diff --git a/README.md b/README.md index 557b9bf3bec..0832d28e78b 100644 --- a/README.md +++ b/README.md @@ -251,14 +251,14 @@ checkov -d . --skip-check kube-system Run a scan of a container image. First pull or build the image then refer to it by the hash, ID, or name:tag: ```sh -checkov --framework sca_image --docker-image sha256:1234example --dockerfile-path /Users/path/to/Dockerfile --bc-api-key ... +checkov --framework sca_image --docker-image sha256:1234example --dockerfile-path /Users/path/to/Dockerfile --repo-id ... --bc-api-key ... -checkov --docker-image :tag --dockerfile-path /User/path/to/Dockerfile --bc-api-key ... +checkov --docker-image :tag --dockerfile-path /User/path/to/Dockerfile --repo-id ... --bc-api-key ... ``` You can use --image flag also to scan container image instead of --docker-image for shortener: ```sh -checkov --image :tag --dockerfile-path /User/path/to/Dockerfile --bc-api-key ... +checkov --image :tag --dockerfile-path /User/path/to/Dockerfile --repo-id ... --bc-api-key ... ``` Run an SCA scan of packages in a repo: @@ -278,12 +278,12 @@ checkov -d . Run secrets scanning on all files in MyDirectory. Skip CKV_SECRET_6 check on json files that their suffix is DontScan ```sh -checkov -d /MyDirectory --framework secrets --bc-api-key ... --skip-check CKV_SECRET_6:.*DontScan.json$ +checkov -d /MyDirectory --framework secrets --repo-id ... --bc-api-key ... --skip-check CKV_SECRET_6:.*DontScan.json$ ``` Run secrets scanning on all files in MyDirectory. Skip CKV_SECRET_6 check on json files that contains "skip_test" in path ```sh -checkov -d /MyDirectory --framework secrets --bc-api-key ... --skip-check CKV_SECRET_6:.*skip_test.*json$ +checkov -d /MyDirectory --framework secrets --repo-id ... --bc-api-key ... --skip-check CKV_SECRET_6:.*skip_test.*json$ ``` One can mask values from scanning results by supplying a configuration file (using --config-file flag) with mask entry. diff --git a/docs/7.Scan Examples/Git History.md b/docs/7.Scan Examples/Git History.md index 55020f59a5e..2d947e72f37 100644 --- a/docs/7.Scan Examples/Git History.md +++ b/docs/7.Scan Examples/Git History.md @@ -20,12 +20,12 @@ Use `--secrets-history-timeout` to set how long the secrets scan will run on his A run with a timeout of `12h` by default: ```bash -checkov -d --scan-secrets-history --bc-api-key +checkov -d --scan-secrets-history --bc-api-key --repo-id ``` A run with a timeout of `1h`: ```bash -checkov -d --scan-secrets-history --secrets-history-timeout 1h --bc-api-key +checkov -d --scan-secrets-history --secrets-history-timeout 1h --bc-api-key --repo-id ``` ### Example output diff --git a/docs/7.Scan Examples/Sca.md b/docs/7.Scan Examples/Sca.md index b368495a3cf..3cc02718965 100644 --- a/docs/7.Scan Examples/Sca.md +++ b/docs/7.Scan Examples/Sca.md @@ -14,7 +14,7 @@ In order to use this feature, you first need to create an [API token using Prism ## Package scanning ```bash -checkov -d . --framework sca_package --bc-api-key :: --prisma-api-url +checkov -d . --framework sca_package --bc-api-key :: --prisma-api-url --repo-id ``` ### Example output