v1.3.0
Changelog
2b8e2cd #394: recognize that empty values for username and password in master_auth block will disable basic auth
c33ebed -support color for default output -change color for 'file'
9d40d8e 1. added setup func to download policies 2. fix code smells
4fbe4ac 1. fix debug messages 2. fix typos in test name
3fd3d95 1. fix debug messages 2. fix typos in test name
c36691f 1. fix panic for list variables 2. test for list variables
33cd0e7 1. fix summary order 2. fix colored writer test
bf202e0 1. format summary 2. print empty quotes when resource name is absent
10ee6d5 1. modify existing tests of Run 2. add new tests for Run
e0c2e07 1. remove _ from test func 2. define variable for error string in test func
63d9867 1. support of rule skip comment for tf 2. human readable output modifications
0212180 1. support skip and scan rules in the server mode 2. refactor the existing config reader code 3. update unit tests 4. incorporate PR review comments
f0cbb79 1. support skip resource with comment. 2. skipped resource violations in output.
2ca27b9 1. toml config file based rule skipping 2. tests around rule scanning and skipping
c4b9aa7 1. update fix for exit code 2. remove default command code
6603436 APE-1319: Revamped Getting Started Section
a086a65 Add Docker image release tagging on release
6d79769 Add new policy for checking insecure_ssl on github_repository_webhook
185f8c6 Add policy AC-K8-NS-SE-M-0188 for CVE-2020-8554
3f759b9 Add v13 flag option for terraform iac
6da5e88 Add v13 flag option for terraform iac
1f296e6 Added Unit test coverage for Kustomize V3 Iac-provider
b1c5360 Added terraform v14 support
d356d5c Apply fix for self referential variables to non-parent modules
87cf969 Bump github.com/gorilla/mux from 1.7.4 to 1.8.0
4d74093 Bump github.com/hashicorp/go-version from 1.2.0 to 1.2.1
eb7e1dc Bump github.com/hashicorp/go-version from 1.2.0 to 1.2.1
03ea645 Bump github.com/iancoleman/strcase from 0.1.1 to 0.1.3
2330164 Bump github.com/mattn/go-isatty from 0.0.8 to 0.0.12
a264778 Bump github.com/mattn/go-isatty from 0.0.8 to 0.0.12
9664dcc Bump github.com/pelletier/go-toml from 1.8.0 to 1.8.1
7d0e3a0 Bump github.com/spf13/afero from 1.3.4 to 1.5.1
feb1a9e Bump github.com/zclconf/go-cty from 1.2.1 to 1.7.1
7a14d2d Bump go.uber.org/zap from 1.13.0 to 1.16.0
07092e5 Bump sigs.k8s.io/kustomize/api from 0.6.5 to 0.7.1
1801ce9 Bump sigs.k8s.io/kustomize/api from 0.7.1 to 0.7.2
385da16 Bump sigs.k8s.io/kustomize/api from 0.7.1 to 0.7.2
a4dc4ef Fire clientCertificateEnabled rule when client certificate is enabled
8a70f9e Fix infinite loop on variable resolution
21d311b Fix link to rego playground in policies documentation
7e1a1bb Fix typo in architecture documentation
2986401 Fix: potential bug added in PR #470
2536a09 Fix: potential bug added in PR #470
66c14cd Fixing policy description
12ce5c6 For human readable output display json output when '--config-only' is used
433415c IMDSv1 check policy
d6872fa IMDSv1 policy: update category, description
df73bc4 IMDSv1 policy: update category, description
5fc9818 Merge branch 'imdsv1-fix' of github.com:accurics/terrascan into imdsv1-fix
283d7d9 Merge branch 'master' into dependabot/go_modules/go.uber.org/zap-1.16.0
2df50b4 Merge branch 'master' into issue-422
23fe143 Merge branch 'master' of github.com:accurics/terrascan into argo-cd-hook
9058454 Merge pull request #386 from HorizonNet/issue-355
4d42c95 Merge pull request #387 from accurics/pyup-update-mkdocs-material-6.1.4-to-6.1.5
dbd5237 Merge pull request #393 from dinedal/fix_infinite_loop_on_variable_resolution
6a24967 Merge pull request #396 from acc-jon/issue394
d37fb58 Merge pull request #397 from therasec/bugfix/gcpcosimage
ab97a48 Merge pull request #399 from dev-gaur/issue_379
55a6c2c Merge pull request #401 from accurics/pyup-update-mkdocs-material-6.1.5-to-6.1.6
9b32df3 Merge pull request #402 from lucas-giaco/master
a463ede Merge pull request #409 from HorizonNet/issue-403
4614d5d Merge pull request #410 from HorizonNet/issue-398
8d6e722 Merge pull request #417 from harkirat22/master
929e377 Merge pull request #419 from accurics/imdsv1-fix
559c45d Merge pull request #420 from accurics/fix-jon-testorder
51d6b44 Merge pull request #423 from HorizonNet/issue-421
