Skip to content

v9.4

Latest
Latest
Compare
Choose a tag to compare
@github-actions github-actions released this 01 Jul 16:27
v9.4
4ba3060

Changelog

95aba12 Add AWS CFT as an IaC Provider (tenable#815)
2b8e2cd tenable#394: recognize that empty values for username and password in master_auth block will disable basic auth
c33ebed -support color for default output -change color for 'file'
9d40d8e 1. added setup func to download policies 2. fix code smells
4fbe4ac 1. fix debug messages 2. fix typos in test name
3fd3d95 1. fix debug messages 2. fix typos in test name
a4d7af9 1. fix failing test due to log message assertion (tenable#812)
5abf9af 1. fix panic for list variable with no type definition in terraform config (tenable#654)
c36691f 1. fix panic for list variables 2. test for list variables
33cd0e7 1. fix summary order 2. fix colored writer test
bf202e0 1. format summary 2. print empty quotes when resource name is absent
78fd1d2 1. initial changes for registry module support 2. fix issue of remote module containing local modules
3bc7f14 1. initial changes for registry module support 2. fix issue of remote module containing local modules
390eed3 1. initial changes for registry module support 2. fix issue of remote module containing local modules
bfbd608 1. initial changes for registry module support 2. fix issue of remote module containing local modules
10ee6d5 1. modify existing tests of Run 2. add new tests for Run
e0c2e07 1. remove _ from test func 2. define variable for error string in test func
63d9867 1. support of rule skip comment for tf 2. human readable output modifications
0212180 1. support skip and scan rules in the server mode 2. refactor the existing config reader code 3. update unit tests 4. incorporate PR review comments
f0cbb79 1. support skip resource with comment. 2. skipped resource violations in output.
2ca27b9 1. toml config file based rule skipping 2. tests around rule scanning and skipping
c4b9aa7 1. update fix for exit code 2. remove default command code
6603436 APE-1319: Revamped Getting Started Section
dbaf3a1 AWS Risk Category Changes (tenable#603)
cca6d2f AWS new Categories (tenable#581)
9c4918e AWS policy pack update (tenable#737)
dfc0d08 Add /go/bin to PATH. (tenable#637)
a086a65 Add Docker image release tagging on release
b899922 Add ID Field for AWS Policies' Metadata (tenable#831)
48f92ef Add ID Field for K8s Policies' Metadata (tenable#826)
325985d Add ID Field in Azure Policies (tenable#872)
9e962b9 Add Microsoft Azure ARM as an IaC Provider (tenable#736)
cb2be19 Add module name in violation summary for terraform scans (tenable#774)
07c1e4f Add a kustomize based guide for setting up terrascan server and validating webhook in kubernetes (tenable#739)
a56270e Add check for visibility for github_repository
0a1912f Add e2e tests for k8s admission control validating webhook (tenable#772)
53657d0 Add instructions for booting terrascan demo
85a0666 Add line about kubernetes YAML/JSON support
c228665 Add new policy for checking insecure_ssl on github_organization_webhook
6d79769 Add new policy for checking insecure_ssl on github_repository_webhook
185f8c6 Add policy AC-K8-NS-SE-M-0188 for CVE-2020-8554
780408e Add policy set for GitHub provider
8b5f811 Add step-by-step instructions for interacting with the demo env
6da5e88 Add v13 flag option for terraform iac
3f759b9 Add v13 flag option for terraform iac
1d7e5b9 Add webhook setup capability and remote repo scan capability in the helm charts (tenable#778)
95b02c4 Added "id" field support & policy validation tests (tenable#843)
1f296e6 Added Unit test coverage for Kustomize V3 Iac-provider
940a446 Added source_range 0.0.0.0/0 (any) to avoid rule violations (tenable#776)
b1c5360 Added terraform v14 support
7a4de55 Addind AWS Network Security Policies (tenable#866)
3f02324 Adding Aws new policies cloudTrail (tenable#810)
32a4c15 Adding Id fix for github policies (tenable#874)
2a7627a Adding code of conduct
6e3cc71 Adding missing Id field for GCP policies (tenable#870)
317a536 Adding openssh to Dockerfile for downloading modules via ssh (tenable#625)
964167b Adding release checklist (tenable#734)
1d1addf Adding support to scan IAC from atlantis workflow (tenable#648)
2296d3a Adds support for scanning tfplan json file (tenable#562)
5f4b15a Adds support to scan config resources with applicable policies & Refactors filteration (tenable#803)
5057073 Adds: in-file instrumentation for resource prioritizing (tenable#802)
d356d5c Apply fix for self referential variables to non-parent modules
05e4db3 Automate generation of TLS Certs using Helm (tenable#779)
bc364ad Azure Risk Category Changes (tenable#604)
414035d Bring Go to 1.15 in Github Actions
5b612ed Bring Go to 1.15 in Github Actions
6b7b83f Bugfix/az nw sec policies (tenable#862)
4bbb647 Bugfix/k8s id field (tenable#873)
1752bb7 Bugfix/revert policies (tenable#602)
8fc20b2 Bugfix/use ref id old format (tenable#846)
87cf969 Bump github.com/gorilla/mux from 1.7.4 to 1.8.0
5885f2c Bump github.com/hashicorp/go-getter from 1.5.1 to 1.5.2
181d5b3 Bump github.com/hashicorp/go-retryablehttp from 0.6.6 to 0.6.8
eb7e1dc Bump github.com/hashicorp/go-version from 1.2.0 to 1.2.1
