From b62e297bad2d6178d1adfc5e312a569c6aa77d4d Mon Sep 17 00:00:00 2001
From: Kuemjong Jeong <gsniper777@gmail.com>
Date: Mon, 3 Oct 2022 00:57:42 +0900
Subject: [PATCH] feat(terraform): add CKV_NCP_1 about lb target group health
 check, CKV_NCP_2 about access control group description (#3569)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* [22.09.27][추가] CKV_NCP_1

* [22.09.27][추가] CKV_NCP_2

* Apply suggestions from code review

Co-authored-by: Anton Grübel <anton.gruebel@gmail.com>

* Apply suggestions from code review

Co-authored-by: Anton Grübel <anton.gruebel@gmail.com>

* Apply suggestions from code review

Co-authored-by: Anton Grübel <anton.gruebel@gmail.com>

* Create main.yml

* [22.09.28][수정] Lint test

* Delete main.yml

* [22.09.29][수정]testcode 수정

* [22.09.29][수정] 테스트 코드 수정

* [22.09.29][수정] 테스트코드 수정

* [22.09.29][수정] add test resource for 'ncloud_access_control_group_rule'

Co-authored-by: pj991207 <pj991207@gmail.com>
Co-authored-by: Anton Grübel <anton.gruebel@gmail.com>
---
 docs/5.Policy Index/all.md       | 269 ++++++++++++++++---------------
 docs/5.Policy Index/terraform.md | 217 +++++++++++++------------
 2 files changed, 246 insertions(+), 240 deletions(-)

