infrastructure-as-code

Description

the docs at https://docs.saltproject.io/en/latest/topics/spm/master.html#update-file-roots show file_roots with numbered lines instead of the list indicator.

file_roots:
  base:
    1. /srv/salt
    2. /srv/spm/salt

Suggested Fix
That should be

file_roots:
  base:
    - /srv/salt
    - /srv/spm/salt

Type of documentation
Salt docum

When using trivy image -o output.json -f json foo:latest, the output file lacks a final newline.

This is not POSIX-compliant, and causes issues when processing the file.

Can you please add the final newline?

What is the problem?

I created a canary using CDK 2.15.0 and the syn-nodejs-puppeteer-3.2 runtime. The canary runs successfully, and stores the artifacts in the bucket, but also throws an Access Denied when attempting a copy operation in the bucket:

2022-03-04T13:32:27.269Z	37470d5c-4025-4519-9383-3b5ea5b825b4	ERROR	Exception when copying from s3 directory 
{
    "Bucket": "xxx",
 

I suggest adding MongoDB Atlas to the supported cloud as a feather.

Previous discussion:

• infracost/infracost#953
• infracost/infracost#1172 (comment)

Infracost has a method of passing custom flags for when Infracost runs terraform plan, but it doesn't support passing custom flags to terraform init.

This will be useful for users who

1. Want to auto-upgrade modules using `terraform init -u

Is your feature request related to a problem? Please describe.
I want to be able to disable a whole level of violation. For example the low error level i want to disable but still run the checks on medium, high, critical.

Describe the solution you'd like
I would like to have this possible with a simple flag in the ci to do this. To disable the violation level : low, etc. that when yo

Describe the issue
I wouldn't expect to get the alert if not defined explicitly.

Examples
https://github.com/hashicorp/terraform-provider-google/releases/tag/v4.0.0

Version (please complete the following information):

• Checkov Version 2.0.780

• terrascan version: 1.9.0
• terraform version: 1.0.1

Enhancement Request

Other security scanning tools (e.g. checkov and tfsec) have a --soft-fail flag or equivalent option that allows you to always exit with 0 status.

Extremely useful when running the tool without halting a pipeline for example.

I currently use a workaround, but something more concrete would be very desira

Currently, if I want to check for the logs of exited tasks, I need to go to AWS console, navigate to ECS, find the cluster, then the service, than switch to stopped tasks, then search for the logs there.

It would be helpful to have a copilot svg logs -p where -p stands for "previous task" (like k8s), that dumps the logs of the most recent stopped task.

Besides that, an `copilot svc logs

Description

Add GCE support for google_project_iam_custom_role (TF)

Sources

• Terraform Resource Documentation
• GCP Resource Documentation