjsnogueira @cx-ruio