51
55
34
Clone of Debian Installer (d-i) repository from https://anonscm.debian.org/viewvc/d-i/
Extension for IBM DB2 Universal Database, IBM Cloudscape, and Apache Derby
Read-only LibreOffice core repo - no pull request (use gerrit instead https://gerrit.libreoffice.org/) - don't download zip, use https://dev-www.libreoffice.org/bundles/ instead
A module for managing volunteers at Midburn – the Israeli Burning Man community
Events
feat: ignore terraform cache folders
@dim-ops don't forget to remove the draft status for this PR so we can review it. If you need any help before that - ping me.
Add KICS for k8s scanning
It's great that you have trivy to highlight security issues, I'd suggest you'll add KICS as well.
Will be happy to help if you want.
Update multiple Blackhat event CFP dates
Add OpenSSF day North America
Add Open Source Summit (Europe)
Potentially wrong queries
Do you suggest to to remove these queries or change their severity (e.g. informational) ?
Using Kics Query to detect admin policy attached to a Permission set - AWS SSO
The github action now uses KICS 1.6.11.
Image checkmarx/kics:gh-action-kics1.6 contains old version of kics
Thanks Thomas,
The KICS github action uses a different tag to select which version of KICS it runs. We usually advance it a week past the release to verify there aren't any regressions.
After some gap in this, two days ago we jumped from 1.6.6 to 1.6.11.
kaplanlior push Checkmarx/kics
docs(queries): update queries catalog
docs(queries): update queries catalog
Automated Changes Updating queries' documentation. Triggered by SHA: 74baef571165c8cc15ed7940b92c1e69625a439c
kaplanlior push Checkmarx/kics
ci(deps): bump golang from 1.20.1-alpine to 1.20.2-alpine
Bumps golang from 1.20.1-alpine to 1.20.2-alpine.
updated-dependencies:
- dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ...
Signed-off-by: dependabot[bot] support@github.com
kaplanlior delete branch dependabot/docker/golang-1.20.2-alpine
ci(deps): bump golang from 1.20.1-alpine to 1.20.2-alpine
Bumps golang from 1.20.1-alpine to 1.20.2-alpine.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebasewill rebase this PR -
@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it -
@dependabot mergewill merge this PR after your CI passes on it -
@dependabot squash and mergewill squash and merge this PR after your CI passes on it -
@dependabot cancel mergewill cancel a previously requested merge and block automerging -
@dependabot reopenwill reopen this PR if it is closed -
@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Terraform: Flag embededded access key and secret key as insecure
Thanks Trevor for the report.
Do you want to try and create a query to catch this case? https://docs.kics.io/latest/creating-queries/
We'll be happy to help if you're up to the challenge (:
Reduce docker image size
For KICS 1.6.x the docker images size is around 1 GB. Our goal is to reduce the image size or offer another image with extended abilities / files.
Removing terraformer would save ~ 900 MB 60 terraform binary 460 terraform providers 380 terraformer binary
Taking into account we might want to keep the terraform binary for future uses.
Add Kaplan Open Source (Israel)
There isn't. I would keep the Hebrew one.
Dockerfiles use outdated terraform (and tf providers) with critical vulnerabilities
https://github.com/hashicorp/terraform/issues/32606 says goutils doesn't affect terraform. We'll upgrade in any case for the latest stable which has this fix (1.3.9).
Add Kaplan Open Source (Israel)
Add Kaplan Open Source (Israel)
