Skip to content

chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.492 #124

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.492 #124

wants to merge 1 commit into from

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Aug 3, 2025
edited
Loading

This PR contains the following updates:

Package Type Update Change
bridgecrewio/checkov repository patch 3.2.388 -> 3.2.492

Note: The pre-commit manager in Renovate is not supported by the pre-commit maintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.

Release Notes

bridgecrewio/checkov (bridgecrewio/checkov)

v3.2.492

Compare Source

v3.2.491

Compare Source

v3.2.490

Compare Source

Feature

  • general: Fix downloading of the external modules when ref is a shortened Git hash - #​7278

v3.2.489

Compare Source

Bug Fix
  • helm: Check HELM_NAMESPACE env var in CKV_K8S_21 - #​7355

v3.2.488

Compare Source

Feature

  • terraform_plan: add new cases for foreach in the presence of skips - #​7351

v3.2.487

Compare Source

Bug Fix
  • general: CKV_AWS_174 should-allow-higher-then-TLSv1.2 - terraform and cloudformation - #​7352

v3.2.486

Compare Source

Feature
  • general: update setuptools version 78.1.1 - #​7347

v3.2.485

Compare Source

Bug Fix
  • general: fix urllib3 dependency - #​7345

v3.2.484

Compare Source

Bug Fix
  • terraform_plan: Correctly handle complex types for after_unknown - #​7333

v3.2.483

Compare Source

Feature
  • general: anchor setuptools to fix metadata version - #​7330
  • general: update our publishing job SHA to latest - #​7332
  • terraform_plan: fix handling of resource_id for enrichment in tf_plan - #​7329

v3.2.482

Compare Source

v3.2.481

Compare Source

v3.2.480

Compare Source

v3.2.479

Compare Source

Feature
  • general: upgrade checkov python version 3.9 - #​7326
  • general: upgrade checkvo python version - #​7303
  • terraform: skip raw tf resource violation - #​7325
Bug Fix
  • general: revert pipfile urllib3 change - #​7324

v3.2.478

Compare Source

v3.2.477

Compare Source

Bug Fix

  • terraform_plan: compute the longest common prefix between two optional vertex - #​7320
  • terraform_plan: Don't add values to empty list values in after_unknown - #​7319

v3.2.476

Compare Source

v3.2.475

Compare Source

v3.2.474

Compare Source

Documentation

  • general: Add JAVA_FULL_DT environment variable to CLI reference - #​7312

v3.2.473

Compare Source

  • no noteworthy changes

v3.2.472

Compare Source

Feature

  • terraform: fix foreach module handling - #​7313

v3.2.471

Compare Source

Bug Fix

  • terraform_plan: fix access to list by str in tf plan under _handle_complex_after_unknown - #​7299

v3.2.470

Compare Source

Bug Fix

  • helm: Make Helm template detection less aggressive - #​7288

v3.2.469

Compare Source

Feature

  • general: Control parallelism - #​7286

v3.2.468

Compare Source

v3.2.467

Compare Source

Bug Fix

  • serverless: Fixed bad entity code line generation - #​7285

v3.2.466

Compare Source

Feature

  • terraform: add aws_vpc_endpoint to RESOURCE_TYPES_JSONIFY - #​7281

Bug Fix

  • general: Add exclusion for plan_with_providers test files in security scanning - #​7282

v3.2.465

Compare Source

v3.2.464

Compare Source

Feature

  • secrets: support suppressions in JSON files - #​7275

v3.2.463

Compare Source

v3.2.462

Compare Source

v3.2.461

Compare Source

Bug Fix

  • terraform: Handled git external module loading with sub-directory but without protocol - #​7272

v3.2.460

Compare Source

Bug Fix

  • general: pin boto3 and botocore versions as failed test in Jenkins - #​7270

v3.2.459

Compare Source

v3.2.458

Compare Source

Bug Fix

  • terraform: Fix conditional expression evaluation - #​7265
  • terraform: Update FunctionAppsAccessibleOverHttps - #​7078

