-
Notifications
You must be signed in to change notification settings - Fork 11
/
.checkov.yaml
37 lines (37 loc) · 689 Bytes
/
.checkov.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
compact: true
quiet: true
download-external-modules: true
evaluate-variables: true
external-modules-download-path: .external_modules
directory:
- ./
framework:
- secrets
- terraform
- terraform_plan
- bitbucket_pipelines
- circleci_pipelines
- argo_workflows
- arm
- bicep
- cloudformation
- dockerfile
- github_configuration
- github_actions
- gitlab_configuration
- gitlab_ci
- bitbucket_configuration
- helm
- json
- yaml
- kubernetes
- kustomize
- openapi
- sca_package
- sca_image
- serverless
skip-path:
- "notes/.*"
skip-check:
- CKV_K8S_15 # "Image Pull Policy should be Always"
- CKV2_GHA_1 # CodeQL Tweak, TODO Inline Skip