diff --git a/go.mod b/go.mod index 06540376..90eeecb4 100644 --- a/go.mod +++ b/go.mod @@ -4,7 +4,7 @@ go 1.16 require ( github.com/apparentlymart/go-cidr v1.1.0 - github.com/aquasecurity/defsec v0.0.36 + github.com/aquasecurity/defsec v0.0.37 github.com/liamg/jfather v0.0.2 github.com/liamg/tml v0.4.0 github.com/spf13/cobra v1.2.1 diff --git a/go.sum b/go.sum index d2586f8e..a18a09e0 100644 --- a/go.sum +++ b/go.sum @@ -56,6 +56,8 @@ github.com/apparentlymart/go-cidr v1.1.0/go.mod h1:EBcsNrHc3zQeuaeCeCtQruQm+n9/Y github.com/apparentlymart/go-textseg/v13 v13.0.0/go.mod h1:ZK2fH7c4NqDTLtiYLvIkEghdlcqw7yxLeM89kiTRPUo= github.com/aquasecurity/defsec v0.0.36 h1:Dq0yRDd7ETN0zi2q+7yeGDSzSU32m2Vw5aMczxku2Ss= github.com/aquasecurity/defsec v0.0.36/go.mod h1:csaBEcJ3AKy44expnW0dCANEZcS/c1vcJjwBCbnKWBM= +github.com/aquasecurity/defsec v0.0.37 h1:zdZndlKrW257b8VLK1UwfmXiyPuDrNA+wzBilHRk1LA= +github.com/aquasecurity/defsec v0.0.37/go.mod h1:csaBEcJ3AKy44expnW0dCANEZcS/c1vcJjwBCbnKWBM= github.com/armon/circbuf v0.0.0-20150827004946-bbbad097214e/go.mod h1:3U/XgcO3hCbHZ8TKRvWD2dDTCfh9M9ya+I9JpbB7O8o= github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da/go.mod h1:Q73ZrmVTwzkszR9V5SSuryQ31EELlFMUz1kKyl939pY= github.com/armon/go-radix v0.0.0-20180808171621-7fddfc383310/go.mod h1:ufUuZ+zHj4x4TnLV4JWEpy2hxWSpsRywHrMgIH9cCH8= diff --git a/vendor/github.com/aquasecurity/defsec/rules/aws/elasticache/add_description_for_security_group.go b/vendor/github.com/aquasecurity/defsec/rules/aws/elasticache/add_description_for_security_group.go index c686a5b5..9800d63e 100644 --- a/vendor/github.com/aquasecurity/defsec/rules/aws/elasticache/add_description_for_security_group.go +++ b/vendor/github.com/aquasecurity/defsec/rules/aws/elasticache/add_description_for_security_group.go @@ -15,7 +15,7 @@ var CheckAddDescriptionForSecurityGroup = rules.Register( ShortCode: "add-description-for-security-group", Summary: "Missing description for security group/security group rule.", Impact: "Descriptions provide context for the firewall rule reasons", - Resolution: "AddOld descriptions for all security groups and rules", + Resolution: "Add descriptions for all security groups and rules", Explanation: `Security groups and security group rules should include a description for auditing purposes. Simplifies auditing, debugging, and managing security groups.`, diff --git a/vendor/github.com/aquasecurity/defsec/rules/aws/redshift/add_description_to_security_group.go b/vendor/github.com/aquasecurity/defsec/rules/aws/redshift/add_description_to_security_group.go index 9e464adc..a71e7de4 100644 --- a/vendor/github.com/aquasecurity/defsec/rules/aws/redshift/add_description_to_security_group.go +++ b/vendor/github.com/aquasecurity/defsec/rules/aws/redshift/add_description_to_security_group.go @@ -15,7 +15,7 @@ var CheckAddDescriptionToSecurityGroup = rules.Register( ShortCode: "add-description-to-security-group", Summary: "Missing description for security group/security group rule.", Impact: "Descriptions provide context for the firewall rule reasons", - Resolution: "AddOld descriptions for all security groups and rules", + Resolution: "Add descriptions for all security groups and rules", Explanation: `Security groups and security group rules should include a description for auditing purposes. Simplifies auditing, debugging, and managing security groups.