v3.2.457

Compare Source

Bug Fix

  • dockerfile: Use proxy env vars in aiohttp client requests - #​7260

v3.2.456

Compare Source

Bug Fix

  • terraform: Parse continue as a string rather as a python object - #​7261

v3.2.455

Compare Source

v3.2.454

Compare Source

Bug Fix

  • serverless: Fixed extraction of code lines for serverless resources - #​7259

v3.2.453

Compare Source

v3.2.452

Compare Source

Feature

  • general: Support Py 3.13 on build workflow - #​7222

v3.2.451

Compare Source

Feature

  • terraform: Support parsing of provider functions - #​7237

v3.2.450

Compare Source

Bug Fix

  • arm: filter out failed checks with resource names containing un-rendered functions - #​7231

v3.2.449

Compare Source

Bug Fix

  • terraform: fix cloning external modules from private regsitries - #​7229
  • terraform: fix issue 7216 module version parsing issue - #​7224

v3.2.448

Compare Source

v3.2.447

Compare Source

Bug Fix

  • terraform: Added support in restricting to a specific GitHub organization for GithubActionsOIDCTrustPolicy - #​7221

v3.2.446

Compare Source

Feature

  • kubernetes: include hidden folders in scan - #​7219

v3.2.445

Compare Source

Bug Fix

  • helm: fix file paths to point to original files and not generated ones - #​7212
  • secrets: fix omitting and masking - #​7218

v3.2.444

Compare Source

v3.2.443

Compare Source

Bug Fix

  • secrets: fix omit and masking - #​7213

v3.2.442

Compare Source

Bug Fix

  • secrets: fix relative path secrets - #​7211

v3.2.441

Compare Source

v3.2.440

Compare Source

Feature

  • secrets: Bump detect secrets - #​7203

v3.2.439

Compare Source

Bug Fix

  • serverless: Enhance yaml parsing, better support for file expansion - #​7115
  • terraform: Better utilization of managed modules (if enabled) - #​7111

v3.2.438

Compare Source

v3.2.437

Compare Source

Bug Fix

  • terraform: Handle explicitly-specified tfvars explicitly - #​7107

v3.2.436

Compare Source

Bug Fix

  • terraform_plan: Support count in terraform plan files - #​7195

v3.2.435

Compare Source

Bug Fix

  • kubernetes: Only filter out files that contain Helm built-in variables and functions - #​6922
  • serverless: check if start and end line in serverless definitions context - #​7189

v3.2.434

Compare Source

v3.2.433

Compare Source

Bug Fix

  • terraform_plan: add a check to avoid doing get on a none dict object in tfplan scan - #​7180

v3.2.432

Compare Source

Bug Fix

v3.2.431

Compare Source

v3.2.430

Compare Source

v3.2.429

Compare Source

Bug Fix

  • general: Fix support for git external module syntax 'git::git@' - #​7175
  • general: Remove asteval syntax error logs - #​7172

v3.2.428

Compare Source

v3.2.427

Compare Source

Feature

  • secrets: Revert - Bump detect secrets - #​7171

Bug Fix

  • terraform: dont move clone to internal dir - #​7159

v3.2.426

Compare Source

Feature

v3.2.425

Compare Source

v3.2.424

Compare Source

Feature

  • terraform: Add SNS check and modify some - #​7154

Bug Fix

  • secrets: Fix for git-history scan by commits - #​7160

v3.2.423

Compare Source

v3.2.422

Compare Source

Feature

  • secrets: git-history allow scan by commits list - #​7155

Bug Fix

  • general: exclude start_line and end_line from is empty solver - #​7156

v3.2.421

Compare Source

v3.2.420

Compare Source

Feature

  • kustomize: export get kustomize resource id to a function - #​7153

Bug Fix

  • general: Skip bc_api_key in output - #​7148
  • terraform: Fixed crash when using variable rendering inside a list of len > 1 - #​7151

v3.2.419

Compare Source

v3.2.418

Compare Source

v3.2.417

Compare Source

Breaking Change

v3.2.416

Compare Source

Bug Fix

  • terraform_plan: use provider name not resource address to fix supported_provider matching - #​7119

