Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bridgecrew fix config: /package-files/go/go.mod and 31 more #16

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

bridgecrew-dev[bot]
Copy link

Bridgecrew has created this PR to fix supply chain risks found in the files of this project.

Changes included in this PR:

  • /package-files/go/go.mod
  • /package-files/go/go.sum
  • /package-files/ruby/package_bumping_tests/test1/Gemfile
  • /package-files/ruby/package_bumping_tests/test1/Gemfile.lock
  • /package-files/java/gradle/normal/build.gradle
  • /package-files/Pipfiles/Pipfile
  • /package-files/Pipfiles/Pipfile.lock
  • /main.tf:aws_s3_bucket.data
  • /main.tf:aws_s3_bucket.data_log_bucket
  • /main.tf:aws_s3_bucket.data_log_bucket
  • /main.tf:aws_s3_bucket.data_log_bucket
  • /main.tf:aws_s3_bucket.data_log_bucket
  • /main.tf:aws_s3_bucket.data_science
  • /main.tf:aws_s3_bucket.destination
  • /main.tf:aws_s3_bucket.destination
  • /main.tf:aws_s3_bucket.destination
  • /main.tf:aws_s3_bucket.destination
  • /main.tf:aws_s3_bucket.destination
  • /main.tf:aws_s3_bucket.financials
  • /main.tf:aws_s3_bucket.financials_log_bucket
  • /main.tf:aws_s3_bucket.financials_log_bucket
  • /main.tf:aws_s3_bucket.financials_log_bucket
  • /main.tf:aws_s3_bucket.financials_log_bucket
  • /main.tf:aws_s3_bucket.logs_log_bucket
  • /main.tf:aws_s3_bucket.logs_log_bucket
  • /main.tf:aws_s3_bucket.logs_log_bucket
  • /main.tf:aws_s3_bucket.logs_log_bucket
  • /main.tf:aws_s3_bucket.operations
  • /main.tf:aws_s3_bucket.operations_log_bucket
  • /main.tf:aws_s3_bucket.operations_log_bucket
  • /main.tf:aws_s3_bucket.operations_log_bucket
  • /main.tf:aws_s3_bucket.operations_log_bucket

Below are the Policies fixed in this PR:

🌈 Policy ✨ Details
Ensure all data stored in the S3 bucket is securely encrypted at rest View
Ensure the S3 bucket has access logging enabled View
Packages scan found vulnerabilities View
Ensure all data stored in the S3 bucket have versioning enabled View
Ensure that S3 buckets are encrypted with KMS by default View
Ensure that S3 bucket has cross-region replication enabled View
Please check the changes in this PR to ensure they do not introduce conflicts to your project.

For more information:
View this repository's Supply Chain Graph👀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants