How to use the checkov.terraform.models.enums.CheckCategories.NETWORKING function in checkov
To help you get started, we’ve selected a few checkov examples, based on popular ways it is used in public projects.
Secure your code as it's written. Use Snyk Code to scan source code in minutes - no build needed - and fix issues immediately.
bridgecrewio / checkov / checkov / terraform / checks / resource / aws / SecurityGroupUnrestrictedIngress3389.py View on Github 
def __init__(self):
name = "Ensure no security groups allow ingress from 0.0.0.0:0 to port %d" % PORT
id = "CKV_AWS_25"
supported_resources = ['aws_security_group']
categories = [CheckCategories.NETWORKING]
super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)def __init__(self):
name = "Ensure every security groups rule has a description"
id = "CKV_AWS_23"
supported_resource = ['aws_security_group', 'aws_security_group_rule', 'aws_db_security_group',
'aws_elasticache_security_group', 'aws_redshift_security_group']
categories = [CheckCategories.NETWORKING]
super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resource)def __init__(self):
name = "Ensure Google compute firewall ingress does not allow unrestricted rdp access"
id = "CKV_GCP_3"
supported_resources = ['google_compute_firewall']
categories = [CheckCategories.NETWORKING]
super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)def __init__(self):
name = "Ensure all data stored in the RDS bucket is not public accessible"
id = "CKV_AWS_17"
supported_resources = ['aws_db_instance','aws_rds_cluster_instance']
categories = [CheckCategories.NETWORKING]
super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)def __init__(self):
name = "Ensure Legacy Authorization is set to Disabled on Kubernetes Engine Clusters"
id = "CKV_GCP_7"
supported_resources = ['google_container_cluster']
categories = [CheckCategories.NETWORKING]
super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)def __init__(self):
name = "Ensure Google compute firewall ingress does not allow unrestricted ssh access"
id = "CKV_GCP_2"
supported_resources = ['google_compute_firewall']
categories = [CheckCategories.NETWORKING]
super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)def __init__(self):
name = "Ensure no security groups allow ingress from 0.0.0.0:0 to port %d" % PORT
id = "CKV_AWS_24"
supported_resources = ['aws_security_group']
categories = [CheckCategories.NETWORKING]
super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)
Popular checkov functions
- checkov.terraform.checks.resource.aws.ALBListenerHTTPS.check.scan_resource_conf
- checkov.terraform.checks.resource.aws.ElasticsearchNodeToNodeEncryption.check.scan_resource_conf
- checkov.terraform.checks.resource.aws.KMSRotation.check.scan_resource_conf
- checkov.terraform.checks.resource.aws.LaunchConfigurationEBSEncryption.check.scan_resource_conf
- checkov.terraform.checks.resource.aws.PasswordPolicyExpiration.check.scan_resource_conf
- checkov.terraform.checks.resource.aws.PasswordPolicyLength.check.scan_resource_conf
- checkov.terraform.checks.resource.aws.PasswordPolicyLowercaseLetter.check.scan_resource_conf
- checkov.terraform.checks.resource.aws.PasswordPolicyNumber.check.scan_resource_conf
- checkov.terraform.checks.resource.aws.PasswordPolicyReuse.check.scan_resource_conf
- checkov.terraform.checks.resource.aws.PasswordPolicySymbol.check.scan_resource_conf
- checkov.terraform.checks.resource.aws.PasswordPolicyUppercaseLetter.check.scan_resource_conf
- checkov.terraform.checks.resource.base_check.BaseResourceCheck
- checkov.terraform.checks.resource.registry.resource_registry
- checkov.terraform.models.enums.CheckCategories
- checkov.terraform.models.enums.CheckCategories.ENCRYPTION
- checkov.terraform.models.enums.CheckCategories.IAM
- checkov.terraform.models.enums.CheckCategories.NETWORKING
- checkov.terraform.models.enums.CheckResult
- checkov.terraform.models.enums.CheckResult.FAILED
- checkov.terraform.models.enums.CheckResult.PASSED