diff --git a/docs/5.Policy Index/all.md b/docs/5.Policy Index/all.md
index 40bcc39729b..b43c2afe8e7 100644
--- a/docs/5.Policy Index/all.md	
+++ b/docs/5.Policy Index/all.md	
@@ -2718,139 +2718,142 @@ nav_order: 1
 | 2707 | CKV_LIN_4                | resource                         | linode_user                                                                                      | Ensure username is set                                                                                                                                                                                   | Terraform               |
 | 2708 | CKV_LIN_5                | resource                         | linode_firewall                                                                                  | Ensure Inbound Firewall Policy is not set to ACCEPT                                                                                                                                                      | Terraform               |
 | 2709 | CKV_LIN_6                | resource                         | linode_firewall                                                                                  | Ensure Outbound Firewall Policy is not set to ACCEPT                                                                                                                                                     | Terraform               |
-| 2710 | CKV_OCI_1                | provider                         | oci                                                                                              | Ensure no hard coded OCI private key in provider                                                                                                                                                         | Terraform               |
-| 2711 | CKV_OCI_2                | resource                         | oci_core_volume                                                                                  | Ensure OCI Block Storage Block Volume has backup enabled                                                                                                                                                 | Terraform               |
-| 2712 | CKV_OCI_3                | resource                         | oci_core_volume                                                                                  | OCI Block Storage Block Volumes are not encrypted with a Customer Managed Key (CMK)                                                                                                                      | Terraform               |
-| 2713 | CKV_OCI_4                | resource                         | oci_core_instance                                                                                | Ensure OCI Compute Instance boot volume has in-transit data encryption enabled                                                                                                                           | Terraform               |
-| 2714 | CKV_OCI_5                | resource                         | oci_core_instance                                                                                | Ensure OCI Compute Instance has Legacy MetaData service endpoint disabled                                                                                                                                | Terraform               |
-| 2715 | CKV_OCI_6                | resource                         | oci_core_instance                                                                                | Ensure OCI Compute Instance has monitoring enabled                                                                                                                                                       | Terraform               |
-| 2716 | CKV_OCI_7                | resource                         | oci_objectstorage_bucket                                                                         | Ensure OCI Object Storage bucket can emit object events                                                                                                                                                  | Terraform               |
-| 2717 | CKV_OCI_8                | resource                         | oci_objectstorage_bucket                                                                         | Ensure OCI Object Storage has versioning enabled                                                                                                                                                         | Terraform               |
-| 2718 | CKV_OCI_9                | resource                         | oci_objectstorage_bucket                                                                         | Ensure OCI Object Storage is encrypted with Customer Managed Key                                                                                                                                         | Terraform               |
-| 2719 | CKV_OCI_10               | resource                         | oci_objectstorage_bucket                                                                         | Ensure OCI Object Storage is not Public                                                                                                                                                                  | Terraform               |
-| 2720 | CKV_OCI_11               | resource                         | oci_identity_authentication_policy                                                               | OCI IAM password policy - must contain lower case                                                                                                                                                        | Terraform               |
-| 2721 | CKV_OCI_12               | resource                         | oci_identity_authentication_policy                                                               | OCI IAM password policy - must contain Numeric characters                                                                                                                                                | Terraform               |
-| 2722 | CKV_OCI_13               | resource                         | oci_identity_authentication_policy                                                               | OCI IAM password policy - must contain Special characters                                                                                                                                                | Terraform               |
-| 2723 | CKV_OCI_14               | resource                         | oci_identity_authentication_policy                                                               | OCI IAM password policy - must contain Uppercase characters                                                                                                                                              | Terraform               |
-| 2724 | CKV_OCI_15               | resource                         | oci_file_storage_file_system                                                                     | Ensure OCI File System is Encrypted with a customer Managed Key                                                                                                                                          | Terraform               |
-| 2725 | CKV_OCI_16               | resource                         | oci_core_security_list                                                                           | Ensure VCN has an inbound security list                                                                                                                                                                  | Terraform               |
-| 2726 | CKV_OCI_17               | resource                         | oci_core_security_list                                                                           | Ensure VCN inbound security lists are stateless                                                                                                                                                          | Terraform               |
-| 2727 | CKV_OCI_18               | resource                         | oci_identity_authentication_policy                                                               | OCI IAM password policy for local (non-federated) users has a minimum length of 14 characters                                                                                                            | Terraform               |
-| 2728 | CKV_OCI_19               | resource                         | oci_core_security_list                                                                           | Ensure no security list allow ingress from 0.0.0.0:0 to port 22.                                                                                                                                         | Terraform               |
-| 2729 | CKV_OCI_20               | resource                         | oci_core_security_list                                                                           | Ensure no security list allow ingress from 0.0.0.0:0 to port 3389.                                                                                                                                       | Terraform               |
-| 2730 | CKV_OCI_21               | resource                         | oci_core_network_security_group_security_rule                                                    | Ensure security group has stateless ingress security rules                                                                                                                                               | Terraform               |
-| 2731 | CKV_OCI_22               | resource                         | oci_core_network_security_group_security_rule                                                    | Ensure no security groups rules allow ingress from 0.0.0.0/0 to port 22                                                                                                                                  | Terraform               |
-| 2732 | CKV2_OCI_1               | resource                         | oci_identity_group                                                                               | Ensure administrator users are not associated with API keys                                                                                                                                              | Terraform               |
-| 2733 | CKV2_OCI_1               | resource                         | oci_identity_user                                                                                | Ensure administrator users are not associated with API keys                                                                                                                                              | Terraform               |
-| 2734 | CKV2_OCI_1               | resource                         | oci_identity_user_group_membership                                                               | Ensure administrator users are not associated with API keys                                                                                                                                              | Terraform               |
-| 2735 | CKV_OPENAPI_1            | resource                         | securityDefinitions                                                                              | Ensure that securityDefinitions is defined and not empty - version 2.0 files                                                                                                                             | OpenAPI                 |
-| 2736 | CKV_OPENAPI_2            | resource                         | security                                                                                         | Ensure that if the security scheme is not of type 'oauth2', the array value must be empty - version 2.0 files                                                                                            | OpenAPI                 |
-| 2737 | CKV_OPENAPI_3            | resource                         | components                                                                                       | Ensure that security schemes don't allow cleartext credentials over unencrypted channel - version 3.x.y files                                                                                            | OpenAPI                 |
-| 2738 | CKV_OPENAPI_4            | resource                         | security                                                                                         | Ensure that the global security field has rules defined                                                                                                                                                  | OpenAPI                 |
-| 2739 | CKV_OPENAPI_5            | resource                         | security                                                                                         | Ensure that security operations is not empty.                                                                                                                                                            | OpenAPI                 |
-| 2740 | CKV_OPENAPI_6            | resource                         | security                                                                                         | Ensure that security requirement defined in securityDefinitions - version 2.0 files                                                                                                                      | OpenAPI                 |
-| 2741 | CKV_OPENAPI_7            | resource                         | security                                                                                         | Ensure that the path scheme does not support unencrypted HTTP connection where all transmissions are open to interception- version 2.0 files                                                             | OpenAPI                 |
-| 2742 | CKV_OPENSTACK_1          | provider                         | openstack                                                                                        | Ensure no hard coded OpenStack password, token, or application_credential_secret exists in provider                                                                                                      | Terraform               |
-| 2743 | CKV_OPENSTACK_2          | resource                         | openstack_compute_secgroup_v2                                                                    | Ensure no security groups allow ingress from 0.0.0.0:0 to port 22 (tcp / udp)                                                                                                                            | Terraform               |
-| 2744 | CKV_OPENSTACK_2          | resource                         | openstack_networking_secgroup_rule_v2                                                            | Ensure no security groups allow ingress from 0.0.0.0:0 to port 22 (tcp / udp)                                                                                                                            | Terraform               |
-| 2745 | CKV_OPENSTACK_3          | resource                         | openstack_compute_secgroup_v2                                                                    | Ensure no security groups allow ingress from 0.0.0.0:0 to port 3389 (tcp / udp)                                                                                                                          | Terraform               |
-| 2746 | CKV_OPENSTACK_3          | resource                         | openstack_networking_secgroup_rule_v2                                                            | Ensure no security groups allow ingress from 0.0.0.0:0 to port 3389 (tcp / udp)                                                                                                                          | Terraform               |
-| 2747 | CKV_OPENSTACK_4          | resource                         | openstack_compute_instance_v2                                                                    | Ensure that instance does not use basic credentials                                                                                                                                                      | Terraform               |
-| 2748 | CKV_OPENSTACK_5          | resource                         | openstack_fw_rule_v1                                                                             | Ensure firewall rule set a destination IP                                                                                                                                                                | Terraform               |
-| 2749 | CKV_PAN_1                | provider                         | panos                                                                                            | Ensure no hard coded PAN-OS credentials exist in provider                                                                                                                                                | Terraform               |
-| 2750 | CKV_PAN_2                | resource                         | panos_management_profile                                                                         | Ensure plain-text management HTTP is not enabled for an Interface Management Profile                                                                                                                     | Terraform               |
-| 2751 | CKV_PAN_3                | resource                         | panos_management_profile                                                                         | Ensure plain-text management Telnet is not enabled for an Interface Management Profile                                                                                                                   | Terraform               |
-| 2752 | CKV_PAN_4                | resource                         | panos_security_policy                                                                            | Ensure DSRI is not enabled within security policies                                                                                                                                                      | Terraform               |
-| 2753 | CKV_PAN_4                | resource                         | panos_security_rule_group                                                                        | Ensure DSRI is not enabled within security policies                                                                                                                                                      | Terraform               |
-| 2754 | CKV_PAN_5                | resource                         | panos_security_policy                                                                            | Ensure security rules do not have 'applications' set to 'any'                                                                                                                                            | Terraform               |
-| 2755 | CKV_PAN_5                | resource                         | panos_security_rule_group                                                                        | Ensure security rules do not have 'applications' set to 'any'                                                                                                                                            | Terraform               |
-| 2756 | CKV_PAN_6                | resource                         | panos_security_policy                                                                            | Ensure security rules do not have 'services' set to 'any'                                                                                                                                                | Terraform               |
-| 2757 | CKV_PAN_6                | resource                         | panos_security_rule_group                                                                        | Ensure security rules do not have 'services' set to 'any'                                                                                                                                                | Terraform               |
-| 2758 | CKV_PAN_7                | resource                         | panos_security_policy                                                                            | Ensure security rules do not have 'source_addresses' and 'destination_addresses' both containing values of 'any'                                                                                         | Terraform               |
-| 2759 | CKV_PAN_7                | resource                         | panos_security_rule_group                                                                        | Ensure security rules do not have 'source_addresses' and 'destination_addresses' both containing values of 'any'                                                                                         | Terraform               |
-| 2760 | CKV_PAN_8                | resource                         | panos_security_policy                                                                            | Ensure description is populated within security policies                                                                                                                                                 | Terraform               |
-| 2761 | CKV_PAN_8                | resource                         | panos_security_rule_group                                                                        | Ensure description is populated within security policies                                                                                                                                                 | Terraform               |
-| 2762 | CKV_PAN_9                | resource                         | panos_security_policy                                                                            | Ensure a Log Forwarding Profile is selected for each security policy rule                                                                                                                                | Terraform               |
-| 2763 | CKV_PAN_9                | resource                         | panos_security_rule_group                                                                        | Ensure a Log Forwarding Profile is selected for each security policy rule                                                                                                                                | Terraform               |
-| 2764 | CKV_PAN_10               | resource                         | panos_security_policy                                                                            | Ensure logging at session end is enabled within security policies                                                                                                                                        | Terraform               |
-| 2765 | CKV_PAN_10               | resource                         | panos_security_rule_group                                                                        | Ensure logging at session end is enabled within security policies                                                                                                                                        | Terraform               |
-| 2766 | CKV_PAN_11               | resource                         | panos_ipsec_crypto_profile                                                                       | Ensure IPsec profiles do not specify use of insecure encryption algorithms                                                                                                                               | Terraform               |
-| 2767 | CKV_PAN_11               | resource                         | panos_panorama_ipsec_crypto_profile                                                              | Ensure IPsec profiles do not specify use of insecure encryption algorithms                                                                                                                               | Terraform               |
-| 2768 | CKV_PAN_12               | resource                         | panos_ipsec_crypto_profile                                                                       | Ensure IPsec profiles do not specify use of insecure authentication algorithms                                                                                                                           | Terraform               |
-| 2769 | CKV_PAN_12               | resource                         | panos_panorama_ipsec_crypto_profile                                                              | Ensure IPsec profiles do not specify use of insecure authentication algorithms                                                                                                                           | Terraform               |
