Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[PRP-286] Pin to infra CI to checkov latest release (v2.3.194) #67

Merged
merged 2 commits into from
Apr 24, 2023
Merged

[PRP-286] Pin to infra CI to checkov latest release (v2.3.194) #67

merged 2 commits into from
Apr 24, 2023

Conversation

rocketnova
Copy link
Contributor

@rocketnova rocketnova commented Apr 24, 2023
edited
Loading

Ticket

https://wicmtdp.atlassian.net/browse/PRP-286

Changes

What was added, updated, or removed in this PR.

  • Pin CI checkov check to latest checkov release (v2.3.194)

Context for reviewers

Testing instructions, background context, more in-depth details of the implementation, and anything else you'd like to call out or ask reviewers. Explain how the changes were verified.

Right now we’re doing infra checks against checkov@main and it’s a little bit chaos because every PR has a chance of randomly failing against brand new checkov checks. This PR pins to a specific version and https://wicmtdp.atlassian.net/browse/PRP-287 will handle updating to a future latest version.

There is currently no way to specify the checkov version to the checkov-action. See open issue: bridgecrewio/checkov-action#41

So, instead, this PR pins to:

  • Latest released version of checkov is v2.3.194
  • Latest matching release version of checkov-action is v12.2296.0

Testing

Screenshots, GIF demos, code examples or output to help show the changes working as expected. ProTip: you can drag and drop or paste images into this textbox.

See passing CI check at: https://github.com/navapbc/wic-participant-recertification-portal/actions/runs/4789903100/jobs/8518320846?pr=67

@rocketnova rocketnova changed the title Pin to latest checkov release version v2.3.194. [PRP-286] Pin to infra CI to checkov latest release (v2.3.194) Apr 24, 2023
@rocketnova rocketnova marked this pull request as ready for review April 24, 2023 18:46
@rocketnova rocketnova requested a review from aplybeah April 24, 2023 18:46
@rocketnova rocketnova merged commit 1b2ae82 into main Apr 24, 2023
@rocketnova rocketnova deleted the PRP-286-pin-infra-ci-checks-checkov branch April 24, 2023 18:50
@lorenyu lorenyu mentioned this pull request May 26, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@aplybeah aplybeah aplybeah approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@rocketnova @aplybeah