4d74093 Bump github.com/hashicorp/go-version from 1.2.0 to 1.2.1
03ea645 Bump github.com/iancoleman/strcase from 0.1.1 to 0.1.3
a264778 Bump github.com/mattn/go-isatty from 0.0.8 to 0.0.12
2330164 Bump github.com/mattn/go-isatty from 0.0.8 to 0.0.12
9664dcc Bump github.com/pelletier/go-toml from 1.8.0 to 1.8.1
7d0e3a0 Bump github.com/spf13/afero from 1.3.4 to 1.5.1
e838bb5 Bump github.com/spf13/cobra from 1.0.0 to 1.1.1 (tenable#493)
feb1a9e Bump github.com/zclconf/go-cty from 1.2.1 to 1.7.1
7a14d2d Bump go.uber.org/zap from 1.13.0 to 1.16.0
07092e5 Bump sigs.k8s.io/kustomize/api from 0.6.5 to 0.7.1
385da16 Bump sigs.k8s.io/kustomize/api from 0.7.1 to 0.7.2
1801ce9 Bump sigs.k8s.io/kustomize/api from 0.7.1 to 0.7.2
0f03866 Bump up to Go 1.16 (tenable#836)
55c1ae1 Category flag e2e tests (tenable#605)
bcc4cf2 Change api, Add support for s3 bucket resource and better cft loader (tenable#865)
9adfe1d Do not trim resource id from tfplan json (tenable#825)
53eda39 Documentation (tenable#768)
4590a3a Feature/aws new policies sp (tenable#751)
37cef51 Feature/az id field (tenable#808)
a4dc4ef Fire clientCertificateEnabled rule when client certificate is enabled
2d06d74 Fix NSG associations (tenable#727)
72e3ebc Fix accurics.azure.AKS.3 (tenable#712)
9f050b3 Fix authorization header for http request (tenable#877)
8a70f9e Fix infinite loop on variable resolution
21d311b Fix link to rego playground in policies documentation
d6eb16e Fix typo
7e1a1bb Fix typo in architecture documentation
2536a09 Fix: potential bug added in PR tenable#470
2986401 Fix: potential bug added in PR tenable#470
91c018a Fixed incorrect description of a rego policy for RDS encryption
9792a28 Fixed messed up merge
2033718 Fixes broken link in README (tenable#671)
1257ec2 Fixes docs format (tenable#661)
cd2c0c5 Fixes header
b8fda7c Fixes incorrect filepath reporting in sarif output & added e2e tests for sarif output (tenable#863)
e783b6b Fixes typo
66c14cd Fixing policy description
0eae483 Fixing the bug for google_kms_crypto_key policies (tenable#848)
12ce5c6 For human readable output display json output when '--config-only' is used
d242c2e Gh action terrscan_atlantis release (tenable#733)
e8e5281 Handle multiple vpc flow logs (tenable#680)
433415c IMDSv1 check policy
df73bc4 IMDSv1 policy: update category, description
d6872fa IMDSv1 policy: update category, description
01c8d78 Initial addition of terrascan helm chart (tenable#688)
bbe97ce Initial changes for e2e testing framework (tenable#553)
636515e JSON and Rego updated (tenable#787)
d1a198c Log error in LoadIacDir before continuing (tenable#613)
225a914 Makes saving of admission requests configurable via a config file option (tenable#665)
c39c7fa Making Category Changes (tenable#606)
35c1c54 Merge branch 'colorize' of github.com:acc-jon/terrascan into colorize
5fc9818 Merge branch 'imdsv1-fix' of github.com:accurics/terrascan into imdsv1-fix
e153cde Merge branch 'master' into dependabot/go_modules/github.com/hashicorp/go-getter-1.5.2
283d7d9 Merge branch 'master' into dependabot/go_modules/go.uber.org/zap-1.16.0
2fe16cc Merge branch 'master' into issue-325
f799685 Merge branch 'master' into issue-325
2df50b4 Merge branch 'master' into issue-422
23fe143 Merge branch 'master' of github.com:accurics/terrascan into argo-cd-hook
e1df4c1 Merge branch 'master' of https://github.com/accurics/terrascan
13670d7 Merge branch 'remote-module-support' of https://github.com/patilpankaj212/terrascan into remote-module-support
3589f96 Merge branch 'remote-module-support' of https://github.com/patilpankaj212/terrascan into remote-module-support
1f89abd Merge pull request #1 from accurics/master
afc78b5 Merge pull request tenable#319 from kklin/demo-badge
570cc9b Merge pull request tenable#333 from HorizonNet/issue-326
424c823 Merge pull request tenable#334 from HorizonNet/issue-325
c061f02 Merge pull request tenable#335 from accurics/readme-update-k8s
0b22a65 Merge pull request tenable#336 from accurics/auto-pickup-supportedtypes
f380b89 Merge pull request tenable#337 from accurics/docs/github-policies
dcd76dd Merge pull request tenable#340 from accurics/pyup-update-mkdocs-material-5.5.12-to-5.5.14
9aad2cf Merge pull request tenable#343 from kmonticolo/fix_typo
25a7c45 Merge pull request tenable#344 from accurics/bugfix/fix-providers-unit-test
f1c80fe Merge pull request tenable#345 from accurics/feature/downloader-support
45a6ee9 Merge pull request tenable#346 from accurics/pyup-update-mkdocs-material-5.5.14-to-6.0.1
556d333 Merge pull request tenable#347 from acc-jon/colorize
49f66ed Merge pull request tenable#348 from accurics/pyup-update-mkdocs-material-6.0.1-to-6.0.2
347bee3 Merge pull request tenable#350 from HorizonNet/issue-339
2c964d5 Merge pull request tenable#351 from accurics/feature/support-resolve-variable-references
a8084f6 Merge pull request tenable#354 from acc-jon/master
4a5d34d Merge pull request tenable#356 from accurics/pyup-update-mkdocs-material-6.0.2-to-6.1.0
222bd31 Merge pull request tenable#357 from accurics/feature/aws-serverless-regos
fd2bf7c Merge pull request tenable#360 from accurics/bugfix/add-git-binary
935e3b0 Merge pull request tenable#361 from accurics/bugfix/fix-http-request