-| 2770 | CKV_PAN_13               | resource                         | panos_ipsec_crypto_profile                                                                       | Ensure IPsec profiles do not specify use of insecure protocols                                                                                                                                           | Terraform               |
-| 2771 | CKV_PAN_13               | resource                         | panos_panorama_ipsec_crypto_profile                                                              | Ensure IPsec profiles do not specify use of insecure protocols                                                                                                                                           | Terraform               |
-| 2772 | CKV_PAN_14               | resource                         | panos_panorama_zone                                                                              | Ensure a Zone Protection Profile is defined within Security Zones                                                                                                                                        | Terraform               |
-| 2773 | CKV_PAN_14               | resource                         | panos_zone                                                                                       | Ensure a Zone Protection Profile is defined within Security Zones                                                                                                                                        | Terraform               |
-| 2774 | CKV_PAN_14               | resource                         | panos_zone_entry                                                                                 | Ensure a Zone Protection Profile is defined within Security Zones                                                                                                                                        | Terraform               |
-| 2775 | CKV_PAN_15               | resource                         | panos_panorama_zone                                                                              | Ensure an Include ACL is defined for a Zone when User-ID is enabled                                                                                                                                      | Terraform               |
-| 2776 | CKV_PAN_15               | resource                         | panos_zone                                                                                       | Ensure an Include ACL is defined for a Zone when User-ID is enabled                                                                                                                                      | Terraform               |
-| 2777 | CKV_SECRET_1             | Artifactory Credentials          | secrets                                                                                          | Artifactory Credentials                                                                                                                                                                                  | secrets                 |
-| 2778 | CKV_SECRET_2             | AWS Access Key                   | secrets                                                                                          | AWS Access Key                                                                                                                                                                                           | secrets                 |
-| 2779 | CKV_SECRET_3             | Azure Storage Account access key | secrets                                                                                          | Azure Storage Account access key                                                                                                                                                                         | secrets                 |
-| 2780 | CKV_SECRET_4             | Basic Auth Credentials           | secrets                                                                                          | Basic Auth Credentials                                                                                                                                                                                   | secrets                 |
-| 2781 | CKV_SECRET_5             | Cloudant Credentials             | secrets                                                                                          | Cloudant Credentials                                                                                                                                                                                     | secrets                 |
-| 2782 | CKV_SECRET_6             | Base64 High Entropy String       | secrets                                                                                          | Base64 High Entropy String                                                                                                                                                                               | secrets                 |
-| 2783 | CKV_SECRET_7             | IBM Cloud IAM Key                | secrets                                                                                          | IBM Cloud IAM Key                                                                                                                                                                                        | secrets                 |
-| 2784 | CKV_SECRET_8             | IBM COS HMAC Credentials         | secrets                                                                                          | IBM COS HMAC Credentials                                                                                                                                                                                 | secrets                 |
-| 2785 | CKV_SECRET_9             | JSON Web Token                   | secrets                                                                                          | JSON Web Token                                                                                                                                                                                           | secrets                 |
-| 2786 | CKV_SECRET_10            | Secret Keyword                   | secrets                                                                                          | Secret Keyword                                                                                                                                                                                           | secrets                 |
-| 2787 | CKV_SECRET_11            | Mailchimp Access Key             | secrets                                                                                          | Mailchimp Access Key                                                                                                                                                                                     | secrets                 |
-| 2788 | CKV_SECRET_12            | NPM tokens                       | secrets                                                                                          | NPM tokens                                                                                                                                                                                               | secrets                 |
-| 2789 | CKV_SECRET_13            | Private Key                      | secrets                                                                                          | Private Key                                                                                                                                                                                              | secrets                 |
-| 2790 | CKV_SECRET_14            | Slack Token                      | secrets                                                                                          | Slack Token                                                                                                                                                                                              | secrets                 |
-| 2791 | CKV_SECRET_15            | SoftLayer Credentials            | secrets                                                                                          | SoftLayer Credentials                                                                                                                                                                                    | secrets                 |
-| 2792 | CKV_SECRET_16            | Square OAuth Secret              | secrets                                                                                          | Square OAuth Secret                                                                                                                                                                                      | secrets                 |
-| 2793 | CKV_SECRET_17            | Stripe Access Key                | secrets                                                                                          | Stripe Access Key                                                                                                                                                                                        | secrets                 |
-| 2794 | CKV_SECRET_18            | Twilio API Key                   | secrets                                                                                          | Twilio API Key                                                                                                                                                                                           | secrets                 |
-| 2795 | CKV_SECRET_19            | Hex High Entropy String          | secrets                                                                                          | Hex High Entropy String                                                                                                                                                                                  | secrets                 |
-| 2796 | CKV_YC_1                 | resource                         | yandex_mdb_clickhouse_cluster                                                                    | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
-| 2797 | CKV_YC_1                 | resource                         | yandex_mdb_elasticsearch_cluster                                                                 | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
-| 2798 | CKV_YC_1                 | resource                         | yandex_mdb_greenplum_cluster                                                                     | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
-| 2799 | CKV_YC_1                 | resource                         | yandex_mdb_kafka_cluster                                                                         | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
-| 2800 | CKV_YC_1                 | resource                         | yandex_mdb_mongodb_cluster                                                                       | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
-| 2801 | CKV_YC_1                 | resource                         | yandex_mdb_mysql_cluster                                                                         | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
-| 2802 | CKV_YC_1                 | resource                         | yandex_mdb_postgresql_cluster                                                                    | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
-| 2803 | CKV_YC_1                 | resource                         | yandex_mdb_redis_cluster                                                                         | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
-| 2804 | CKV_YC_1                 | resource                         | yandex_mdb_sqlserver_cluster                                                                     | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
-| 2805 | CKV_YC_2                 | resource                         | yandex_compute_instance                                                                          | Ensure compute instance does not have public IP.                                                                                                                                                         | Terraform               |
-| 2806 | CKV_YC_3                 | resource                         | yandex_storage_bucket                                                                            | Ensure storage bucket is encrypted.                                                                                                                                                                      | Terraform               |
-| 2807 | CKV_YC_4                 | resource                         | yandex_compute_instance                                                                          | Ensure compute instance does not have serial console enabled.                                                                                                                                            | Terraform               |
-| 2808 | CKV_YC_5                 | resource                         | yandex_kubernetes_cluster                                                                        | Ensure Kubernetes cluster does not have public IP address.                                                                                                                                               | Terraform               |
-| 2809 | CKV_YC_6                 | resource                         | yandex_kubernetes_node_group                                                                     | Ensure Kubernetes cluster node group does not have public IP addresses.                                                                                                                                  | Terraform               |
-| 2810 | CKV_YC_7                 | resource                         | yandex_kubernetes_cluster                                                                        | Ensure Kubernetes cluster auto-upgrade is enabled.                                                                                                                                                       | Terraform               |
-| 2811 | CKV_YC_8                 | resource                         | yandex_kubernetes_node_group                                                                     | Ensure Kubernetes node group auto-upgrade is enabled.                                                                                                                                                    | Terraform               |
-| 2812 | CKV_YC_9                 | resource                         | yandex_kms_symmetric_key                                                                         | Ensure KMS symmetric key is rotated.                                                                                                                                                                     | Terraform               |
-| 2813 | CKV_YC_10                | resource                         | yandex_kubernetes_cluster                                                                        | Ensure etcd database is encrypted with KMS key.                                                                                                                                                          | Terraform               |
-| 2814 | CKV_YC_11                | resource                         | yandex_compute_instance                                                                          | Ensure security group is assigned to network interface.                                                                                                                                                  | Terraform               |
-| 2815 | CKV_YC_12                | resource                         | yandex_mdb_clickhouse_cluster                                                                    | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
-| 2816 | CKV_YC_12                | resource                         | yandex_mdb_elasticsearch_cluster                                                                 | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
-| 2817 | CKV_YC_12                | resource                         | yandex_mdb_greenplum_cluster                                                                     | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
-| 2818 | CKV_YC_12                | resource                         | yandex_mdb_kafka_cluster                                                                         | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
-| 2819 | CKV_YC_12                | resource                         | yandex_mdb_mongodb_cluster                                                                       | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
-| 2820 | CKV_YC_12                | resource                         | yandex_mdb_mysql_cluster                                                                         | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
-| 2821 | CKV_YC_12                | resource                         | yandex_mdb_postgresql_cluster                                                                    | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
-| 2822 | CKV_YC_12                | resource                         | yandex_mdb_sqlserver_cluster                                                                     | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
-| 2823 | CKV_YC_13                | resource                         | yandex_resourcemanager_cloud_iam_binding                                                         | Ensure cloud member does not have elevated access.                                                                                                                                                       | Terraform               |
-| 2824 | CKV_YC_13                | resource                         | yandex_resourcemanager_cloud_iam_member                                                          | Ensure cloud member does not have elevated access.                                                                                                                                                       | Terraform               |
-| 2825 | CKV_YC_14                | resource                         | yandex_kubernetes_cluster                                                                        | Ensure security group is assigned to Kubernetes cluster.                                                                                                                                                 | Terraform               |
-| 2826 | CKV_YC_15                | resource                         | yandex_kubernetes_node_group                                                                     | Ensure security group is assigned to Kubernetes node group.                                                                                                                                              | Terraform               |
-| 2827 | CKV_YC_16                | resource                         | yandex_kubernetes_cluster                                                                        | Ensure network policy is assigned to Kubernetes cluster.                                                                                                                                                 | Terraform               |
-| 2828 | CKV_YC_17                | resource                         | yandex_storage_bucket                                                                            | Ensure storage bucket does not have public access permissions.                                                                                                                                           | Terraform               |
-| 2829 | CKV_YC_18                | resource                         | yandex_compute_instance_group                                                                    | Ensure compute instance group does not have public IP.                                                                                                                                                   | Terraform               |
-| 2830 | CKV_YC_19                | resource                         | yandex_vpc_security_group                                                                        | Ensure security group does not contain allow-all rules.                                                                                                                                                  | Terraform               |
-| 2831 | CKV_YC_20                | resource                         | yandex_vpc_security_group_rule                                                                   | Ensure security group rule is not allow-all.                                                                                                                                                             | Terraform               |
-| 2832 | CKV_YC_21                | resource                         | yandex_organizationmanager_organization_iam_binding                                              | Ensure organization member does not have elevated access.                                                                                                                                                | Terraform               |
-| 2833 | CKV_YC_21                | resource                         | yandex_organizationmanager_organization_iam_member                                               | Ensure organization member does not have elevated access.                                                                                                                                                | Terraform               |
-| 2834 | CKV_YC_22                | resource                         | yandex_compute_instance_group                                                                    | Ensure compute instance group has security group assigned.                                                                                                                                               | Terraform               |
-| 2835 | CKV_YC_23                | resource                         | yandex_resourcemanager_folder_iam_binding                                                        | Ensure folder member does not have elevated access.                                                                                                                                                      | Terraform               |
-| 2836 | CKV_YC_23                | resource                         | yandex_resourcemanager_folder_iam_member                                                         | Ensure folder member does not have elevated access.                                                                                                                                                      | Terraform               |
-| 2837 | CKV_YC_24                | resource                         | yandex_organizationmanager_organization_iam_binding                                              | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform               |
-| 2838 | CKV_YC_24                | resource                         | yandex_organizationmanager_organization_iam_member                                               | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform               |
-| 2839 | CKV_YC_24                | resource                         | yandex_resourcemanager_cloud_iam_binding                                                         | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform               |
-| 2840 | CKV_YC_24                | resource                         | yandex_resourcemanager_cloud_iam_member                                                          | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform               |
-| 2841 | CKV_YC_24                | resource                         | yandex_resourcemanager_folder_iam_binding                                                        | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform               |
-| 2842 | CKV_YC_24                | resource                         | yandex_resourcemanager_folder_iam_member                                                         | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform               |
