Bridgecrew.io
  • About Bridgecrew by Prisma Cloud
Checkov home
  • Docs
    • Quick start
    • Overview
    • Integrations
  • Download
  • Try Bridgecrew
  • Docs
    • Quick start
    • Overview
    • Integrations

Checkov Documentation

  • 1.Welcome
    • What is Checkov?
    • Terms and Concepts
    • Quick Start
    • Feature Descriptions
  • 2.Basics
    • Installing Checkov
    • CLI Command Reference
    • Suppressing and Skipping Policies
    • Hard and soft fail
    • Scanning Credentials and Secrets
    • Reviewing Scan Results
    • Visualizing Checkov Output
    • Handling Variables
  • 3.Custom Policies
    • Custom Policies Overview
    • Python Custom Policies
    • YAML Custom Policies
    • Custom YAML Policies Examples
    • Sharing Custom Policies
  • 4.Integrations
    • Jenkins
    • Bitbucket Cloud Pipelines
    • GitHub Actions
    • GitLab CI
    • Kubernetes
    • Pre-Commit
    • Docker
  • 5.Policy Index
    • all resource scans
    • ansible resource scans
    • argo_workflows resource scans
    • arm resource scans
    • azure_pipelines resource scans
    • bicep resource scans
    • bitbucket_configuration resource scans
    • bitbucket_pipelines resource scans
    • circleci_pipelines resource scans
    • cloudformation resource scans
    • dockerfile resource scans
    • github_actions resource scans
    • github_configuration resource scans (auto generated)
    • gitlab_ci resource scans
    • gitlab_configuration resource scans
    • kubernetes resource scans
    • openapi resource scans
    • secrets resource scans
    • serverless resource scans
    • terraform resource scans
  • 6.Contribution
    • Checkov Runner Contribution Guide
    • Implementing CI Metadata extractor
    • Implementing ImageReferencer
    • Contribution Overview
    • Contribute Python-Based Policies
    • Contribute YAML-based Policies
    • Contribute New Terraform Provider
    • Contribute New Argo Workflows configuration policy
    • Contribute New Azure Pipelines configuration policy
    • Contribute New Bitbucket configuration policy
    • Contribute New GitHub configuration policy
    • Contribute New Gitlab configuration policy
  • 7.Scan Examples
    • Terraform Plan Scanning
    • Terraform Scanning
    • Helm
    • Kustomize
    • AWS SAM configuration scanning
    • Ansible configuration scanning
    • Argo Workflows configuration scanning
    • Azure ARM templates configuration scanning
    • Azure Pipelines configuration scanning
    • Azure Bicep configuration scanning
    • Bitbucket configuration scanning
    • AWS CDK configuration scanning
    • Cloudformation configuration scanning
    • Dockerfile configuration scanning
    • GitHub configuration scanning
    • Gitlab configuration scanning
    • Kubernetes configuration scanning
    • OpenAPI configuration scanning
    • SCA scanning
    • Serverless framework configuration scanning
  • 8.Outputs
    • CSV
    • CycloneDX BOM
    • GitLab SAST
    • JUnit XML
    • SARIF
  • 9.Level up
    • Upgrade from Checkov to Bridgecrew
  • Docs
  • 5.policy index
  • github_configuration resource scans
Edit on GitHub

github_configuration resource scans (auto generated)

  Id Type Entity Policy IaC Resource Link
0 CKV_GITHUB_1 github_configuration * Ensure GitHub organization security settings require 2FA github_configuration 2fa.py
1 CKV_GITHUB_2 github_configuration * Ensure GitHub organization security settings require SSO github_configuration sso.py
2 CKV_GITHUB_3 github_configuration * Ensure GitHub organization security settings has IP allow list enabled github_configuration ipallowlist.py
3 CKV_GITHUB_4 github_configuration * Ensure GitHub branch protection rules requires signed commits github_configuration require_signatures.py
4 CKV_GITHUB_5 github_configuration * Ensure GitHub branch protection rules does not allow force pushes github_configuration disallow_force_pushes.py
5 CKV_GITHUB_6 github_configuration * Ensure GitHub organization webhooks are using HTTPS github_configuration webhooks_https_orgs.py
6 CKV_GITHUB_7 github_configuration * Ensure GitHub repository webhooks are using HTTPS github_configuration webhooks_https_repos.py
7 CKV_GITHUB_8 github_configuration * Ensure GitHub branch protection rules requires linear history github_configuration require_linear_history.py
8 CKV_GITHUB_9 github_configuration * Ensure 2 admins are set for each repository github_configuration repository_collaborators.py
9 CKV_GITHUB_10 github_configuration * Ensure branch protection rules are enforced on administrators github_configuration enforce_branch_protection_admins.py
10 CKV_GITHUB_11 github_configuration * Ensure GitHub branch protection dismisses stale review on new commit github_configuration dismiss_stale_reviews.py
11 CKV_GITHUB_12 github_configuration * Ensure GitHub branch protection restricts who can dismiss PR reviews github_configuration restrict_pr_review_dismissal.py
12 CKV_GITHUB_13 github_configuration * Ensure GitHub branch protection requires CODEOWNER reviews github_configuration require_code_owner_reviews.py
13 CKV_GITHUB_14 github_configuration * Ensure all checks have passed before the merge of new code github_configuration require_status_checks_pr.py
14 CKV_GITHUB_15 github_configuration * Ensure inactive branches are reviewed and removed periodically github_configuration disallow_inactive_branch_60days.py
15 CKV_GITHUB_16 github_configuration * Ensure GitHub branch protection requires conversation resolution github_configuration require_conversation_resolution.py
16 CKV_GITHUB_17 github_configuration * Ensure GitHub branch protection requires push restrictions github_configuration require_push_restrictions.py
17 CKV_GITHUB_18 github_configuration * Ensure GitHub branch protection rules does not allow deletions github_configuration disallow_branch_deletions.py
18 CKV_GITHUB_19 github_configuration * Ensure any change to code receives approval of two strongly authenticated users github_configuration require_2approvals.py
19 CKV_GITHUB_20 github_configuration * Ensure open git branches are up to date before they can be merged into codebase github_configuration require_updated_branch_pr.py
20 CKV_GITHUB_21 github_configuration * Ensure public repository creation is limited to specific members github_configuration public_repository_creation_is_limited.py
21 CKV_GITHUB_22 github_configuration * Ensure private repository creation is limited to specific members github_configuration private_repository_creation_is_limited.py
22 CKV_GITHUB_23 github_configuration * Ensure internal repository creation is limited to specific members github_configuration internal_repository_creation_is_limited.py
23 CKV_GITHUB_26 github_configuration * Ensure minimum admins are set for the organization github_configuration minimum_admins_in_org.py
24 CKV_GITHUB_27 github_configuration * Ensure strict base permissions are set for repositories github_configuration require_strict_base_permissions_repository.py
25 CKV_GITHUB_28 github_configuration * Ensure an organization’s identity is confirmed with a Verified badge Passed github_configuration require_verified_organization.py

Powered By

  • Slack Community
  • About Bridgecrew
  • Platform
  • Terms of use
  • GitHub
  • Docs
  • Contact Us
  • Privacy policy