d7bc4aa Merge pull request tenable#366 from accurics/bugfix/large-file
7a8e07f Merge pull request tenable#368 from acc-jon/master
fb7b01c Merge pull request tenable#370 from accurics/pyup-update-mkdocs-material-6.1.0-to-6.1.2
411a4aa Merge pull request tenable#371 from accurics/pyup-update-mkdocs-material-6.1.2-to-6.1.3
e3bb0bd Merge pull request tenable#372 from acc-jon/master
d375f0e Merge pull request tenable#373 from acc-jon/issue365
ba331e0 Merge pull request tenable#374 from accurics/pyup-update-mkdocs-material-6.1.3-to-6.1.4
73d29aa Merge pull request tenable#377 from williepaul/add-helm-support
5c96b2f Merge pull request tenable#378 from dev-gaur/add_kustomize_support
19f5527 Merge pull request tenable#381 from williepaul/fix-helm-subchart-rendering
6512163 Merge pull request tenable#383 from gliptak/patch-1
6b484b1 Merge pull request tenable#384 from gliptak/patch-2
62a3549 Merge pull request tenable#385 from williepaul/disable-cgo-in-dockerfile
9058454 Merge pull request tenable#386 from HorizonNet/issue-355
4d42c95 Merge pull request tenable#387 from accurics/pyup-update-mkdocs-material-6.1.4-to-6.1.5
ee0bd01 Merge pull request tenable#388 from therasec/docs/1.2.0
25d5b56 Merge pull request tenable#389 from kklin/rm-demo
2d1374b Merge pull request tenable#390 from kanchwala-yusuf/update-version/1.2.0
dbd5237 Merge pull request tenable#393 from dinedal/fix_infinite_loop_on_variable_resolution
6a24967 Merge pull request tenable#396 from acc-jon/issue394
d37fb58 Merge pull request tenable#397 from therasec/bugfix/gcpcosimage
ab97a48 Merge pull request tenable#399 from dev-gaur/issue_379
55a6c2c Merge pull request tenable#401 from accurics/pyup-update-mkdocs-material-6.1.5-to-6.1.6
9b32df3 Merge pull request tenable#402 from lucas-giaco/master
a463ede Merge pull request tenable#409 from HorizonNet/issue-403
4614d5d Merge pull request tenable#410 from HorizonNet/issue-398
8d6e722 Merge pull request tenable#417 from harkirat22/master
929e377 Merge pull request tenable#419 from accurics/imdsv1-fix
559c45d Merge pull request tenable#420 from accurics/fix-jon-testorder
51d6b44 Merge pull request tenable#423 from HorizonNet/issue-421
f96af13 Merge pull request tenable#424 from HorizonNet/issue-422
2498741 Merge pull request tenable#425 from accurics/pyup-update-mkdocs-material-6.1.6-to-6.1.7
9c5476c Merge pull request tenable#427 from acc-jon/windows-colors
90e4ea7 Merge pull request tenable#428 from gauravgogia-accurics/master
287b370 Merge pull request tenable#430 from accurics/ape-1319
7cc4f16 Merge pull request tenable#431 from patilpankaj212/human_readable_output
32ff137 Merge pull request tenable#434 from kanchwala-yusuf/feature/skip-rules
ce61b02 Merge pull request tenable#435 from accurics/docs/fix-link
c57bb06 Merge pull request tenable#436 from patilpankaj212/scan-refactor
b8a6849 Merge pull request tenable#441 from patilpankaj212/scan-and-skip-rules
960c77b Merge pull request tenable#443 from chenrui333/go-1.15
02e77b8 Merge pull request tenable#444 from chenrui333/add-dependabot-support
432ec9f Merge pull request tenable#445 from accurics/pyup-update-mkdocs-material-6.1.7-to-6.2.3
4557d22 Merge pull request tenable#447 from accurics/dependabot/go_modules/github.com/gorilla/mux-1.8.0
9ac1b32 Merge pull request tenable#448 from accurics/dependabot/go_modules/sigs.k8s.io/kustomize/api-0.7.1
6fab349 Merge pull request tenable#449 from accurics/dependabot/go_modules/github.com/zclconf/go-cty-1.7.1
0f79088 Merge pull request tenable#452 from accurics/docs/pipeline
5a19951 Merge pull request tenable#454 from accurics/argo-cd-hook
20a4bdb Merge pull request tenable#455 from patilpankaj212/annotations-based-skipping
45a7885 Merge pull request tenable#456 from accurics/amirbenv-patch-1
5385258 Merge pull request tenable#457 from harkirat22/master
c39a76d Merge pull request tenable#458 from patilpankaj212/fix-exit-code-on-error
76bf739 Merge pull request tenable#460 from harkirat22/master
f9b176c Merge pull request tenable#462 from ScaleSec/deprecated_gcs_bucket
3368850 Merge pull request tenable#463 from accurics/amirbenv-patch-1
5c565e6 Merge pull request tenable#464 from accurics/pyup-update-mkdocs-material-6.2.3-to-6.2.4
2272168 Merge pull request tenable#465 from accurics/k8s-generateName
e5f74e4 Merge pull request tenable#466 from patilpankaj212/skip-comment-and-scan-summary-additions
49bf32d Merge pull request tenable#470 from dev-gaur/tf14besides12
792166e Merge pull request tenable#473 from harkirat22/harkirat22/362
7c974f6 Merge pull request tenable#474 from harkirat22/harkirat22/359
12f226a Merge pull request tenable#475 from harkirat22/harkirat22/352
c313c32 Merge pull request tenable#476 from harkirat22/harkirat22/432
12b58f2 Merge pull request tenable#479 from patilpankaj212/bugFix
29bbd42 Merge pull request tenable#480 from williepaul/policy-update-2021-01-14
9b65423 Merge pull request tenable#481 from accurics/dependabot/go_modules/github.com/pelletier/go-toml-1.8.1
0cbd6d0 Merge pull request tenable#482 from accurics/dependabot/go_modules/github.com/hashicorp/go-version-1.2.1
9002ce6 Merge pull request tenable#484 from accurics/dependabot/go_modules/github.com/iancoleman/strcase-0.1.3