+| 2710 | CKV_NCP_1                | resource                         | ncloud_lb_target_group                                                                           | Ensure HTTP HTTPS Target group defines Healthcheck                                                                                                                                                       | Terraform               |
+| 2711 | CKV_NCP_002              | resource                         | ncloud_access_control_group                                                                      | Ensure every access control groups rule has a description                                                                                                                                                | Terraform               |
+| 2712 | CKV_NCP_002              | resource                         | ncloud_access_control_group_rule                                                                 | Ensure every access control groups rule has a description                                                                                                                                                | Terraform               |
+| 2713 | CKV_OCI_1                | provider                         | oci                                                                                              | Ensure no hard coded OCI private key in provider                                                                                                                                                         | Terraform               |
+| 2714 | CKV_OCI_2                | resource                         | oci_core_volume                                                                                  | Ensure OCI Block Storage Block Volume has backup enabled                                                                                                                                                 | Terraform               |
+| 2715 | CKV_OCI_3                | resource                         | oci_core_volume                                                                                  | OCI Block Storage Block Volumes are not encrypted with a Customer Managed Key (CMK)                                                                                                                      | Terraform               |
+| 2716 | CKV_OCI_4                | resource                         | oci_core_instance                                                                                | Ensure OCI Compute Instance boot volume has in-transit data encryption enabled                                                                                                                           | Terraform               |
+| 2717 | CKV_OCI_5                | resource                         | oci_core_instance                                                                                | Ensure OCI Compute Instance has Legacy MetaData service endpoint disabled                                                                                                                                | Terraform               |
+| 2718 | CKV_OCI_6                | resource                         | oci_core_instance                                                                                | Ensure OCI Compute Instance has monitoring enabled                                                                                                                                                       | Terraform               |
+| 2719 | CKV_OCI_7                | resource                         | oci_objectstorage_bucket                                                                         | Ensure OCI Object Storage bucket can emit object events                                                                                                                                                  | Terraform               |
+| 2720 | CKV_OCI_8                | resource                         | oci_objectstorage_bucket                                                                         | Ensure OCI Object Storage has versioning enabled                                                                                                                                                         | Terraform               |
+| 2721 | CKV_OCI_9                | resource                         | oci_objectstorage_bucket                                                                         | Ensure OCI Object Storage is encrypted with Customer Managed Key                                                                                                                                         | Terraform               |
+| 2722 | CKV_OCI_10               | resource                         | oci_objectstorage_bucket                                                                         | Ensure OCI Object Storage is not Public                                                                                                                                                                  | Terraform               |
+| 2723 | CKV_OCI_11               | resource                         | oci_identity_authentication_policy                                                               | OCI IAM password policy - must contain lower case                                                                                                                                                        | Terraform               |
+| 2724 | CKV_OCI_12               | resource                         | oci_identity_authentication_policy                                                               | OCI IAM password policy - must contain Numeric characters                                                                                                                                                | Terraform               |
+| 2725 | CKV_OCI_13               | resource                         | oci_identity_authentication_policy                                                               | OCI IAM password policy - must contain Special characters                                                                                                                                                | Terraform               |
+| 2726 | CKV_OCI_14               | resource                         | oci_identity_authentication_policy                                                               | OCI IAM password policy - must contain Uppercase characters                                                                                                                                              | Terraform               |
+| 2727 | CKV_OCI_15               | resource                         | oci_file_storage_file_system                                                                     | Ensure OCI File System is Encrypted with a customer Managed Key                                                                                                                                          | Terraform               |
+| 2728 | CKV_OCI_16               | resource                         | oci_core_security_list                                                                           | Ensure VCN has an inbound security list                                                                                                                                                                  | Terraform               |
+| 2729 | CKV_OCI_17               | resource                         | oci_core_security_list                                                                           | Ensure VCN inbound security lists are stateless                                                                                                                                                          | Terraform               |
+| 2730 | CKV_OCI_18               | resource                         | oci_identity_authentication_policy                                                               | OCI IAM password policy for local (non-federated) users has a minimum length of 14 characters                                                                                                            | Terraform               |
+| 2731 | CKV_OCI_19               | resource                         | oci_core_security_list                                                                           | Ensure no security list allow ingress from 0.0.0.0:0 to port 22.                                                                                                                                         | Terraform               |
+| 2732 | CKV_OCI_20               | resource                         | oci_core_security_list                                                                           | Ensure no security list allow ingress from 0.0.0.0:0 to port 3389.                                                                                                                                       | Terraform               |
+| 2733 | CKV_OCI_21               | resource                         | oci_core_network_security_group_security_rule                                                    | Ensure security group has stateless ingress security rules                                                                                                                                               | Terraform               |
+| 2734 | CKV_OCI_22               | resource                         | oci_core_network_security_group_security_rule                                                    | Ensure no security groups rules allow ingress from 0.0.0.0/0 to port 22                                                                                                                                  | Terraform               |
+| 2735 | CKV2_OCI_1               | resource                         | oci_identity_group                                                                               | Ensure administrator users are not associated with API keys                                                                                                                                              | Terraform               |
+| 2736 | CKV2_OCI_1               | resource                         | oci_identity_user                                                                                | Ensure administrator users are not associated with API keys                                                                                                                                              | Terraform               |
+| 2737 | CKV2_OCI_1               | resource                         | oci_identity_user_group_membership                                                               | Ensure administrator users are not associated with API keys                                                                                                                                              | Terraform               |
+| 2738 | CKV_OPENAPI_1            | resource                         | securityDefinitions                                                                              | Ensure that securityDefinitions is defined and not empty - version 2.0 files                                                                                                                             | OpenAPI                 |
+| 2739 | CKV_OPENAPI_2            | resource                         | security                                                                                         | Ensure that if the security scheme is not of type 'oauth2', the array value must be empty - version 2.0 files                                                                                            | OpenAPI                 |
+| 2740 | CKV_OPENAPI_3            | resource                         | components                                                                                       | Ensure that security schemes don't allow cleartext credentials over unencrypted channel - version 3.x.y files                                                                                            | OpenAPI                 |
+| 2741 | CKV_OPENAPI_4            | resource                         | security                                                                                         | Ensure that the global security field has rules defined                                                                                                                                                  | OpenAPI                 |
+| 2742 | CKV_OPENAPI_5            | resource                         | security                                                                                         | Ensure that security operations is not empty.                                                                                                                                                            | OpenAPI                 |
+| 2743 | CKV_OPENAPI_6            | resource                         | security                                                                                         | Ensure that security requirement defined in securityDefinitions - version 2.0 files                                                                                                                      | OpenAPI                 |
+| 2744 | CKV_OPENAPI_7            | resource                         | security                                                                                         | Ensure that the path scheme does not support unencrypted HTTP connection where all transmissions are open to interception- version 2.0 files                                                             | OpenAPI                 |
+| 2745 | CKV_OPENSTACK_1          | provider                         | openstack                                                                                        | Ensure no hard coded OpenStack password, token, or application_credential_secret exists in provider                                                                                                      | Terraform               |
+| 2746 | CKV_OPENSTACK_2          | resource                         | openstack_compute_secgroup_v2                                                                    | Ensure no security groups allow ingress from 0.0.0.0:0 to port 22 (tcp / udp)                                                                                                                            | Terraform               |
+| 2747 | CKV_OPENSTACK_2          | resource                         | openstack_networking_secgroup_rule_v2                                                            | Ensure no security groups allow ingress from 0.0.0.0:0 to port 22 (tcp / udp)                                                                                                                            | Terraform               |
+| 2748 | CKV_OPENSTACK_3          | resource                         | openstack_compute_secgroup_v2                                                                    | Ensure no security groups allow ingress from 0.0.0.0:0 to port 3389 (tcp / udp)                                                                                                                          | Terraform               |
+| 2749 | CKV_OPENSTACK_3          | resource                         | openstack_networking_secgroup_rule_v2                                                            | Ensure no security groups allow ingress from 0.0.0.0:0 to port 3389 (tcp / udp)                                                                                                                          | Terraform               |
+| 2750 | CKV_OPENSTACK_4          | resource                         | openstack_compute_instance_v2                                                                    | Ensure that instance does not use basic credentials                                                                                                                                                      | Terraform               |
+| 2751 | CKV_OPENSTACK_5          | resource                         | openstack_fw_rule_v1                                                                             | Ensure firewall rule set a destination IP                                                                                                                                                                | Terraform               |
+| 2752 | CKV_PAN_1                | provider                         | panos                                                                                            | Ensure no hard coded PAN-OS credentials exist in provider                                                                                                                                                | Terraform               |
+| 2753 | CKV_PAN_2                | resource                         | panos_management_profile                                                                         | Ensure plain-text management HTTP is not enabled for an Interface Management Profile                                                                                                                     | Terraform               |
+| 2754 | CKV_PAN_3                | resource                         | panos_management_profile                                                                         | Ensure plain-text management Telnet is not enabled for an Interface Management Profile                                                                                                                   | Terraform               |
+| 2755 | CKV_PAN_4                | resource                         | panos_security_policy                                                                            | Ensure DSRI is not enabled within security policies                                                                                                                                                      | Terraform               |
+| 2756 | CKV_PAN_4                | resource                         | panos_security_rule_group                                                                        | Ensure DSRI is not enabled within security policies                                                                                                                                                      | Terraform               |
+| 2757 | CKV_PAN_5                | resource                         | panos_security_policy                                                                            | Ensure security rules do not have 'applications' set to 'any'                                                                                                                                            | Terraform               |
+| 2758 | CKV_PAN_5                | resource                         | panos_security_rule_group                                                                        | Ensure security rules do not have 'applications' set to 'any'                                                                                                                                            | Terraform               |
+| 2759 | CKV_PAN_6                | resource                         | panos_security_policy                                                                            | Ensure security rules do not have 'services' set to 'any'                                                                                                                                                | Terraform               |
+| 2760 | CKV_PAN_6                | resource                         | panos_security_rule_group                                                                        | Ensure security rules do not have 'services' set to 'any'                                                                                                                                                | Terraform               |
+| 2761 | CKV_PAN_7                | resource                         | panos_security_policy                                                                            | Ensure security rules do not have 'source_addresses' and 'destination_addresses' both containing values of 'any'                                                                                         | Terraform               |
+| 2762 | CKV_PAN_7                | resource                         | panos_security_rule_group                                                                        | Ensure security rules do not have 'source_addresses' and 'destination_addresses' both containing values of 'any'                                                                                         | Terraform               |
+| 2763 | CKV_PAN_8                | resource                         | panos_security_policy                                                                            | Ensure description is populated within security policies                                                                                                                                                 | Terraform               |
+| 2764 | CKV_PAN_8                | resource                         | panos_security_rule_group                                                                        | Ensure description is populated within security policies                                                                                                                                                 | Terraform               |
+| 2765 | CKV_PAN_9                | resource                         | panos_security_policy                                                                            | Ensure a Log Forwarding Profile is selected for each security policy rule                                                                                                                                | Terraform               |
+| 2766 | CKV_PAN_9                | resource                         | panos_security_rule_group                                                                        | Ensure a Log Forwarding Profile is selected for each security policy rule                                                                                                                                | Terraform               |
+| 2767 | CKV_PAN_10               | resource                         | panos_security_policy                                                                            | Ensure logging at session end is enabled within security policies                                                                                                                                        | Terraform               |
+| 2768 | CKV_PAN_10               | resource                         | panos_security_rule_group                                                                        | Ensure logging at session end is enabled within security policies                                                                                                                                        | Terraform               |
+| 2769 | CKV_PAN_11               | resource                         | panos_ipsec_crypto_profile                                                                       | Ensure IPsec profiles do not specify use of insecure encryption algorithms                                                                                                                               | Terraform               |
+| 2770 | CKV_PAN_11               | resource                         | panos_panorama_ipsec_crypto_profile                                                              | Ensure IPsec profiles do not specify use of insecure encryption algorithms                                                                                                                               | Terraform               |
+| 2771 | CKV_PAN_12               | resource                         | panos_ipsec_crypto_profile                                                                       | Ensure IPsec profiles do not specify use of insecure authentication algorithms                                                                                                                           | Terraform               |
+| 2772 | CKV_PAN_12               | resource                         | panos_panorama_ipsec_crypto_profile                                                              | Ensure IPsec profiles do not specify use of insecure authentication algorithms                                                                                                                           | Terraform               |
