Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(general): Allow skipping multiple checks in a single line #6512

Closed
wants to merge 11 commits into from
Closed

feat(general): Allow skipping multiple checks in a single line #6512

wants to merge 11 commits into from

Conversation

shoshiGit
Copy link
Contributor

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

Description

This pull request enhances Checkov to support skipping multiple checks in a single line for Terraform configurations. Currently, individual skip comments are required for each check, which can be cumbersome. This enhancement allows specifying multiple checks to skip in a single line.

Fixes # #5381

Changes made:

Added functionality to parse multiple checks in the checkov:skip comment.
Updated documentation to reflect the new capability.

Checklist:

  • I have performed a self-review of my own code
  • I have commented my code, particularly in hard-to-understand areas
  • I have made corresponding changes to the documentation
  • I have added tests that prove my feature, policy, or fix is effective and works
  • New and existing tests pass locally with my changes

@ChanochShayner ChanochShayner changed the title feat(checkov): Allow skipping multiple checks in a single line feat(general): Allow skipping multiple checks in a single line Jun 30, 2024
ChanochShayner
ChanochShayner reviewed Jun 30, 2024
View reviewed changes
Copy link
Contributor

@ChanochShayner ChanochShayner left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good!
Please add UTs -

  • Ensure we can skip more than one violation in one line.
  • Ensure invalid addition in the line still work as expected, like - checkov:skip=CKV_AWS_4,Bla_Bla_Bla

@shoshiGit shoshiGit closed this Jul 31, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ChanochShayner ChanochShayner ChanochShayner left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@shoshiGit @ChanochShayner @itai1357 @esterKoren