c713b5c Merge pull request tenable#485 from accurics/dependabot/go_modules/github.com/spf13/afero-1.5.1
5b63ac8 Merge pull request tenable#486 from accurics/dependabot/go_modules/go.uber.org/zap-1.16.0
ddb6f64 Merge pull request tenable#487 from accurics/v1.3-docs
4ef6ce1 Merge pull request tenable#488 from accurics/pyup-update-mkdocs-material-6.2.4-to-6.2.5
a3cee2d Merge pull request tenable#489 from harkirat22/harkirat22/331
4a05a56 Merge pull request tenable#490 from harkirat22/harkirat22/382
643a76a Merge pull request tenable#492 from accurics/dependabot/go_modules/github.com/mattn/go-isatty-0.0.12
b445fd0 Merge pull request tenable#494 from accurics/dependabot/go_modules/sigs.k8s.io/kustomize/api-0.7.2
8e3e41b Merge pull request tenable#495 from accurics/dependabot/go_modules/github.com/hashicorp/go-getter-1.5.2
a8461cf Merge pull request tenable#496 from accurics/dependabot/go_modules/github.com/hashicorp/go-retryablehttp-0.6.8
6251a4a Merge pull request tenable#497 from dev-gaur/fix_potential_bug_470
d301c3a Merge pull request tenable#499 from dev-gaur/tf_v13_flag
7b3593f Merge pull request tenable#501 from dev-gaur/severity_flag
f75dd1a Merge pull request tenable#502 from kanchwala-yusuf/release-1.3.0
26c7ee4 Merge pull request tenable#503 from accurics/readme_skip
51aaf1f Merge pull request tenable#505 from patilpankaj212/remote-module-support
51b686e Merge pull request tenable#507 from williepaul/fix-darwin-arm64-build
6a282a9 Merge pull request tenable#508 from kanchwala-yusuf/v1.3.1
9088544 Merge pull request tenable#509 from accurics/amirbenv-patch-1
62069cb Merge pull request tenable#514 from accurics/pyup-update-mkdocs-material-6.2.5-to-6.2.6
78dd045 Merge pull request tenable#515 from harkirat22/policy/k8s-improvement
ae9effc Merge pull request tenable#516 from harkirat22/policy/aws-launch-config
47d55e0 Merge pull request tenable#517 from gaurav-gogia/fix_405
fd73ed6 Merge pull request tenable#518 from gaurav-gogia/fix_376
31bd625 Merge pull request tenable#520 from harkirat22/harkirat22/bug-fix
dd0643a Merge pull request tenable#522 from harkirat22/aws-instance-policies
7682371 Merge pull request tenable#523 from gauravgahlot/docs-fixes
5641824 Merge pull request tenable#524 from accurics/pyup-update-mkdocs-material-6.2.6-to-6.2.7
0b0e9ec Merge pull request tenable#526 from harkirat22/fix_391
efeed62 Merge pull request tenable#527 from patilpankaj212/support-junitXML
40a9ac6 Merge pull request tenable#529 from dev-gaur/fix#521
4febd3b Merge pull request tenable#531 from dev-gaur/init_hot_fix
dabcffb Merge pull request tenable#532 from nathannaveen/nathan/fix/Initializes_Terrascan
fed8436 Merge pull request tenable#533 from dev-gaur/release_v1.3.2
f14d608 Merge pull request tenable#534 from dev-gaur/update_readme
1afca98 Merge pull request tenable#537 from accurics/docs/v1.3.2
c406568 Merge pull request tenable#541 from patilpankaj212/log-level-fixes
9f3569b Merge pull request tenable#542 from alex-petrov-vt/issue538
b785481 Merge pull request tenable#545 from jlk/add-code-of-conduct
10d6706 Merge pull request tenable#552 from dev-gaur/fix_terrascan_init
f9aea57 Merge pull request tenable#558 from dev-gaur/bump_versions
f4c70ae Merge remote-tracking branch 'origin/master' into lucas-giaco/master
c6aef0b Moving from goreleaser GH action (tenable#694)
a09b879 Moving linux builds to static builds (tenable#708)
02d312e New Policies for Azure & Category Updates. (tenable#580)
64a974a Remove demo badge
f536982 Remove demo badge
f4d9bd5 Renamed GitHub repository policy ID
8625834 Reorganized and Updated docs (tenable#655)
8b644b5 Return varRef instead of val
1b58346 Spilt usage docs (tenable#890)
23ca9f7 Support for authenticated tf module download (tenable#658)
82e5242 Support for spaces in policy reference_id (tenable#833)
9546bcc Take file extension from uploaded file (tenable#593)
6bdcf0c Terrascan K8s New categories and ruleRef ID changes (tenable#583)
a30788a Terrascan init and config handling refactor (tenable#576)
e336ad6 Update CHANGELOG.md
34979da Update CHANGELOG.md
372796a Update CHANGELOG.md
01e26c4 Update CHANGELOG.md
f4d7465 Update CHANGELOG.md
c3f372f Update Integration Docs.md (tenable#885)
bcb5790 Update README.md
ae1763f Update README.md
bf49487 Update README.md
64e6608 Update README.md
1abfc7a Update README.md
b452f0a Update README.md
9ae9128 Update README.md
ee2a46d Update README.md
5f48ba9 Update README.md
bad6027 Update README.md
bc4a4f3 Update README.md
270f7fd Update README.md
e6691bb Update README.md
e6e6b8e Update admission-controller-webhooks-usage.md (tenable#722)
4a20105 Update cicd.md (tenable#667)
c43ec4a Update cicd.md (tenable#901)
51a71f8 Update cicd.md (tenable#902)
51c3eb8 Update demo docs to use new Blimp demo version
916ecf8 Update go.mod
f506ca4 Update go.sum
aecf28d Update index.md (tenable#707)
4bf9b35 Update mkdocs from 1.1.2 to 1.2.1 (tenable#886)
84bb503 Update mkdocs-material from 5.5.12 to 5.5.14
e3f1b02 Update mkdocs-material from 5.5.14 to 6.0.1
0c7aa1e Update mkdocs-material from 6.0.1 to 6.0.2
2e6f213 Update mkdocs-material from 6.0.2 to 6.1.0
700b668 Update mkdocs-material from 6.1.0 to 6.1.2
ad98ac2 Update mkdocs-material from 6.1.2 to 6.1.3
164964a Update mkdocs-material from 6.1.3 to 6.1.4