+| 2773 | CKV_PAN_13               | resource                         | panos_ipsec_crypto_profile                                                                       | Ensure IPsec profiles do not specify use of insecure protocols                                                                                                                                           | Terraform               |
+| 2774 | CKV_PAN_13               | resource                         | panos_panorama_ipsec_crypto_profile                                                              | Ensure IPsec profiles do not specify use of insecure protocols                                                                                                                                           | Terraform               |
+| 2775 | CKV_PAN_14               | resource                         | panos_panorama_zone                                                                              | Ensure a Zone Protection Profile is defined within Security Zones                                                                                                                                        | Terraform               |
+| 2776 | CKV_PAN_14               | resource                         | panos_zone                                                                                       | Ensure a Zone Protection Profile is defined within Security Zones                                                                                                                                        | Terraform               |
+| 2777 | CKV_PAN_14               | resource                         | panos_zone_entry                                                                                 | Ensure a Zone Protection Profile is defined within Security Zones                                                                                                                                        | Terraform               |
+| 2778 | CKV_PAN_15               | resource                         | panos_panorama_zone                                                                              | Ensure an Include ACL is defined for a Zone when User-ID is enabled                                                                                                                                      | Terraform               |
+| 2779 | CKV_PAN_15               | resource                         | panos_zone                                                                                       | Ensure an Include ACL is defined for a Zone when User-ID is enabled                                                                                                                                      | Terraform               |
+| 2780 | CKV_SECRET_1             | Artifactory Credentials          | secrets                                                                                          | Artifactory Credentials                                                                                                                                                                                  | secrets                 |
+| 2781 | CKV_SECRET_2             | AWS Access Key                   | secrets                                                                                          | AWS Access Key                                                                                                                                                                                           | secrets                 |
+| 2782 | CKV_SECRET_3             | Azure Storage Account access key | secrets                                                                                          | Azure Storage Account access key                                                                                                                                                                         | secrets                 |
+| 2783 | CKV_SECRET_4             | Basic Auth Credentials           | secrets                                                                                          | Basic Auth Credentials                                                                                                                                                                                   | secrets                 |
+| 2784 | CKV_SECRET_5             | Cloudant Credentials             | secrets                                                                                          | Cloudant Credentials                                                                                                                                                                                     | secrets                 |
+| 2785 | CKV_SECRET_6             | Base64 High Entropy String       | secrets                                                                                          | Base64 High Entropy String                                                                                                                                                                               | secrets                 |
+| 2786 | CKV_SECRET_7             | IBM Cloud IAM Key                | secrets                                                                                          | IBM Cloud IAM Key                                                                                                                                                                                        | secrets                 |
+| 2787 | CKV_SECRET_8             | IBM COS HMAC Credentials         | secrets                                                                                          | IBM COS HMAC Credentials                                                                                                                                                                                 | secrets                 |
+| 2788 | CKV_SECRET_9             | JSON Web Token                   | secrets                                                                                          | JSON Web Token                                                                                                                                                                                           | secrets                 |
+| 2789 | CKV_SECRET_10            | Secret Keyword                   | secrets                                                                                          | Secret Keyword                                                                                                                                                                                           | secrets                 |
+| 2790 | CKV_SECRET_11            | Mailchimp Access Key             | secrets                                                                                          | Mailchimp Access Key                                                                                                                                                                                     | secrets                 |
+| 2791 | CKV_SECRET_12            | NPM tokens                       | secrets                                                                                          | NPM tokens                                                                                                                                                                                               | secrets                 |
+| 2792 | CKV_SECRET_13            | Private Key                      | secrets                                                                                          | Private Key                                                                                                                                                                                              | secrets                 |
+| 2793 | CKV_SECRET_14            | Slack Token                      | secrets                                                                                          | Slack Token                                                                                                                                                                                              | secrets                 |
+| 2794 | CKV_SECRET_15            | SoftLayer Credentials            | secrets                                                                                          | SoftLayer Credentials                                                                                                                                                                                    | secrets                 |
+| 2795 | CKV_SECRET_16            | Square OAuth Secret              | secrets                                                                                          | Square OAuth Secret                                                                                                                                                                                      | secrets                 |
+| 2796 | CKV_SECRET_17            | Stripe Access Key                | secrets                                                                                          | Stripe Access Key                                                                                                                                                                                        | secrets                 |
+| 2797 | CKV_SECRET_18            | Twilio API Key                   | secrets                                                                                          | Twilio API Key                                                                                                                                                                                           | secrets                 |
+| 2798 | CKV_SECRET_19            | Hex High Entropy String          | secrets                                                                                          | Hex High Entropy String                                                                                                                                                                                  | secrets                 |
+| 2799 | CKV_YC_1                 | resource                         | yandex_mdb_clickhouse_cluster                                                                    | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
+| 2800 | CKV_YC_1                 | resource                         | yandex_mdb_elasticsearch_cluster                                                                 | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
+| 2801 | CKV_YC_1                 | resource                         | yandex_mdb_greenplum_cluster                                                                     | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
+| 2802 | CKV_YC_1                 | resource                         | yandex_mdb_kafka_cluster                                                                         | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
+| 2803 | CKV_YC_1                 | resource                         | yandex_mdb_mongodb_cluster                                                                       | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
+| 2804 | CKV_YC_1                 | resource                         | yandex_mdb_mysql_cluster                                                                         | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
+| 2805 | CKV_YC_1                 | resource                         | yandex_mdb_postgresql_cluster                                                                    | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
+| 2806 | CKV_YC_1                 | resource                         | yandex_mdb_redis_cluster                                                                         | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
+| 2807 | CKV_YC_1                 | resource                         | yandex_mdb_sqlserver_cluster                                                                     | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform               |
+| 2808 | CKV_YC_2                 | resource                         | yandex_compute_instance                                                                          | Ensure compute instance does not have public IP.                                                                                                                                                         | Terraform               |
+| 2809 | CKV_YC_3                 | resource                         | yandex_storage_bucket                                                                            | Ensure storage bucket is encrypted.                                                                                                                                                                      | Terraform               |
+| 2810 | CKV_YC_4                 | resource                         | yandex_compute_instance                                                                          | Ensure compute instance does not have serial console enabled.                                                                                                                                            | Terraform               |
+| 2811 | CKV_YC_5                 | resource                         | yandex_kubernetes_cluster                                                                        | Ensure Kubernetes cluster does not have public IP address.                                                                                                                                               | Terraform               |
+| 2812 | CKV_YC_6                 | resource                         | yandex_kubernetes_node_group                                                                     | Ensure Kubernetes cluster node group does not have public IP addresses.                                                                                                                                  | Terraform               |
+| 2813 | CKV_YC_7                 | resource                         | yandex_kubernetes_cluster                                                                        | Ensure Kubernetes cluster auto-upgrade is enabled.                                                                                                                                                       | Terraform               |
+| 2814 | CKV_YC_8                 | resource                         | yandex_kubernetes_node_group                                                                     | Ensure Kubernetes node group auto-upgrade is enabled.                                                                                                                                                    | Terraform               |
+| 2815 | CKV_YC_9                 | resource                         | yandex_kms_symmetric_key                                                                         | Ensure KMS symmetric key is rotated.                                                                                                                                                                     | Terraform               |
+| 2816 | CKV_YC_10                | resource                         | yandex_kubernetes_cluster                                                                        | Ensure etcd database is encrypted with KMS key.                                                                                                                                                          | Terraform               |
+| 2817 | CKV_YC_11                | resource                         | yandex_compute_instance                                                                          | Ensure security group is assigned to network interface.                                                                                                                                                  | Terraform               |
+| 2818 | CKV_YC_12                | resource                         | yandex_mdb_clickhouse_cluster                                                                    | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
+| 2819 | CKV_YC_12                | resource                         | yandex_mdb_elasticsearch_cluster                                                                 | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
+| 2820 | CKV_YC_12                | resource                         | yandex_mdb_greenplum_cluster                                                                     | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
+| 2821 | CKV_YC_12                | resource                         | yandex_mdb_kafka_cluster                                                                         | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
+| 2822 | CKV_YC_12                | resource                         | yandex_mdb_mongodb_cluster                                                                       | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
+| 2823 | CKV_YC_12                | resource                         | yandex_mdb_mysql_cluster                                                                         | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
+| 2824 | CKV_YC_12                | resource                         | yandex_mdb_postgresql_cluster                                                                    | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
+| 2825 | CKV_YC_12                | resource                         | yandex_mdb_sqlserver_cluster                                                                     | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform               |
+| 2826 | CKV_YC_13                | resource                         | yandex_resourcemanager_cloud_iam_binding                                                         | Ensure cloud member does not have elevated access.                                                                                                                                                       | Terraform               |
+| 2827 | CKV_YC_13                | resource                         | yandex_resourcemanager_cloud_iam_member                                                          | Ensure cloud member does not have elevated access.                                                                                                                                                       | Terraform               |
+| 2828 | CKV_YC_14                | resource                         | yandex_kubernetes_cluster                                                                        | Ensure security group is assigned to Kubernetes cluster.                                                                                                                                                 | Terraform               |
+| 2829 | CKV_YC_15                | resource                         | yandex_kubernetes_node_group                                                                     | Ensure security group is assigned to Kubernetes node group.                                                                                                                                              | Terraform               |
+| 2830 | CKV_YC_16                | resource                         | yandex_kubernetes_cluster                                                                        | Ensure network policy is assigned to Kubernetes cluster.                                                                                                                                                 | Terraform               |
+| 2831 | CKV_YC_17                | resource                         | yandex_storage_bucket                                                                            | Ensure storage bucket does not have public access permissions.                                                                                                                                           | Terraform               |
+| 2832 | CKV_YC_18                | resource                         | yandex_compute_instance_group                                                                    | Ensure compute instance group does not have public IP.                                                                                                                                                   | Terraform               |
+| 2833 | CKV_YC_19                | resource                         | yandex_vpc_security_group                                                                        | Ensure security group does not contain allow-all rules.                                                                                                                                                  | Terraform               |
+| 2834 | CKV_YC_20                | resource                         | yandex_vpc_security_group_rule                                                                   | Ensure security group rule is not allow-all.                                                                                                                                                             | Terraform               |
+| 2835 | CKV_YC_21                | resource                         | yandex_organizationmanager_organization_iam_binding                                              | Ensure organization member does not have elevated access.                                                                                                                                                | Terraform               |
+| 2836 | CKV_YC_21                | resource                         | yandex_organizationmanager_organization_iam_member                                               | Ensure organization member does not have elevated access.                                                                                                                                                | Terraform               |
+| 2837 | CKV_YC_22                | resource                         | yandex_compute_instance_group                                                                    | Ensure compute instance group has security group assigned.                                                                                                                                               | Terraform               |
+| 2838 | CKV_YC_23                | resource                         | yandex_resourcemanager_folder_iam_binding                                                        | Ensure folder member does not have elevated access.                                                                                                                                                      | Terraform               |
+| 2839 | CKV_YC_23                | resource                         | yandex_resourcemanager_folder_iam_member                                                         | Ensure folder member does not have elevated access.                                                                                                                                                      | Terraform               |
+| 2840 | CKV_YC_24                | resource                         | yandex_organizationmanager_organization_iam_binding                                              | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform               |
+| 2841 | CKV_YC_24                | resource                         | yandex_organizationmanager_organization_iam_member                                               | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform               |
+| 2842 | CKV_YC_24                | resource                         | yandex_resourcemanager_cloud_iam_binding                                                         | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform               |
+| 2843 | CKV_YC_24                | resource                         | yandex_resourcemanager_cloud_iam_member                                                          | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform               |
+| 2844 | CKV_YC_24                | resource                         | yandex_resourcemanager_folder_iam_binding                                                        | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform               |
+| 2845 | CKV_YC_24                | resource                         | yandex_resourcemanager_folder_iam_member                                                         | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform               |
 