v3.2.415

Compare Source

Bug Fix

  • general: using asteval instead of using eval - #​7116

v3.2.414

Compare Source

Bug Fix

  • terraform: Fix protocols for CKV2_AWS_74 and fix for CKV2_K8S_5 - #​7134

v3.2.413

Compare Source

Feature

  • terraform: Add new check for overly permissive SQS policy - #​7125

Bug Fix

  • terraform: support CLI notation in CKV_AZURE_228 for EventHub locations - #​7124

v3.2.412

Compare Source

v3.2.411

Compare Source

Feature

  • secrets: Add support in git history for producer consumer - #​7123

Bug Fix

  • general: Make --download-external-modules Optional[bool] - #​7121
  • secrets: Fix test directory tree race - #​7122
  • terraform: add aws_elasticache_serverless_cache to CKV2_AWS_5 - #​7079

v3.2.410

Compare Source

v3.2.409

Compare Source

v3.2.408

Compare Source

Feature

  • terraform: Over permissive Lambda Cors check (Terraform & Cloudformation) - #​7113

Bug Fix

  • general: base_runner: Properly escape excluded directories that begin with '.' - #​7112

v3.2.407

Compare Source

Feature

  • terraform: Add new check and update old around cipher suites - #​7108

v3.2.406

Compare Source

Bug Fix

  • kustomize: handle kustomize file with empty resources section - #​7109

v3.2.405

Compare Source

v3.2.404

Compare Source

Bug Fix

  • terraform: Fix for multiple checks - #​7097

v3.2.403

Compare Source

Feature

  • cloudformation: Update Lambda Runtime checks - #​7065

v3.2.402

Compare Source

Bug Fix

  • terraform: Change to valid name - #​7089
  • terraform: CKV2_IBM_1 - ignore case for load balancer of type private_path - #​7010
  • terraform: rename test FunctionAppsAccessibleOverHttps - #​7085

Documentation

  • general: Add install for debian - #​7083

v3.2.401

Compare Source

v3.2.400

Compare Source

Bug Fix

  • general: typos discovered by codespell - #​7012
  • terraform: Update FunctionAppsAccessibleOverHttps - #​7084

v3.2.399

Compare Source

v3.2.398

Compare Source

Bug Fix

  • general: handle connected_node tuple in CustomJSONEncoder for json report (#​7062) - #​7063

v3.2.397

Compare Source

  • no noteworthy changes

v3.2.396

Compare Source

Bug Fix

  • terraform: Fix keeping range a range - #​7073

v3.2.395

Compare Source

Feature

  • serverless: add check for empty resource attributes - #​7074

v3.2.394

Compare Source

Bug Fix

  • terraform: Fix CKV2_GCP_12 and a few tests - #​7069

v3.2.393

Compare Source

Bug Fix

  • general: Updated correct connected_node when creating graph report out of all options - #​7068

v3.2.392

Compare Source

Bug Fix

  • terraform_plan: Run provider checks against all providers in plan - #​7061

v3.2.391

Compare Source

Bug Fix

  • secrets: Bump detect-secrets to not flag AZ secrets in plan files - #​7064

v3.2.390

Compare Source

Feature

  • terraform: add raw tf resource to graph - #​7047

Bug Fix

  • general: Fix a few checks - #​7051
  • general: Remove sneaky unicode characters that break a regex and console outputs on Windows - #​6987
  • terraform: CKV_AWS_228 - support new AWS Opensearch TLS policy - #​7007