7bf5afa Update mkdocs-material from 6.1.4 to 6.1.5
766bae8 Update mkdocs-material from 6.1.5 to 6.1.6
8d82c92 Update mkdocs-material from 6.1.5 to 6.1.6
dd2d7fd Update mkdocs-material from 6.1.6 to 6.1.7
b6ce97a Update mkdocs-material from 6.1.7 to 6.2.3
9c71078 Update mkdocs-material from 6.2.3 to 6.2.4
cea7d75 Update mkdocs-material from 6.2.4 to 6.2.5
1fd99c3 Update mkdocs-material from 6.2.4 to 6.2.5
d6827b2 Update mkdocs-material from 6.2.5 to 6.2.6
9265b67 Update mkdocs-material from 6.2.6 to 6.2.7
b579bec Update mkdocs-material from 6.2.7 to 6.2.8 (tenable#539)
98e57b3 Update mkdocs-material from 6.2.8 to 7.0.1 (tenable#567)
c61f306 Update mkdocs-material from 7.0.1 to 7.0.5 (tenable#590)
4d12986 Update mkdocs-material from 7.0.5 to 7.0.6 (tenable#615)
41b159c Update mkdocs-material from 7.0.6 to 7.1.0 (tenable#636)
6929cb2 Update mkdocs-material from 7.1.0 to 7.1.2 (tenable#676)
0cf4ed6 Update mkdocs-material from 7.1.2 to 7.1.4 (tenable#746)
1db0999 Update mkdocs-material from 7.1.4 to 7.1.8 (tenable#859)
9db3868 Update mkdocs-redirects from 1.0.1 to 1.0.3 (tenable#710)
714cf60 Update mkdocs.yml (tenable#660)
320b191 Update mkdocs.yml (tenable#741)
d7e16f6 Update policy description to match correct port. (tenable#777)
9ff312a Update policy example in the documentation
a4db22d Update route53LoggingDisabled.rego to ignore private zones (tenable#626)
9ac1667 Update usage.md (tenable#765)
a74765d Update usage.md (tenable#893)
decb1e9 Updates documentation on Terrascan github action (tenable#894)
dbb5a91 Updating Rule reference Id's and Policy categories (tenable#582)
c04acd4 Updating network security policies for GCP (tenable#869)
be9c502 Using constants
bae80a8 Using constants
1839b24 [feat.] Merge Webhook and Server Helm Chart (tenable#817)
1229942 [fix] Add Alternate names for k8s services (tenable#834)
c2a3b43 add JSON termcolor tests
bf715f3 add JSON termcolor tests
cecc7bf add ScanSummary to ViolationStore
0481625 add ability to download remote repository in CLI
ff73e3a add annotations in test file
60ce034 add annotations in test file
71b776f add authentication with API key for the /logs endpoint (tenable#663)
62236df add cases for human readable
9ff6f2f add check for env vars and kms, fixes tenable#682 (tenable#827)
fe0c724 add check for privileged containers (rule 106)
3bafe49 add comment for SkipRules in ResourceConfig struct
fc46888 add comments, debug log messages and code clean up
c4457da add config only option to remote repo scanning API in http server
11be46b add cty map to golang map converter
c3c2fc6 add downloader support
c57aa66 add function to return list of supported Iac Types
a15af41 add function to return list of supported policy types
fe1044b add git binary to terrascan docker image, required by downloader
0d8bc97 add id field for matching policies siac/terrascan (tenable#824)
df42ce9 add link to CLI options
0ed8ef7 add logging middleware for server (tenable#785)
637d286 add method to clean up cached/installed repositories
d834e2e add method to download remote repo with type specified
d88a767 add method to generate random string
69541fb add options to specify desired severity level of violations to be reported
8492103 add policy path for tests
36ca6eb add proper values via metadata (tenable#888)
d8b9d7c add remote scanning support in http server
afc2a18 add support for YAML format for terrascan config file (tenable#816)
8b274be add support for colored output
24272d0 add support for colored output
5fd0685 add support for downloading remote modules in terraform v12 Iac scanning
31ee512 add support for extracting rules to skip from terraform resource config comments
dcfbd54 add support for kubernetes validating admission webhook
b7f17a1 add support for pod container
c79f2a8 add support for resolving variable references for file scan
659e15b add support for resolving variable references in a module
538704c add support for resolving variables initialized/overriden in module calls
fafdda4 add support for sarif format violation reports (tenable#806)
160743f add support to download remote repo in CLI
392c486 add support to get list of iac types with default versions
10bd8c9 add support to resolve cross module references
1bfce05 add support to resolve lookup references
0b0103e add support to resolve references in a slice
3d19a3f add supported to resolve multiple references in the same expression
0c7f4ca add terrascan atlantis container files, scripts and doc. (tenable#684)
b6db0ae add test in run_test for scan and skip rules using config file
e057bfe add unit test for GenRandomString() method
e72bf36 add unit test for downloader methods
530d679 add unit test for remote module installer clean up
58d4745 add unit tests for GetURLSubDir
25d8b94 add unit tests for module-download file
7c9fa06 add unit tests for policy package
dc0b428 add validation for tls private key and cert file values (tenable#771)
c727767 add warning message for terraform v12 users
237c04e add writer for junit-xml
ece2ab1 added kustomize support
58e5f45 added tests for NewExecutor func
a359304 added unit tests for breaking changes case
442e39a added vendor/ in .gitignore
7d20723 adding ID field (tenable#871)