 
 ---
diff --git a/docs/5.Policy Index/terraform.md b/docs/5.Policy Index/terraform.md
index f1bfba5f930..0fa20d67cc3 100644
--- a/docs/5.Policy Index/terraform.md	
+++ b/docs/5.Policy Index/terraform.md	
@@ -1490,113 +1490,116 @@ nav_order: 1
 | 1479 | CKV_LIN_4       | resource | linode_user                                             | Ensure username is set                                                                                                                                                                                   | Terraform |
 | 1480 | CKV_LIN_5       | resource | linode_firewall                                         | Ensure Inbound Firewall Policy is not set to ACCEPT                                                                                                                                                      | Terraform |
 | 1481 | CKV_LIN_6       | resource | linode_firewall                                         | Ensure Outbound Firewall Policy is not set to ACCEPT                                                                                                                                                     | Terraform |
-| 1482 | CKV_OCI_1       | provider | oci                                                     | Ensure no hard coded OCI private key in provider                                                                                                                                                         | Terraform |
-| 1483 | CKV_OCI_2       | resource | oci_core_volume                                         | Ensure OCI Block Storage Block Volume has backup enabled                                                                                                                                                 | Terraform |
-| 1484 | CKV_OCI_3       | resource | oci_core_volume                                         | OCI Block Storage Block Volumes are not encrypted with a Customer Managed Key (CMK)                                                                                                                      | Terraform |
-| 1485 | CKV_OCI_4       | resource | oci_core_instance                                       | Ensure OCI Compute Instance boot volume has in-transit data encryption enabled                                                                                                                           | Terraform |
-| 1486 | CKV_OCI_5       | resource | oci_core_instance                                       | Ensure OCI Compute Instance has Legacy MetaData service endpoint disabled                                                                                                                                | Terraform |
-| 1487 | CKV_OCI_6       | resource | oci_core_instance                                       | Ensure OCI Compute Instance has monitoring enabled                                                                                                                                                       | Terraform |
-| 1488 | CKV_OCI_7       | resource | oci_objectstorage_bucket                                | Ensure OCI Object Storage bucket can emit object events                                                                                                                                                  | Terraform |
-| 1489 | CKV_OCI_8       | resource | oci_objectstorage_bucket                                | Ensure OCI Object Storage has versioning enabled                                                                                                                                                         | Terraform |
-| 1490 | CKV_OCI_9       | resource | oci_objectstorage_bucket                                | Ensure OCI Object Storage is encrypted with Customer Managed Key                                                                                                                                         | Terraform |
-| 1491 | CKV_OCI_10      | resource | oci_objectstorage_bucket                                | Ensure OCI Object Storage is not Public                                                                                                                                                                  | Terraform |
-| 1492 | CKV_OCI_11      | resource | oci_identity_authentication_policy                      | OCI IAM password policy - must contain lower case                                                                                                                                                        | Terraform |
-| 1493 | CKV_OCI_12      | resource | oci_identity_authentication_policy                      | OCI IAM password policy - must contain Numeric characters                                                                                                                                                | Terraform |
-| 1494 | CKV_OCI_13      | resource | oci_identity_authentication_policy                      | OCI IAM password policy - must contain Special characters                                                                                                                                                | Terraform |
-| 1495 | CKV_OCI_14      | resource | oci_identity_authentication_policy                      | OCI IAM password policy - must contain Uppercase characters                                                                                                                                              | Terraform |
-| 1496 | CKV_OCI_15      | resource | oci_file_storage_file_system                            | Ensure OCI File System is Encrypted with a customer Managed Key                                                                                                                                          | Terraform |
-| 1497 | CKV_OCI_16      | resource | oci_core_security_list                                  | Ensure VCN has an inbound security list                                                                                                                                                                  | Terraform |
-| 1498 | CKV_OCI_17      | resource | oci_core_security_list                                  | Ensure VCN inbound security lists are stateless                                                                                                                                                          | Terraform |
-| 1499 | CKV_OCI_18      | resource | oci_identity_authentication_policy                      | OCI IAM password policy for local (non-federated) users has a minimum length of 14 characters                                                                                                            | Terraform |
-| 1500 | CKV_OCI_19      | resource | oci_core_security_list                                  | Ensure no security list allow ingress from 0.0.0.0:0 to port 22.                                                                                                                                         | Terraform |
-| 1501 | CKV_OCI_20      | resource | oci_core_security_list                                  | Ensure no security list allow ingress from 0.0.0.0:0 to port 3389.                                                                                                                                       | Terraform |
-| 1502 | CKV_OCI_21      | resource | oci_core_network_security_group_security_rule           | Ensure security group has stateless ingress security rules                                                                                                                                               | Terraform |
-| 1503 | CKV_OCI_22      | resource | oci_core_network_security_group_security_rule           | Ensure no security groups rules allow ingress from 0.0.0.0/0 to port 22                                                                                                                                  | Terraform |
-| 1504 | CKV2_OCI_1      | resource | oci_identity_group                                      | Ensure administrator users are not associated with API keys                                                                                                                                              | Terraform |
-| 1505 | CKV2_OCI_1      | resource | oci_identity_user                                       | Ensure administrator users are not associated with API keys                                                                                                                                              | Terraform |
-| 1506 | CKV2_OCI_1      | resource | oci_identity_user_group_membership                      | Ensure administrator users are not associated with API keys                                                                                                                                              | Terraform |
-| 1507 | CKV_OPENSTACK_1 | provider | openstack                                               | Ensure no hard coded OpenStack password, token, or application_credential_secret exists in provider                                                                                                      | Terraform |
-| 1508 | CKV_OPENSTACK_2 | resource | openstack_compute_secgroup_v2                           | Ensure no security groups allow ingress from 0.0.0.0:0 to port 22 (tcp / udp)                                                                                                                            | Terraform |
-| 1509 | CKV_OPENSTACK_2 | resource | openstack_networking_secgroup_rule_v2                   | Ensure no security groups allow ingress from 0.0.0.0:0 to port 22 (tcp / udp)                                                                                                                            | Terraform |
-| 1510 | CKV_OPENSTACK_3 | resource | openstack_compute_secgroup_v2                           | Ensure no security groups allow ingress from 0.0.0.0:0 to port 3389 (tcp / udp)                                                                                                                          | Terraform |
-| 1511 | CKV_OPENSTACK_3 | resource | openstack_networking_secgroup_rule_v2                   | Ensure no security groups allow ingress from 0.0.0.0:0 to port 3389 (tcp / udp)                                                                                                                          | Terraform |
-| 1512 | CKV_OPENSTACK_4 | resource | openstack_compute_instance_v2                           | Ensure that instance does not use basic credentials                                                                                                                                                      | Terraform |
-| 1513 | CKV_OPENSTACK_5 | resource | openstack_fw_rule_v1                                    | Ensure firewall rule set a destination IP                                                                                                                                                                | Terraform |
-| 1514 | CKV_PAN_1       | provider | panos                                                   | Ensure no hard coded PAN-OS credentials exist in provider                                                                                                                                                | Terraform |
-| 1515 | CKV_PAN_2       | resource | panos_management_profile                                | Ensure plain-text management HTTP is not enabled for an Interface Management Profile                                                                                                                     | Terraform |
-| 1516 | CKV_PAN_3       | resource | panos_management_profile                                | Ensure plain-text management Telnet is not enabled for an Interface Management Profile                                                                                                                   | Terraform |
-| 1517 | CKV_PAN_4       | resource | panos_security_policy                                   | Ensure DSRI is not enabled within security policies                                                                                                                                                      | Terraform |
-| 1518 | CKV_PAN_4       | resource | panos_security_rule_group                               | Ensure DSRI is not enabled within security policies                                                                                                                                                      | Terraform |
-| 1519 | CKV_PAN_5       | resource | panos_security_policy                                   | Ensure security rules do not have 'applications' set to 'any'                                                                                                                                            | Terraform |
-| 1520 | CKV_PAN_5       | resource | panos_security_rule_group                               | Ensure security rules do not have 'applications' set to 'any'                                                                                                                                            | Terraform |
-| 1521 | CKV_PAN_6       | resource | panos_security_policy                                   | Ensure security rules do not have 'services' set to 'any'                                                                                                                                                | Terraform |
-| 1522 | CKV_PAN_6       | resource | panos_security_rule_group                               | Ensure security rules do not have 'services' set to 'any'                                                                                                                                                | Terraform |
-| 1523 | CKV_PAN_7       | resource | panos_security_policy                                   | Ensure security rules do not have 'source_addresses' and 'destination_addresses' both containing values of 'any'                                                                                         | Terraform |
-| 1524 | CKV_PAN_7       | resource | panos_security_rule_group                               | Ensure security rules do not have 'source_addresses' and 'destination_addresses' both containing values of 'any'                                                                                         | Terraform |
-| 1525 | CKV_PAN_8       | resource | panos_security_policy                                   | Ensure description is populated within security policies                                                                                                                                                 | Terraform |
-| 1526 | CKV_PAN_8       | resource | panos_security_rule_group                               | Ensure description is populated within security policies                                                                                                                                                 | Terraform |
-| 1527 | CKV_PAN_9       | resource | panos_security_policy                                   | Ensure a Log Forwarding Profile is selected for each security policy rule                                                                                                                                | Terraform |
-| 1528 | CKV_PAN_9       | resource | panos_security_rule_group                               | Ensure a Log Forwarding Profile is selected for each security policy rule                                                                                                                                | Terraform |
-| 1529 | CKV_PAN_10      | resource | panos_security_policy                                   | Ensure logging at session end is enabled within security policies                                                                                                                                        | Terraform |
-| 1530 | CKV_PAN_10      | resource | panos_security_rule_group                               | Ensure logging at session end is enabled within security policies                                                                                                                                        | Terraform |
-| 1531 | CKV_PAN_11      | resource | panos_ipsec_crypto_profile                              | Ensure IPsec profiles do not specify use of insecure encryption algorithms                                                                                                                               | Terraform |
-| 1532 | CKV_PAN_11      | resource | panos_panorama_ipsec_crypto_profile                     | Ensure IPsec profiles do not specify use of insecure encryption algorithms                                                                                                                               | Terraform |
-| 1533 | CKV_PAN_12      | resource | panos_ipsec_crypto_profile                              | Ensure IPsec profiles do not specify use of insecure authentication algorithms                                                                                                                           | Terraform |
-| 1534 | CKV_PAN_12      | resource | panos_panorama_ipsec_crypto_profile                     | Ensure IPsec profiles do not specify use of insecure authentication algorithms                                                                                                                           | Terraform |
-| 1535 | CKV_PAN_13      | resource | panos_ipsec_crypto_profile                              | Ensure IPsec profiles do not specify use of insecure protocols                                                                                                                                           | Terraform |
-| 1536 | CKV_PAN_13      | resource | panos_panorama_ipsec_crypto_profile                     | Ensure IPsec profiles do not specify use of insecure protocols                                                                                                                                           | Terraform |
-| 1537 | CKV_PAN_14      | resource | panos_panorama_zone                                     | Ensure a Zone Protection Profile is defined within Security Zones                                                                                                                                        | Terraform |
-| 1538 | CKV_PAN_14      | resource | panos_zone                                              | Ensure a Zone Protection Profile is defined within Security Zones                                                                                                                                        | Terraform |
-| 1539 | CKV_PAN_14      | resource | panos_zone_entry                                        | Ensure a Zone Protection Profile is defined within Security Zones                                                                                                                                        | Terraform |
-| 1540 | CKV_PAN_15      | resource | panos_panorama_zone                                     | Ensure an Include ACL is defined for a Zone when User-ID is enabled                                                                                                                                      | Terraform |
-| 1541 | CKV_PAN_15      | resource | panos_zone                                              | Ensure an Include ACL is defined for a Zone when User-ID is enabled                                                                                                                                      | Terraform |
-| 1542 | CKV_YC_1        | resource | yandex_mdb_clickhouse_cluster                           | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
-| 1543 | CKV_YC_1        | resource | yandex_mdb_elasticsearch_cluster                        | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
-| 1544 | CKV_YC_1        | resource | yandex_mdb_greenplum_cluster                            | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
-| 1545 | CKV_YC_1        | resource | yandex_mdb_kafka_cluster                                | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
-| 1546 | CKV_YC_1        | resource | yandex_mdb_mongodb_cluster                              | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