`, diff --git a/vendor/github.com/aquasecurity/defsec/rules/aws/s3/enable_logging.go b/vendor/github.com/aquasecurity/defsec/rules/aws/s3/enable_logging.go index 31915088..0962752e 100644 --- a/vendor/github.com/aquasecurity/defsec/rules/aws/s3/enable_logging.go +++ b/vendor/github.com/aquasecurity/defsec/rules/aws/s3/enable_logging.go @@ -16,7 +16,7 @@ var CheckLoggingIsEnabled = rules.Register( Summary: "S3 Bucket does not have logging enabled.", Explanation: "Buckets should have logging enabled so that access can be audited.", Impact: "There is no way to determine the access to this bucket", - Resolution: "AddOld a logging block to the resource to enable access logging", + Resolution: "Add a logging block to the resource to enable access logging", Links: []string{ "https://docs.aws.amazon.com/AmazonS3/latest/dev/ServerLogs.html", }, diff --git a/vendor/github.com/aquasecurity/defsec/rules/aws/s3/no_public_acl.go b/vendor/github.com/aquasecurity/defsec/rules/aws/s3/no_public_acl.go index dfe6e3ab..ce628ca5 100644 --- a/vendor/github.com/aquasecurity/defsec/rules/aws/s3/no_public_acl.go +++ b/vendor/github.com/aquasecurity/defsec/rules/aws/s3/no_public_acl.go @@ -20,7 +20,7 @@ var CheckForPublicACL = rules.Register( Buckets should have logging enabled so that access can be audited. `, Impact: "There is no way to determine the access to this bucket", - Resolution: "AddOld a logging block to the resource to enable access logging", + Resolution: "Add a logging block to the resource to enable access logging", Links: []string{ "https://docs.aws.amazon.com/AmazonS3/latest/dev/ServerLogs.html", diff --git a/vendor/github.com/aquasecurity/defsec/rules/aws/vpc/add_description_to_security_group.go b/vendor/github.com/aquasecurity/defsec/rules/aws/vpc/add_description_to_security_group.go index 209de1e0..552588cb 100644 --- a/vendor/github.com/aquasecurity/defsec/rules/aws/vpc/add_description_to_security_group.go +++ b/vendor/github.com/aquasecurity/defsec/rules/aws/vpc/add_description_to_security_group.go @@ -15,7 +15,7 @@ var CheckAddDescriptionToSecurityGroup = rules.Register( ShortCode: "add-description-to-security-group", Summary: "Missing description for security group.", Impact: "Descriptions provide context for the firewall rule reasons", - Resolution: "AddOld descriptions for all security groups", + Resolution: "Add descriptions for all security groups", Explanation: `Security groups should include a description for auditing purposes. Simplifies auditing, debugging, and managing security groups.`, diff --git a/vendor/github.com/aquasecurity/defsec/rules/aws/vpc/add_description_to_security_group_rule.go b/vendor/github.com/aquasecurity/defsec/rules/aws/vpc/add_description_to_security_group_rule.go index 51c8b181..3e1904c0 100644 --- a/vendor/github.com/aquasecurity/defsec/rules/aws/vpc/add_description_to_security_group_rule.go +++ b/vendor/github.com/aquasecurity/defsec/rules/aws/vpc/add_description_to_security_group_rule.go @@ -15,7 +15,7 @@ var CheckAddDescriptionToSecurityGroupRule = rules.Register( ShortCode: "add-description-to-security-group-rule", Summary: "Missing description for security group rule.", Impact: "Descriptions provide context for the firewall rule reasons", - Resolution: "AddOld descriptions for all security groups rules", + Resolution: "Add descriptions for all security groups rules", Explanation: `Security group rules should include a description for auditing purposes. Simplifies auditing, debugging, and managing security groups.`, diff --git a/vendor/modules.txt b/vendor/modules.txt index fc2f4a64..8b1954ad 100644 --- a/vendor/modules.txt +++ b/vendor/modules.txt @@ -20,7 +20,7 @@ github.com/acomagu/bufpipe # github.com/apparentlymart/go-cidr v1.1.0 ## explicit github.com/apparentlymart/go-cidr/cidr -# github.com/aquasecurity/defsec v0.0.36 +# github.com/aquasecurity/defsec v0.0.37 ## explicit github.com/aquasecurity/defsec/cidr github.com/aquasecurity/defsec/formatters