a05d83d adding an else condition to relate management lock with resource group
39067c7 adding an else condition to relate the flow log with vpc
d83c6b1 adding back atlantis integration step in release workflow
4ba3060 adding missing return
4c66c22 adding new policy and enhancing the nosiy policy (tenable#575)
fcec126 adding new rule to fix bug tenable#391
ab0ebc6 adding rule to check if waf is enabled at cloud front distribution
e0e6bd7 adding specific steps to argocd integration
51888c4 adding unit tests for extracting rule ids to skip from terraform resource config comments
380e60a adding unit tests for testing no rule ids present
b92d331 address tenable#365 by properly handling submodule path
c44734a adds agrocd integration dockerfile, scripts, doc and examples (tenable#732)
6d5d3be adds analytics
5a289d6 adds changelog for v1.5.0 (tenable#692)
bde73b6 adds clarification on default behavior
c0b5705 adds documentation for '-t all' flag
bda153e adds e2e test scenarios for help and scan command (tenable#564)
bbb4a56 adds e2e tests for api server (tenable#585)
a194b49 adds gitlab and github ci integration docs
b2ea41d adds helm docs
52481bc adds implementation for skipped server mode k8s scan e2e tests (tenable#706)
e1a0422 adds initial helm support - supports loading of helm v3 charts via the iac dir command (iac file is invalid) - adds default iac versions for all iac types - adds unit tests - adds ability to properly specify default iac version for a given iac type
57ac4a2 adds kustomize to docs
a1e3947 adds link to k8s policy docs
12f6439 adds logo
733831c adds new policies
e910754 adds policy docs
7ed87c5 adds policy to check kms on lambdas
e07d60d adds rego checking lambda is config to launch on a vpc
5530d27 adds rego for insecure cors config
14fb90e adds rule for cloudwatch logs encryption
8dc98c2 adds section for github policies
6728908 adds support to display passed rules (tenable#572)
6604c23 adds support to run k8s validating webhook without dashboard by default (tenable#683)
762c561 adds support to scan directory with all iac providers in cli mode (tenable#674)
dee8090 adds support to scan sub folders for terraform iac provider (tenable#640)
ae5d650 allow config file for global policy config
82ea9ac allow multiple cloud types, default to all
4bd932b annotations based skipping
919aece annotations based skipping
4b8d917 automatically pick supported Iac versions for help display
971845a bucket policy check false positive fix (tenable#828)
443129b bump go to 1.15
029a082 bump terrascan version to v1.3.2
b93b508 bump versions to v1.3.3
1a2f072 change file name
6b79a9c changed the description message (tenable#559)
6e7b687 changed the description to include the vulnerable versions
7e73f26 changes
881417a changes for argocd integration (tenable#724)
34870a6 changing repo for testing
a332115 changing repo url from ssh to http
358fc67 check for loopback addresses in endpoint slice (tenable#830)
1a35277 clean up flag handling
2a0e3ac clean up flag handling
250d464 commenting a log message for now
a3f26c1 config file changes for terrascan server (tenable#780)
1f0e811 deps: add dependabot support
5a6d70e display error to user if config only used with human
4878eeb doc: add homebrew badge (tenable#714)
66bdd4f docs updates for policies
26bae02 enhancement: scan terraform registry modules as remote type (tenable#513)
b012204 enhancing aws policies (tenable#829)
b1c8f99 exit with status 1 in case of an scan error
a3bcac7 feature: add support to specify desired categories of violations to be reported (tenable#547)
4df6ce6 filepath fixes in e2e tests (tenable#591)
78f6458 fix - improved description for init command
a11f71e fix - init behavior change (tenable#624)
258206b fix - process local sources in remote modules for terraform iac
220795f fix a bug when rendering subcharts - in some cases, subcharts could not be rendered properly - change how we render values such that default capabilities are set, preventing rendering errors - set lintmode to true to allow ignoring of certain rendering errors from within the rendering engine - add resource count checking to load-dir unit tests - update error messages to make sure we are including the error data
e43bd0f fix atlantis docker build script and release workflow (tenable#853)
c642063 fix broken link to usage.md (tenable#855)
451e72c fix code smells
78b6822 fix code smells
4b7462e fix dependencies that were breaking the darwin/arm64 build
0af155d fix failing test (tenable#740)
1027346 fix filepaths and home directory lookup (tenable#566)
d5bde39 fix gofmt errors
eb26ba5 fix imports
c02bd36 fix incorrect loop exit
ec68170 fix indentation
9c460f4 fix indentation
6103c45 fix kustomize scan breakage on windows (tenable#630)
f1f5231 fix lint, style issues
24c4948 fix logging init. clean up tests. use globlal toml config file for policy config
23bb0ae fix multierror variable issue for helm, kustomize and k8s (tenable#818)
c79dce5 fix output format
114222a fix panic for floating point variables for terraform cty types(tenable#653)
585edcc fix recursive variable reference resolution for terraform (tenable#677)
8d4bad1 fix send request method, previously hardcoded