-| 1547 | CKV_YC_1        | resource | yandex_mdb_mysql_cluster                                | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
-| 1548 | CKV_YC_1        | resource | yandex_mdb_postgresql_cluster                           | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
-| 1549 | CKV_YC_1        | resource | yandex_mdb_redis_cluster                                | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
-| 1550 | CKV_YC_1        | resource | yandex_mdb_sqlserver_cluster                            | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
-| 1551 | CKV_YC_2        | resource | yandex_compute_instance                                 | Ensure compute instance does not have public IP.                                                                                                                                                         | Terraform |
-| 1552 | CKV_YC_3        | resource | yandex_storage_bucket                                   | Ensure storage bucket is encrypted.                                                                                                                                                                      | Terraform |
-| 1553 | CKV_YC_4        | resource | yandex_compute_instance                                 | Ensure compute instance does not have serial console enabled.                                                                                                                                            | Terraform |
-| 1554 | CKV_YC_5        | resource | yandex_kubernetes_cluster                               | Ensure Kubernetes cluster does not have public IP address.                                                                                                                                               | Terraform |
-| 1555 | CKV_YC_6        | resource | yandex_kubernetes_node_group                            | Ensure Kubernetes cluster node group does not have public IP addresses.                                                                                                                                  | Terraform |
-| 1556 | CKV_YC_7        | resource | yandex_kubernetes_cluster                               | Ensure Kubernetes cluster auto-upgrade is enabled.                                                                                                                                                       | Terraform |
-| 1557 | CKV_YC_8        | resource | yandex_kubernetes_node_group                            | Ensure Kubernetes node group auto-upgrade is enabled.                                                                                                                                                    | Terraform |
-| 1558 | CKV_YC_9        | resource | yandex_kms_symmetric_key                                | Ensure KMS symmetric key is rotated.                                                                                                                                                                     | Terraform |
-| 1559 | CKV_YC_10       | resource | yandex_kubernetes_cluster                               | Ensure etcd database is encrypted with KMS key.                                                                                                                                                          | Terraform |
-| 1560 | CKV_YC_11       | resource | yandex_compute_instance                                 | Ensure security group is assigned to network interface.                                                                                                                                                  | Terraform |
-| 1561 | CKV_YC_12       | resource | yandex_mdb_clickhouse_cluster                           | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
-| 1562 | CKV_YC_12       | resource | yandex_mdb_elasticsearch_cluster                        | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
-| 1563 | CKV_YC_12       | resource | yandex_mdb_greenplum_cluster                            | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
-| 1564 | CKV_YC_12       | resource | yandex_mdb_kafka_cluster                                | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
-| 1565 | CKV_YC_12       | resource | yandex_mdb_mongodb_cluster                              | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
-| 1566 | CKV_YC_12       | resource | yandex_mdb_mysql_cluster                                | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
-| 1567 | CKV_YC_12       | resource | yandex_mdb_postgresql_cluster                           | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
-| 1568 | CKV_YC_12       | resource | yandex_mdb_sqlserver_cluster                            | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
-| 1569 | CKV_YC_13       | resource | yandex_resourcemanager_cloud_iam_binding                | Ensure cloud member does not have elevated access.                                                                                                                                                       | Terraform |
-| 1570 | CKV_YC_13       | resource | yandex_resourcemanager_cloud_iam_member                 | Ensure cloud member does not have elevated access.                                                                                                                                                       | Terraform |
-| 1571 | CKV_YC_14       | resource | yandex_kubernetes_cluster                               | Ensure security group is assigned to Kubernetes cluster.                                                                                                                                                 | Terraform |
-| 1572 | CKV_YC_15       | resource | yandex_kubernetes_node_group                            | Ensure security group is assigned to Kubernetes node group.                                                                                                                                              | Terraform |
-| 1573 | CKV_YC_16       | resource | yandex_kubernetes_cluster                               | Ensure network policy is assigned to Kubernetes cluster.                                                                                                                                                 | Terraform |
-| 1574 | CKV_YC_17       | resource | yandex_storage_bucket                                   | Ensure storage bucket does not have public access permissions.                                                                                                                                           | Terraform |
-| 1575 | CKV_YC_18       | resource | yandex_compute_instance_group                           | Ensure compute instance group does not have public IP.                                                                                                                                                   | Terraform |
-| 1576 | CKV_YC_19       | resource | yandex_vpc_security_group                               | Ensure security group does not contain allow-all rules.                                                                                                                                                  | Terraform |
-| 1577 | CKV_YC_20       | resource | yandex_vpc_security_group_rule                          | Ensure security group rule is not allow-all.                                                                                                                                                             | Terraform |
-| 1578 | CKV_YC_21       | resource | yandex_organizationmanager_organization_iam_binding     | Ensure organization member does not have elevated access.                                                                                                                                                | Terraform |
-| 1579 | CKV_YC_21       | resource | yandex_organizationmanager_organization_iam_member      | Ensure organization member does not have elevated access.                                                                                                                                                | Terraform |
-| 1580 | CKV_YC_22       | resource | yandex_compute_instance_group                           | Ensure compute instance group has security group assigned.                                                                                                                                               | Terraform |
-| 1581 | CKV_YC_23       | resource | yandex_resourcemanager_folder_iam_binding               | Ensure folder member does not have elevated access.                                                                                                                                                      | Terraform |
-| 1582 | CKV_YC_23       | resource | yandex_resourcemanager_folder_iam_member                | Ensure folder member does not have elevated access.                                                                                                                                                      | Terraform |
-| 1583 | CKV_YC_24       | resource | yandex_organizationmanager_organization_iam_binding     | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform |
-| 1584 | CKV_YC_24       | resource | yandex_organizationmanager_organization_iam_member      | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform |
-| 1585 | CKV_YC_24       | resource | yandex_resourcemanager_cloud_iam_binding                | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform |
-| 1586 | CKV_YC_24       | resource | yandex_resourcemanager_cloud_iam_member                 | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform |
-| 1587 | CKV_YC_24       | resource | yandex_resourcemanager_folder_iam_binding               | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform |
-| 1588 | CKV_YC_24       | resource | yandex_resourcemanager_folder_iam_member                | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform |
+| 1482 | CKV_NCP_1       | resource | ncloud_lb_target_group                                  | Ensure HTTP HTTPS Target group defines Healthcheck                                                                                                                                                       | Terraform |
+| 1483 | CKV_NCP_002     | resource | ncloud_access_control_group                             | Ensure every access control groups rule has a description                                                                                                                                                | Terraform |
+| 1484 | CKV_NCP_002     | resource | ncloud_access_control_group_rule                        | Ensure every access control groups rule has a description                                                                                                                                                | Terraform |
+| 1485 | CKV_OCI_1       | provider | oci                                                     | Ensure no hard coded OCI private key in provider                                                                                                                                                         | Terraform |
+| 1486 | CKV_OCI_2       | resource | oci_core_volume                                         | Ensure OCI Block Storage Block Volume has backup enabled                                                                                                                                                 | Terraform |
+| 1487 | CKV_OCI_3       | resource | oci_core_volume                                         | OCI Block Storage Block Volumes are not encrypted with a Customer Managed Key (CMK)                                                                                                                      | Terraform |
+| 1488 | CKV_OCI_4       | resource | oci_core_instance                                       | Ensure OCI Compute Instance boot volume has in-transit data encryption enabled                                                                                                                           | Terraform |
+| 1489 | CKV_OCI_5       | resource | oci_core_instance                                       | Ensure OCI Compute Instance has Legacy MetaData service endpoint disabled                                                                                                                                | Terraform |
+| 1490 | CKV_OCI_6       | resource | oci_core_instance                                       | Ensure OCI Compute Instance has monitoring enabled                                                                                                                                                       | Terraform |
+| 1491 | CKV_OCI_7       | resource | oci_objectstorage_bucket                                | Ensure OCI Object Storage bucket can emit object events                                                                                                                                                  | Terraform |
+| 1492 | CKV_OCI_8       | resource | oci_objectstorage_bucket                                | Ensure OCI Object Storage has versioning enabled                                                                                                                                                         | Terraform |
+| 1493 | CKV_OCI_9       | resource | oci_objectstorage_bucket                                | Ensure OCI Object Storage is encrypted with Customer Managed Key                                                                                                                                         | Terraform |
+| 1494 | CKV_OCI_10      | resource | oci_objectstorage_bucket                                | Ensure OCI Object Storage is not Public                                                                                                                                                                  | Terraform |
+| 1495 | CKV_OCI_11      | resource | oci_identity_authentication_policy                      | OCI IAM password policy - must contain lower case                                                                                                                                                        | Terraform |
+| 1496 | CKV_OCI_12      | resource | oci_identity_authentication_policy                      | OCI IAM password policy - must contain Numeric characters                                                                                                                                                | Terraform |
+| 1497 | CKV_OCI_13      | resource | oci_identity_authentication_policy                      | OCI IAM password policy - must contain Special characters                                                                                                                                                | Terraform |
+| 1498 | CKV_OCI_14      | resource | oci_identity_authentication_policy                      | OCI IAM password policy - must contain Uppercase characters                                                                                                                                              | Terraform |
+| 1499 | CKV_OCI_15      | resource | oci_file_storage_file_system                            | Ensure OCI File System is Encrypted with a customer Managed Key                                                                                                                                          | Terraform |
+| 1500 | CKV_OCI_16      | resource | oci_core_security_list                                  | Ensure VCN has an inbound security list                                                                                                                                                                  | Terraform |
+| 1501 | CKV_OCI_17      | resource | oci_core_security_list                                  | Ensure VCN inbound security lists are stateless                                                                                                                                                          | Terraform |
+| 1502 | CKV_OCI_18      | resource | oci_identity_authentication_policy                      | OCI IAM password policy for local (non-federated) users has a minimum length of 14 characters                                                                                                            | Terraform |
+| 1503 | CKV_OCI_19      | resource | oci_core_security_list                                  | Ensure no security list allow ingress from 0.0.0.0:0 to port 22.                                                                                                                                         | Terraform |
+| 1504 | CKV_OCI_20      | resource | oci_core_security_list                                  | Ensure no security list allow ingress from 0.0.0.0:0 to port 3389.                                                                                                                                       | Terraform |
+| 1505 | CKV_OCI_21      | resource | oci_core_network_security_group_security_rule           | Ensure security group has stateless ingress security rules                                                                                                                                               | Terraform |
+| 1506 | CKV_OCI_22      | resource | oci_core_network_security_group_security_rule           | Ensure no security groups rules allow ingress from 0.0.0.0/0 to port 22                                                                                                                                  | Terraform |
+| 1507 | CKV2_OCI_1      | resource | oci_identity_group                                      | Ensure administrator users are not associated with API keys                                                                                                                                              | Terraform |
+| 1508 | CKV2_OCI_1      | resource | oci_identity_user                                       | Ensure administrator users are not associated with API keys                                                                                                                                              | Terraform |
+| 1509 | CKV2_OCI_1      | resource | oci_identity_user_group_membership                      | Ensure administrator users are not associated with API keys                                                                                                                                              | Terraform |
+| 1510 | CKV_OPENSTACK_1 | provider | openstack                                               | Ensure no hard coded OpenStack password, token, or application_credential_secret exists in provider                                                                                                      | Terraform |
+| 1511 | CKV_OPENSTACK_2 | resource | openstack_compute_secgroup_v2                           | Ensure no security groups allow ingress from 0.0.0.0:0 to port 22 (tcp / udp)                                                                                                                            | Terraform |
+| 1512 | CKV_OPENSTACK_2 | resource | openstack_networking_secgroup_rule_v2                   | Ensure no security groups allow ingress from 0.0.0.0:0 to port 22 (tcp / udp)                                                                                                                            | Terraform |
+| 1513 | CKV_OPENSTACK_3 | resource | openstack_compute_secgroup_v2                           | Ensure no security groups allow ingress from 0.0.0.0:0 to port 3389 (tcp / udp)                                                                                                                          | Terraform |
+| 1514 | CKV_OPENSTACK_3 | resource | openstack_networking_secgroup_rule_v2                   | Ensure no security groups allow ingress from 0.0.0.0:0 to port 3389 (tcp / udp)                                                                                                                          | Terraform |
+| 1515 | CKV_OPENSTACK_4 | resource | openstack_compute_instance_v2                           | Ensure that instance does not use basic credentials                                                                                                                                                      | Terraform |
