Skip to content
/ pre-commit-checkov Public

Repository for pre-commit use of checkov, giving the option to perform checkov checks on changed files only

License

Apache-2.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Miscreancy/pre-commit-checkov

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
.pre-commit-hooks.yaml
.pre-commit-hooks.yaml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
checkov_runner.sh
checkov_runner.sh
 
 

Repository files navigation

Git pre-commit hook for use with terraform repositories and checkov

Usage

Dependencies:

pre-commit
checkov

Setup

  1. Install pre-commit with your repository with pre-commit install
  2. Create or amend the .pre-commit-config.yaml file in the root of your repository
  3. Add in configuration for this hook within the repos block, eg:
repos:
- repo: https://github.com/miscreancy/pre-commit-checkov
  rev: v0.0.1
  hooks:
    - id: checkov

Arguments

This takes any argument you hand it, and passes them to checkov.

Without any arguments passed, this will run checkov against changed \.tf$ files only; this can be overridden by providing the arguments "-d ." to scan the whole repository.

It is recommended to run this with the --quiet argument passed, as below:

repos:
- repo: https://github.com/miscreancy/pre-commit-checkov
  rev: v0.0.1
  hooks:
    - id: checkov
      args: ["--quiet"]

Contributing

Please feel free to PR and I will review. Similarly, any issues, please create a GH issue to track it.

About

Repository for pre-commit use of checkov, giving the option to perform checkov checks on changed files only

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 2

v0.0.2 - matured configuration Latest
Jan 27, 2022
+ 1 release

Packages

No packages published

Languages