5669cbf fix severity output case insensivity fix (tenable#691)
305a8e2 fix sonar duplication issue
772901b fix sonarcloud issues - avoids some repeated strings by using logger.With() - move rendering code into a separate function - remove a duplicate test - add more comments
83473ea fix sonarcloud issues - try #2 with cognitive complexity by moving for loop outside of the render func - update error level of some log messages
bc015ac fix static check failure
f784302 fix static check failure
8cb68f1 fix static check failure
577d5ca fix style
bbc2f90 fix style issue
94cd15a fix style, tests for policy type "all"
695801c fix supported providers unit test, sort the wanted result
cbbde51 fix terraform inner block reference resolution (tenable#844)
b038fab fix test args
fe2dca0 fix tests breaks due to resource config change
b24b89b fix the 'repo already exist' bug and improve error logging for terrascan init
276ed9e fix too many arguments for Run func
6889c14 fix typo
43c4970 fix typo
9b134e8 fix typos in docs
613d2e5 fix unit tests
daecab4 fix unit tests - make sure empty directories are created by adding a placeholder file
5db6cb2 fix windows tests (tenable#635)
d583cd3 fix writer tests
2ca5eb1 fix(pkg/policies/opa/rego/azure/azurerm_container_registry/containerregistryresourcelock.rego): check correct fields (tenable#858)
0c3c547 fix: add validation for module local source dir in terraform iac (tenable#793)
0e4c830 fix: modified docker file to use UID of user (tenable#773)
eff166f fix: moves the pending test to running (tenable#819)
fa44485 fix: renamed the json file to remove spaces (tenable#560)
617ef74 fixed sarif unit tests hardcoding code smell (tenable#857)
aba0c76 fixes tenable#376
4eb3d33 fixes tenable#405
91fa2ed fixes dead link to old getting started page
545692f fixes dockerfile build issues - disables CGO to prevent any dependencies from failing the build - the GOARCH variable was named incorrectly and not being picked up during the docker build - locked both the alpine and golang versions for the docker build
f87e2b7 fixes docs
0953440 fixes gcp cos node image policy
3bd67ae fixes infinite loop while local variable resolution for terraform (tenable#700)
a95164e fixes links
ed26230 fixes policy name
48b6ea8 fixes review comments - adds .yml to the valid list of chart yamls - default to 1 instead of 0 for source line in the helm_chart resource - TODO: add values.yml support for rancher
a8fce5a fixes severity
95401c4 fixes severity
f390891 fixes typo
3fff7b9 fixes typo
d23b460 fixes typo
b0f28f1 fixes typo and removes severity from reference id
62ce1c1 fixing error messages for unit tests
fdc888a fixing exisiting unit tests
a4857a3 fixing existing terraform unit tests
72653b4 fixing existing writer unit tests
5060bbb fixing the policy (tenable#847)
e3016dc fixing typos
368fd23 fixing unit tests
4ccc1d0 go mod tidy
932a1a6 hopefully remove test failures due to non-deterministic comparisons
b2a7d06 hopefully remove test failures due to non-deterministic comparisons
8080e17 human readable output for terrascan
dcd6cb7 import 'sort' package
f5fed60 improve isRef method, reorder switch cases for str ref resolution
b5778ea improve regex pattern, getLocalName method and string replace method for local references
308c69b improve regex pattern, getLocalName method and string replace method for lookup references
d27c892 improve regex pattern, getLocalName method and string replace method for module references
876587a improve regex pattern, getLocalName method and string replace method for variable references
ff2c2a5 improve unit tests for config reader package (tenable#820)
4bf99eb improve variable regex pattern, improve gwtVarName method
4fd7642 improves: filename in remote module (tenable#867)
3ef25b6 include docs for latest policy updates
bbc6e5a including a check for verifying in line policy is mentioned or not, thus solves the false positive issue tenable#359
3ffda3e incorporate review changes
0ea7356 incorporate review comments
49562fe incorporated the review comments
26120dc initial changes for rule id based scan and skip
e90045c introduce constructor func for ScanOptions
2fdc14d k8s policies refactor (tenable#879)
25f258c last minute fixes
5960227 load global config from toml config file
3942de8 local make cicd results
3e5170b log level changes for load iac functions
7deaf8e made rule reference ids unique, solves bug#519
23c8281 make k8s source paths relative to the provided directory for scanning
be19375 makes case agnostic
66159bd making file paths relative for k8s IaC (tenable#821)
5789f8f making staticcheck happy
e5cec3e merge with origin
8ac4d82 missing access logs
0f0be20 mod policies to achieve parity with siac (tenable#878)
02c8bce modify iac dir path validation (tenable#720)
580847e modify tests for k8s iac-provider
08f94ec move function to extract rules IDs to utils package
afb7ec5 new set of policies for EC2 instance
09d81f8 optimized yaml utility function
0e3d31a organizing reference resolution into multiple files
9103637 other scan summary details
4f99d24 pick automatically pick up list of supported types in cli help
b6732c7 policy download refactor (tenable#618)
e8d1068 policy for CVE-2020-8555