f96af13 Merge pull request #424 from HorizonNet/issue-422
2498741 Merge pull request #425 from accurics/pyup-update-mkdocs-material-6.1.6-to-6.1.7
9c5476c Merge pull request #427 from acc-jon/windows-colors
90e4ea7 Merge pull request #428 from gauravgogia-accurics/master
287b370 Merge pull request #430 from accurics/ape-1319
7cc4f16 Merge pull request #431 from patilpankaj212/human_readable_output
32ff137 Merge pull request #434 from kanchwala-yusuf/feature/skip-rules
ce61b02 Merge pull request #435 from accurics/docs/fix-link
c57bb06 Merge pull request #436 from patilpankaj212/scan-refactor
b8a6849 Merge pull request #441 from patilpankaj212/scan-and-skip-rules
960c77b Merge pull request #443 from chenrui333/go-1.15
02e77b8 Merge pull request #444 from chenrui333/add-dependabot-support
432ec9f Merge pull request #445 from accurics/pyup-update-mkdocs-material-6.1.7-to-6.2.3
4557d22 Merge pull request #447 from accurics/dependabot/go_modules/github.com/gorilla/mux-1.8.0
9ac1b32 Merge pull request #448 from accurics/dependabot/go_modules/sigs.k8s.io/kustomize/api-0.7.1
6fab349 Merge pull request #449 from accurics/dependabot/go_modules/github.com/zclconf/go-cty-1.7.1
0f79088 Merge pull request #452 from accurics/docs/pipeline
5a19951 Merge pull request #454 from accurics/argo-cd-hook
20a4bdb Merge pull request #455 from patilpankaj212/annotations-based-skipping
45a7885 Merge pull request #456 from accurics/amirbenv-patch-1
5385258 Merge pull request #457 from harkirat22/master
c39a76d Merge pull request #458 from patilpankaj212/fix-exit-code-on-error
76bf739 Merge pull request #460 from harkirat22/master
f9b176c Merge pull request #462 from ScaleSec/deprecated_gcs_bucket
3368850 Merge pull request #463 from accurics/amirbenv-patch-1
5c565e6 Merge pull request #464 from accurics/pyup-update-mkdocs-material-6.2.3-to-6.2.4
2272168 Merge pull request #465 from accurics/k8s-generateName
e5f74e4 Merge pull request #466 from patilpankaj212/skip-comment-and-scan-summary-additions
49bf32d Merge pull request #470 from dev-gaur/tf14besides12
792166e Merge pull request #473 from harkirat22/harkirat22/362
7c974f6 Merge pull request #474 from harkirat22/harkirat22/359
12f226a Merge pull request #475 from harkirat22/harkirat22/352
c313c32 Merge pull request #476 from harkirat22/harkirat22/432
12b58f2 Merge pull request #479 from patilpankaj212/bugFix
29bbd42 Merge pull request #480 from williepaul/policy-update-2021-01-14
9b65423 Merge pull request #481 from accurics/dependabot/go_modules/github.com/pelletier/go-toml-1.8.1
0cbd6d0 Merge pull request #482 from accurics/dependabot/go_modules/github.com/hashicorp/go-version-1.2.1
9002ce6 Merge pull request #484 from accurics/dependabot/go_modules/github.com/iancoleman/strcase-0.1.3
c713b5c Merge pull request #485 from accurics/dependabot/go_modules/github.com/spf13/afero-1.5.1
5b63ac8 Merge pull request #486 from accurics/dependabot/go_modules/go.uber.org/zap-1.16.0
ddb6f64 Merge pull request #487 from accurics/v1.3-docs
4ef6ce1 Merge pull request #488 from accurics/pyup-update-mkdocs-material-6.2.4-to-6.2.5
a3cee2d Merge pull request #489 from harkirat22/harkirat22/331
4a05a56 Merge pull request #490 from harkirat22/harkirat22/382
643a76a Merge pull request #492 from accurics/dependabot/go_modules/github.com/mattn/go-isatty-0.0.12
b445fd0 Merge pull request #494 from accurics/dependabot/go_modules/sigs.k8s.io/kustomize/api-0.7.2
6251a4a Merge pull request #497 from dev-gaur/fix_potential_bug_470
d301c3a Merge pull request #499 from dev-gaur/tf_v13_flag
f75dd1a Merge pull request #502 from kanchwala-yusuf/release-1.3.0
f4c70ae Merge remote-tracking branch 'origin/master' into lucas-giaco/master
8b644b5 Return varRef
instead of val
e336ad6 Update CHANGELOG.md
01e26c4 Update CHANGELOG.md
34979da Update CHANGELOG.md
9ae9128 Update README.md
bad6027 Update README.md
5f48ba9 Update README.md
bcb5790 Update README.md
bc4a4f3 Update README.md
ae1763f Update README.md
916ecf8 Update go.mod
f506ca4 Update go.sum
7bf5afa Update mkdocs-material from 6.1.4 to 6.1.5
766bae8 Update mkdocs-material from 6.1.5 to 6.1.6
8d82c92 Update mkdocs-material from 6.1.5 to 6.1.6
dd2d7fd Update mkdocs-material from 6.1.6 to 6.1.7
b6ce97a Update mkdocs-material from 6.1.7 to 6.2.3