v3.2.389

Compare Source

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.457 chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.457 - autoclosed Aug 4, 2025
@renovate renovate bot closed this Aug 4, 2025
@renovate renovate bot deleted the renovate/checkov branch August 4, 2025 03:26
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.457 - autoclosed chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.457 Aug 5, 2025
@renovate renovate bot reopened this Aug 5, 2025
@renovate renovate bot force-pushed the renovate/checkov branch from eab2854 to d07e7d8 Compare August 5, 2025 12:23
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.457 chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.457 - autoclosed Aug 6, 2025
@renovate renovate bot closed this Aug 6, 2025
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.457 - autoclosed chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.457 Aug 6, 2025
@renovate renovate bot reopened this Aug 6, 2025
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.457 chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.458 Aug 6, 2025
@renovate renovate bot force-pushed the renovate/checkov branch from d07e7d8 to 18f5a0c Compare August 6, 2025 20:50
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.458 chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.458 - autoclosed Aug 7, 2025
@renovate renovate bot closed this Aug 7, 2025
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.458 - autoclosed chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.458 Aug 7, 2025
@renovate renovate bot reopened this Aug 7, 2025
@renovate renovate bot force-pushed the renovate/checkov branch from a944765 to 18f5a0c Compare August 7, 2025 12:53
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.458 chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.458 - autoclosed Aug 8, 2025
@renovate renovate bot closed this Aug 8, 2025
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.458 - autoclosed chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.458 Aug 8, 2025
@renovate renovate bot reopened this Aug 8, 2025
@renovate renovate bot force-pushed the renovate/checkov branch from eea1393 to 18f5a0c Compare August 8, 2025 20:37
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.458 chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.458 - autoclosed Aug 10, 2025
@renovate renovate bot closed this Aug 10, 2025
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.458 - autoclosed chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.458 Aug 10, 2025
@renovate renovate bot reopened this Aug 10, 2025
@renovate renovate bot force-pushed the renovate/checkov branch from efc81b8 to 18f5a0c Compare August 10, 2025 14:12
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.458 chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.460 Aug 10, 2025
@renovate renovate bot force-pushed the renovate/checkov branch from 18f5a0c to d6c80b3 Compare August 10, 2025 17:19
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.460 chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.460 - autoclosed Aug 10, 2025
@renovate renovate bot closed this Nov 7, 2025
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.490 - autoclosed chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.490 Nov 7, 2025
@renovate renovate bot reopened this Nov 7, 2025
@renovate renovate bot force-pushed the renovate/checkov branch from 9d595a5 to a577164 Compare November 7, 2025 07:04
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.490 chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.490 - autoclosed Nov 7, 2025
@renovate renovate bot closed this Nov 7, 2025
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.490 - autoclosed chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.490 Nov 7, 2025
@renovate renovate bot reopened this Nov 7, 2025
@renovate renovate bot force-pushed the renovate/checkov branch 2 times, most recently from a577164 to 6343dab Compare November 7, 2025 19:39
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.490 chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.490 - autoclosed Nov 7, 2025
@renovate renovate bot closed this Nov 7, 2025
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.490 - autoclosed chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.490 Nov 8, 2025
@renovate renovate bot reopened this Nov 8, 2025
@renovate renovate bot force-pushed the renovate/checkov branch from 6343dab to 5937470 Compare November 8, 2025 02:59
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.490 chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.490 - autoclosed Nov 8, 2025
@renovate renovate bot closed this Nov 8, 2025
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.490 - autoclosed chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.490 Nov 8, 2025
@renovate renovate bot reopened this Nov 8, 2025
@renovate renovate bot force-pushed the renovate/checkov branch 2 times, most recently from fc8fc80 to 3eec89a Compare November 9, 2025 14:49
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.490 chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.491 Nov 9, 2025
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.491 chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.491 - autoclosed Nov 9, 2025
@renovate renovate bot closed this Nov 9, 2025
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.491 - autoclosed chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.491 Nov 9, 2025
@renovate renovate bot reopened this Nov 9, 2025
@renovate renovate bot force-pushed the renovate/checkov branch from 3eec89a to 189d093 Compare November 9, 2025 21:51
@renovate renovate bot force-pushed the renovate/checkov branch from 189d093 to 1195bd9 Compare November 10, 2025 16:57
@renovate renovate bot changed the title chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.491 chore(deps): update pre-commit hook bridgecrewio/checkov to 3.2.492 Nov 10, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant