superlint/.github/linters/.checkov-test-linters-success.yaml

---
# Options reference: https://www.checkov.io/2.Basics/CLI%20Command%20Reference.html

directory:
  - test/linters/checkov/good

quiet: false

skip-framework:
  # The Kubernetes framework because it doesn't run Kustomize before running the
  # scan, as expected. There's the Kustomize framework for that.
  # If we don't skip the Kubernetes framework, Checkov reports issues against
  # Kubernetes descriptors that we handle with Kustomize. For example, we set
  # a non-default Kubernetes Namespace using Kustomize.
  # Checkov doesn't currently support skipping checks only for a given set of
  # frameworks, and the Kubernetes framework runs the same checks that the Helm
  # and the Kustomize frameworks run. So, we skip the Kubernetes framework when
  # running test cases. In case we need to implement new Kubernetes test cases,
  # we have to do that as part of the test Helm chart or the test Kustomize
  # "package".
  - kubernetes
...
feat: add support for checkov to lint iac files (#4925) - Add support to run Checkov against infrastructure as code descriptors that are in a given (configurable) directory. Defaults to lint the whole workspace. - Establish a baseline for our own codebase so we don't have to fix issues right away with this change. 2023-12-22 07:22:15 -05:00			`---`
			`# Options reference: https://www.checkov.io/2.Basics/CLI%20Command%20Reference.html`

feat: run linters in parallel (#5177) 2024-01-30 14:24:55 -05:00			`directory:`
			`- test/linters/checkov/good`

feat: add support for checkov to lint iac files (#4925) - Add support to run Checkov against infrastructure as code descriptors that are in a given (configurable) directory. Defaults to lint the whole workspace. - Establish a baseline for our own codebase so we don't have to fix issues right away with this change. 2023-12-22 07:22:15 -05:00			`quiet: false`
feat: add the kustomize binary for checkov (#5763) Checkov needs the kustomize binary to enable related checks, otherwise these checks are silently skipped. Ref https://www.checkov.io/7.Scan%20Examples/Kustomize.html 2024-06-27 13:03:16 -04:00
			`skip-framework:`
			`# The Kubernetes framework because it doesn't run Kustomize before running the`
			`# scan, as expected. There's the Kustomize framework for that.`
			`# If we don't skip the Kubernetes framework, Checkov reports issues against`
			`# Kubernetes descriptors that we handle with Kustomize. For example, we set`
			`# a non-default Kubernetes Namespace using Kustomize.`
			`# Checkov doesn't currently support skipping checks only for a given set of`
			`# frameworks, and the Kubernetes framework runs the same checks that the Helm`
			`# and the Kustomize frameworks run. So, we skip the Kubernetes framework when`
			`# running test cases. In case we need to implement new Kubernetes test cases,`
			`# we have to do that as part of the test Helm chart or the test Kustomize`
			`# "package".`
			`- kubernetes`
feat: add support for checkov to lint iac files (#4925) - Add support to run Checkov against infrastructure as code descriptors that are in a given (configurable) directory. Defaults to lint the whole workspace. - Establish a baseline for our own codebase so we don't have to fix issues right away with this change. 2023-12-22 07:22:15 -05:00			`...`