9c71078 Update mkdocs-material from 6.2.3 to 6.2.4
cea7d75 Update mkdocs-material from 6.2.4 to 6.2.5
1fd99c3 Update mkdocs-material from 6.2.4 to 6.2.5
9ff312a Update policy example in the documentation
be9c502 Using constants
bae80a8 Using constants
cecc7bf add ScanSummary to ViolationStore
ff73e3a add annotations in test file
60ce034 add annotations in test file
62236df add cases for human readable
fe0c724 add check for privileged containers (rule 106)
3bafe49 add comment for SkipRules in ResourceConfig struct
df42ce9 add link to CLI options
31ee512 add support for extracting rules to skip from terraform resource config comments
b6db0ae add test in run_test for scan and skip rules using config file
c727767 add warning message for terraform v12 users
a359304 added unit tests for breaking changes case
a05d83d adding an else condition to relate management lock with resource group
39067c7 adding an else condition to relate the flow log with vpc
ab0ebc6 adding rule to check if waf is enabled at cloud front distribution
e0e6bd7 adding specific steps to argocd integration
51888c4 adding unit tests for extracting rule ids to skip from terraform resource config comments
380e60a adding unit tests for testing no rule ids present
a194b49 adds gitlab and github ci integration docs
a1e3947 adds link to k8s policy docs
12f6439 adds logo
4bd932b annotations based skipping
919aece annotations based skipping
443129b bump go to 1.15
6e7b687 changed the description to include the vulnerable versions
1f0e811 deps: add dependabot support
5a6d70e display error to user if config only used with human
66bdd4f docs updates for policies
b1c8f99 exit with status 1 in case of an scan error
78b6822 fix code smells
451e72c fix code smells
c02bd36 fix incorrect loop exit
c79dce5 fix output format
305a8e2 fix sonar duplication issue
fe2dca0 fix tests breaks due to resource config change
276ed9e fix too many arguments for Run func
d583cd3 fix writer tests
91fa2ed fixes dead link to old getting started page
f87e2b7 fixes docs
0953440 fixes gcp cos node image policy
a95164e fixes links
3fff7b9 fixes typo
a4857a3 fixing existing terraform unit tests
72653b4 fixing existing writer unit tests
e3016dc fixing typos
932a1a6 hopefully remove test failures due to non-deterministic comparisons
b2a7d06 hopefully remove test failures due to non-deterministic comparisons
8080e17 human readable output for terrascan
bbc6e5a including a check for verifying in line policy is mentioned or not, thus solves the false positive issue #359
0ea7356 incorporate review comments
49562fe incorporated the review comments
26120dc initial changes for rule id based scan and skip
e90045c introduce constructor func for ScanOptions
3942de8 local make cicd results
be19375 makes case agnostic
e5cec3e merge with origin
580847e modify tests for k8s iac-provider
08f94ec move function to extract rules IDs to utils package
9103637 other scan summary details
e8d1068 policy for CVE-2020-8555
293a98e policy update 2021-01-14 37 rule(s) added 0 rule(s) deleted
6530dc8 rebase and fix failing test
8b2528e recognize metadata.generateName
bc056a5 refactor scan command
eefda2c rego update
d2cb1a8 remove lines added for testing
eeab9fe remove rules that have been replaced by the newer format
71645d2 rename ScanCommand to ScanOptions
209fb65 run refactor and tests
9f68c60 service check wasn't required
e6af151 set console mode on windows so colors render
dcd02a1 snake case for human readable
91790db solves issue #331
f3cf216 solves issue #331
8fbe227 solves issue #382, and improved policy to relate disk with the instance
fdf8dae solves issue #382, and improved policy to relate disk with the instance
66bb640 terrascan argo-cd instructions
d7a2543 test for resource skipping
846a792 test for resource skipping
cb11130 tests for writers
cf4e248 tweak argo cd instructions
73a1169 update regex and unit tests
88481ce update version to v1.3.0
96dfc94 update version to v1.3.0
117c40c update writer tests
349d5c9 updates changelog
0ddc688 updates changelog
1b56749 updates changelog for next release
321cf34 updates policy docs
303d716 updates policy docs
522abb9 updates relevant to v1.3.0 and latest features
2101022 updates version flag on help
a56806c using hash placeholder instead of latest.
9eaf1a2 writer test