+| 1516 | CKV_OPENSTACK_5 | resource | openstack_fw_rule_v1                                    | Ensure firewall rule set a destination IP                                                                                                                                                                | Terraform |
+| 1517 | CKV_PAN_1       | provider | panos                                                   | Ensure no hard coded PAN-OS credentials exist in provider                                                                                                                                                | Terraform |
+| 1518 | CKV_PAN_2       | resource | panos_management_profile                                | Ensure plain-text management HTTP is not enabled for an Interface Management Profile                                                                                                                     | Terraform |
+| 1519 | CKV_PAN_3       | resource | panos_management_profile                                | Ensure plain-text management Telnet is not enabled for an Interface Management Profile                                                                                                                   | Terraform |
+| 1520 | CKV_PAN_4       | resource | panos_security_policy                                   | Ensure DSRI is not enabled within security policies                                                                                                                                                      | Terraform |
+| 1521 | CKV_PAN_4       | resource | panos_security_rule_group                               | Ensure DSRI is not enabled within security policies                                                                                                                                                      | Terraform |
+| 1522 | CKV_PAN_5       | resource | panos_security_policy                                   | Ensure security rules do not have 'applications' set to 'any'                                                                                                                                            | Terraform |
+| 1523 | CKV_PAN_5       | resource | panos_security_rule_group                               | Ensure security rules do not have 'applications' set to 'any'                                                                                                                                            | Terraform |
+| 1524 | CKV_PAN_6       | resource | panos_security_policy                                   | Ensure security rules do not have 'services' set to 'any'                                                                                                                                                | Terraform |
+| 1525 | CKV_PAN_6       | resource | panos_security_rule_group                               | Ensure security rules do not have 'services' set to 'any'                                                                                                                                                | Terraform |
+| 1526 | CKV_PAN_7       | resource | panos_security_policy                                   | Ensure security rules do not have 'source_addresses' and 'destination_addresses' both containing values of 'any'                                                                                         | Terraform |
+| 1527 | CKV_PAN_7       | resource | panos_security_rule_group                               | Ensure security rules do not have 'source_addresses' and 'destination_addresses' both containing values of 'any'                                                                                         | Terraform |
+| 1528 | CKV_PAN_8       | resource | panos_security_policy                                   | Ensure description is populated within security policies                                                                                                                                                 | Terraform |
+| 1529 | CKV_PAN_8       | resource | panos_security_rule_group                               | Ensure description is populated within security policies                                                                                                                                                 | Terraform |
+| 1530 | CKV_PAN_9       | resource | panos_security_policy                                   | Ensure a Log Forwarding Profile is selected for each security policy rule                                                                                                                                | Terraform |
+| 1531 | CKV_PAN_9       | resource | panos_security_rule_group                               | Ensure a Log Forwarding Profile is selected for each security policy rule                                                                                                                                | Terraform |
+| 1532 | CKV_PAN_10      | resource | panos_security_policy                                   | Ensure logging at session end is enabled within security policies                                                                                                                                        | Terraform |
+| 1533 | CKV_PAN_10      | resource | panos_security_rule_group                               | Ensure logging at session end is enabled within security policies                                                                                                                                        | Terraform |
+| 1534 | CKV_PAN_11      | resource | panos_ipsec_crypto_profile                              | Ensure IPsec profiles do not specify use of insecure encryption algorithms                                                                                                                               | Terraform |
+| 1535 | CKV_PAN_11      | resource | panos_panorama_ipsec_crypto_profile                     | Ensure IPsec profiles do not specify use of insecure encryption algorithms                                                                                                                               | Terraform |
+| 1536 | CKV_PAN_12      | resource | panos_ipsec_crypto_profile                              | Ensure IPsec profiles do not specify use of insecure authentication algorithms                                                                                                                           | Terraform |
+| 1537 | CKV_PAN_12      | resource | panos_panorama_ipsec_crypto_profile                     | Ensure IPsec profiles do not specify use of insecure authentication algorithms                                                                                                                           | Terraform |
+| 1538 | CKV_PAN_13      | resource | panos_ipsec_crypto_profile                              | Ensure IPsec profiles do not specify use of insecure protocols                                                                                                                                           | Terraform |
+| 1539 | CKV_PAN_13      | resource | panos_panorama_ipsec_crypto_profile                     | Ensure IPsec profiles do not specify use of insecure protocols                                                                                                                                           | Terraform |
+| 1540 | CKV_PAN_14      | resource | panos_panorama_zone                                     | Ensure a Zone Protection Profile is defined within Security Zones                                                                                                                                        | Terraform |
+| 1541 | CKV_PAN_14      | resource | panos_zone                                              | Ensure a Zone Protection Profile is defined within Security Zones                                                                                                                                        | Terraform |
+| 1542 | CKV_PAN_14      | resource | panos_zone_entry                                        | Ensure a Zone Protection Profile is defined within Security Zones                                                                                                                                        | Terraform |
+| 1543 | CKV_PAN_15      | resource | panos_panorama_zone                                     | Ensure an Include ACL is defined for a Zone when User-ID is enabled                                                                                                                                      | Terraform |
+| 1544 | CKV_PAN_15      | resource | panos_zone                                              | Ensure an Include ACL is defined for a Zone when User-ID is enabled                                                                                                                                      | Terraform |
+| 1545 | CKV_YC_1        | resource | yandex_mdb_clickhouse_cluster                           | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
+| 1546 | CKV_YC_1        | resource | yandex_mdb_elasticsearch_cluster                        | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
+| 1547 | CKV_YC_1        | resource | yandex_mdb_greenplum_cluster                            | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
+| 1548 | CKV_YC_1        | resource | yandex_mdb_kafka_cluster                                | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
+| 1549 | CKV_YC_1        | resource | yandex_mdb_mongodb_cluster                              | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
+| 1550 | CKV_YC_1        | resource | yandex_mdb_mysql_cluster                                | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
+| 1551 | CKV_YC_1        | resource | yandex_mdb_postgresql_cluster                           | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
+| 1552 | CKV_YC_1        | resource | yandex_mdb_redis_cluster                                | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
+| 1553 | CKV_YC_1        | resource | yandex_mdb_sqlserver_cluster                            | Ensure security group is assigned to database cluster.                                                                                                                                                   | Terraform |
+| 1554 | CKV_YC_2        | resource | yandex_compute_instance                                 | Ensure compute instance does not have public IP.                                                                                                                                                         | Terraform |
+| 1555 | CKV_YC_3        | resource | yandex_storage_bucket                                   | Ensure storage bucket is encrypted.                                                                                                                                                                      | Terraform |
+| 1556 | CKV_YC_4        | resource | yandex_compute_instance                                 | Ensure compute instance does not have serial console enabled.                                                                                                                                            | Terraform |
+| 1557 | CKV_YC_5        | resource | yandex_kubernetes_cluster                               | Ensure Kubernetes cluster does not have public IP address.                                                                                                                                               | Terraform |
+| 1558 | CKV_YC_6        | resource | yandex_kubernetes_node_group                            | Ensure Kubernetes cluster node group does not have public IP addresses.                                                                                                                                  | Terraform |
+| 1559 | CKV_YC_7        | resource | yandex_kubernetes_cluster                               | Ensure Kubernetes cluster auto-upgrade is enabled.                                                                                                                                                       | Terraform |
+| 1560 | CKV_YC_8        | resource | yandex_kubernetes_node_group                            | Ensure Kubernetes node group auto-upgrade is enabled.                                                                                                                                                    | Terraform |
+| 1561 | CKV_YC_9        | resource | yandex_kms_symmetric_key                                | Ensure KMS symmetric key is rotated.                                                                                                                                                                     | Terraform |
+| 1562 | CKV_YC_10       | resource | yandex_kubernetes_cluster                               | Ensure etcd database is encrypted with KMS key.                                                                                                                                                          | Terraform |
+| 1563 | CKV_YC_11       | resource | yandex_compute_instance                                 | Ensure security group is assigned to network interface.                                                                                                                                                  | Terraform |
+| 1564 | CKV_YC_12       | resource | yandex_mdb_clickhouse_cluster                           | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
+| 1565 | CKV_YC_12       | resource | yandex_mdb_elasticsearch_cluster                        | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
+| 1566 | CKV_YC_12       | resource | yandex_mdb_greenplum_cluster                            | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
+| 1567 | CKV_YC_12       | resource | yandex_mdb_kafka_cluster                                | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
+| 1568 | CKV_YC_12       | resource | yandex_mdb_mongodb_cluster                              | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
+| 1569 | CKV_YC_12       | resource | yandex_mdb_mysql_cluster                                | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
+| 1570 | CKV_YC_12       | resource | yandex_mdb_postgresql_cluster                           | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
+| 1571 | CKV_YC_12       | resource | yandex_mdb_sqlserver_cluster                            | Ensure public IP is not assigned to database cluster.                                                                                                                                                    | Terraform |
+| 1572 | CKV_YC_13       | resource | yandex_resourcemanager_cloud_iam_binding                | Ensure cloud member does not have elevated access.                                                                                                                                                       | Terraform |
+| 1573 | CKV_YC_13       | resource | yandex_resourcemanager_cloud_iam_member                 | Ensure cloud member does not have elevated access.                                                                                                                                                       | Terraform |
+| 1574 | CKV_YC_14       | resource | yandex_kubernetes_cluster                               | Ensure security group is assigned to Kubernetes cluster.                                                                                                                                                 | Terraform |
+| 1575 | CKV_YC_15       | resource | yandex_kubernetes_node_group                            | Ensure security group is assigned to Kubernetes node group.                                                                                                                                              | Terraform |
+| 1576 | CKV_YC_16       | resource | yandex_kubernetes_cluster                               | Ensure network policy is assigned to Kubernetes cluster.                                                                                                                                                 | Terraform |
+| 1577 | CKV_YC_17       | resource | yandex_storage_bucket                                   | Ensure storage bucket does not have public access permissions.                                                                                                                                           | Terraform |
+| 1578 | CKV_YC_18       | resource | yandex_compute_instance_group                           | Ensure compute instance group does not have public IP.                                                                                                                                                   | Terraform |
+| 1579 | CKV_YC_19       | resource | yandex_vpc_security_group                               | Ensure security group does not contain allow-all rules.                                                                                                                                                  | Terraform |
+| 1580 | CKV_YC_20       | resource | yandex_vpc_security_group_rule                          | Ensure security group rule is not allow-all.                                                                                                                                                             | Terraform |
+| 1581 | CKV_YC_21       | resource | yandex_organizationmanager_organization_iam_binding     | Ensure organization member does not have elevated access.                                                                                                                                                | Terraform |
+| 1582 | CKV_YC_21       | resource | yandex_organizationmanager_organization_iam_member      | Ensure organization member does not have elevated access.                                                                                                                                                | Terraform |
+| 1583 | CKV_YC_22       | resource | yandex_compute_instance_group                           | Ensure compute instance group has security group assigned.                                                                                                                                               | Terraform |
+| 1584 | CKV_YC_23       | resource | yandex_resourcemanager_folder_iam_binding               | Ensure folder member does not have elevated access.                                                                                                                                                      | Terraform |
+| 1585 | CKV_YC_23       | resource | yandex_resourcemanager_folder_iam_member                | Ensure folder member does not have elevated access.                                                                                                                                                      | Terraform |
+| 1586 | CKV_YC_24       | resource | yandex_organizationmanager_organization_iam_binding     | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform |
+| 1587 | CKV_YC_24       | resource | yandex_organizationmanager_organization_iam_member      | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform |
+| 1588 | CKV_YC_24       | resource | yandex_resourcemanager_cloud_iam_binding                | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform |
+| 1589 | CKV_YC_24       | resource | yandex_resourcemanager_cloud_iam_member                 | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform |
+| 1590 | CKV_YC_24       | resource | yandex_resourcemanager_folder_iam_binding               | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform |
+| 1591 | CKV_YC_24       | resource | yandex_resourcemanager_folder_iam_member                | Ensure passport account is not used for assignment. Use service accounts and federated accounts where possible.                                                                                          | Terraform |
 
 
 ---