0fda427 policy for instance profile (launch config)
e4ae20c policy metadata changes to include policy_type and resource_type (tenable#792)
52625fd policy to check launch config has imdsv1
cc306bc policy to check monitoring for launch config
e2ff0a7 policy to check security group for lauch config
293a98e policy update 2021-01-14 37 rule(s) added 0 rule(s) deleted
557294c properly handle nested submodules (tenable#365)
6530dc8 rebase and fix failing test
8b2528e recognize metadata.generateName
1fe039d refactor DownloadRemoteModule func and more tests
e64db7f refactor DownloadRemoteModule func and more tests
19128c9 refactor DownloadRemoteModule func and more tests
765a2ef refactor and add unit test for remote scan repo API handler
794df55 refactor downloader package, add downloader interface
24bdc7a refactor init command for robust policy download checks
d1806c3 refactor module download
bc056a5 refactor scan command
2eed6bc refactor styling to support styles file
5183da8 refactor styling to support styles file
2f6b772 refactoring downloader package
9316d5d reference ids with & and fixed (tenable#845)
eefda2c rego update
ab29871 release 1.4.0 (tenable#586)
446b80f release 1.7.0 (tenable#850)
88073ee release v1.3.1
adf9e7f release v1.5.0 (tenable#689)
95a739e release v1.6.0 (tenable#764)
9385d11 remove Chart.yml from valid helm chart names - Chart.yml is used by rancher, but we would likely support rancher in a separate iac type, so removing from helm
d2cb1a8 remove lines added for testing
54b4891 remove redundant methods from cli/run.go
eeab9fe remove rules that have been replaced by the newer format
0afa877 removed local policy testing folder
bea2473 removed pod level securityContext support (tenable#790)
ff4b428 removes comment
c89ee87 removes large file
54ab58d removes severity from reference ids
03ac868 removing code smells
71645d2 rename ScanCommand to ScanOptions
c59eea8 replace CGO dependent go-sqlite3 with pure GO sqlite package
9baf154 resolve complex variable types for terraform and add unit tests (tenable#657)
9fe74b4 revert k8s old changes (tenable#608)
bac379d reverting back the unit test cases changes
6d9e34e reverts to master version
04be644 reverts to using latest
20f32e0 rewording
aea0e0b rewording
209fb65 run refactor and tests
9f68c60 service check wasn't required
e6af151 set console mode on windows so colors render
669631a shifted custom atlantis container source under integrations/ directory (tenable#758)
696481d shifted opa engine warning message to debug log level (tenable#800)
dcd02a1 snake case for human readable
f3cf216 solves issue tenable#331
91790db solves issue tenable#331
8fbe227 solves issue tenable#382, and improved policy to relate disk with the instance
fdf8dae solves issue tenable#382, and improved policy to relate disk with the instance
3508fe5 sort supportedPolicyTypes output
065e010 support for config_only option in api server file scan output (tenable#579)
66bb640 terrascan argo-cd instructions
df1bd8a terrascan init will download new policies
846a792 test for resource skipping
d7a2543 test for resource skipping
3b70d88 tests for remote module
32c1196 tests for remote module
48ae5d9 tests for remote module
7f02c6b tests for remote module
cb11130 tests for writers
fff04ae trying to resolve sonar cloud code duplication issue
cf4e248 tweak argo cd instructions
dec6618 type assertion check for hcl.Body (tenable#832)
ba7a76a update argo cd documentation (tenable#742)
9442c25 update build pipelines
8a523ad update debug log messages
53db1a0 update go mod files
538b9ed update helm default chart name and namespace values (tenable#589)
77be67d update module files
388a93b update module files
73a1169 update regex and unit tests
d8fd9c4 update version (tenable#713)
88481ce update version to v1.3.0
96dfc94 update version to v1.3.0
b10a8e1 update version to v1.2.0
117c40c update writer tests
57ade8a updated go module files (tenable#557)
82dc401 updated readme for v1.3.2
349d5c9 updates changelog
0ddc688 updates changelog
cfc49ca updates changelog
25ce756 updates changelog for 1.3.1
1b56749 updates changelog for next release
bdfcba8 updates changelog for v1.3.2
37d0f15 updates description
cde0357 updates docs with 1.3.1 version
a5cc45f updates error message severity and suppresses a normalization error - errors were output when helm template rendering created a blank file, which is still valid yaml - the "invalid kind" message is suppressed in this case, since rendering an empty template may be intentional - error log levels and also error messages were updated per review comments
7962a8f updates installation instructions to deduct latest release (tenable#695)
af0af4d updates latest k8s policies
303d716 updates policy docs
321cf34 updates policy docs
522abb9 updates relevant to v1.3.0 and latest features
acf5e18 updates version and kustomize support
2101022 updates version flag on help
ba304e5 updates with new version
99dc630 updating documentation for k8s admission control (tenable#679)
1f643b1 updating regex and logs
45d2b18 updating scannign section with additional examples
a56806c using hash placeholder instead of latest.
71a677f v1.4.0 doc updates (tenable#588)
9eaf1a2 writer test

Assets 10
Loading