Skip to content

PR test#16949

Open
mikereiddigital wants to merge 1 commit into
mainfrom
testing-slackbot
Open

PR test#16949
mikereiddigital wants to merge 1 commit into
mainfrom
testing-slackbot

Conversation

@mikereiddigital

@mikereiddigital mikereiddigital commented Jun 1, 2026

Copy link
Copy Markdown
Contributor

No description provided.

@mikereiddigital mikereiddigital requested review from a team as code owners June 1, 2026 14:44
@github-actions github-actions Bot added the environments-repository Used to exclude PRs from this repo in our Slack PR update label Jun 1, 2026
@github-actions

github-actions Bot commented Jun 1, 2026

Copy link
Copy Markdown
Contributor

Checkov Scan Success

Show Output 
*****************************

Checkov will check the following folders:
terraform/environments/cooker

*****************************

Running Checkov in terraform/environments/cooker
terraform scan results:

Passed checks: 18, Failed checks: 6, Skipped checks: 0

Check: CKV_AWS_18: "Ensure the S3 bucket has access logging enabled"
	FAILED for resource: aws_s3_bucket.basic
	File: /s3.tf:1-3
	Guide: https://docs.prismacloud.io/en/enterprise-edition/policy-reference/aws-policies/s3-policies/s3-13-enable-logging

		1 | resource "aws_s3_bucket" "basic" {
		2 | 	bucket = lower("${local.application_name}-${terraform.workspace}-basic-bucket-12345678")
		3 | }

Check: CKV2_AWS_62: "Ensure S3 buckets should have event notifications enabled"
	FAILED for resource: aws_s3_bucket.basic
	File: /s3.tf:1-3
	Guide: https://docs.prismacloud.io/en/enterprise-edition/policy-reference/aws-policies/aws-logging-policies/bc-aws-2-62

		1 | resource "aws_s3_bucket" "basic" {
		2 | 	bucket = lower("${local.application_name}-${terraform.workspace}-basic-bucket-12345678")
		3 | }

Check: CKV_AWS_145: "Ensure that S3 buckets are encrypted with KMS by default"
	FAILED for resource: aws_s3_bucket.basic
	File: /s3.tf:1-3
	Guide: https://docs.prismacloud.io/en/enterprise-edition/policy-reference/aws-policies/aws-general-policies/ensure-that-s3-buckets-are-encrypted-with-kms-by-default

		1 | resource "aws_s3_bucket" "basic" {
		2 | 	bucket = lower("${local.application_name}-${terraform.workspace}-basic-bucket-12345678")
		3 | }

Check: CKV2_AWS_61: "Ensure that an S3 bucket has a lifecycle configuration"
	FAILED for resource: aws_s3_bucket.basic
	File: /s3.tf:1-3
	Guide: https://docs.prismacloud.io/en/enterprise-edition/policy-reference/aws-policies/aws-logging-policies/bc-aws-2-61

		1 | resource "aws_s3_bucket" "basic" {
		2 | 	bucket = lower("${local.application_name}-${terraform.workspace}-basic-bucket-12345678")
		3 | }

Check: CKV_AWS_21: "Ensure all data stored in the S3 bucket have versioning enabled"
	FAILED for resource: aws_s3_bucket.basic
	File: /s3.tf:1-3
	Guide: https://docs.prismacloud.io/en/enterprise-edition/policy-reference/aws-policies/s3-policies/s3-16-enable-versioning

		1 | resource "aws_s3_bucket" "basic" {
		2 | 	bucket = lower("${local.application_name}-${terraform.workspace}-basic-bucket-12345678")
		3 | }

Check: CKV_AWS_144: "Ensure that S3 bucket has cross-region replication enabled"
	FAILED for resource: aws_s3_bucket.basic
	File: /s3.tf:1-3
	Guide: https://docs.prismacloud.io/en/enterprise-edition/policy-reference/aws-policies/aws-general-policies/ensure-that-s3-bucket-has-cross-region-replication-enabled

		1 | resource "aws_s3_bucket" "basic" {
		2 | 	bucket = lower("${local.application_name}-${terraform.workspace}-basic-bucket-12345678")
		3 | }


checkov_exitcode=1

TFLint Scan Success

Show Output 
*****************************

Using default config
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.9.1)
tflint checking:
terraform/environments/cooker

*****************************

Running tflint in terraform/environments/cooker
tflint_exitcode=0

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@elken Ellis Kenyő (elken) Awaiting requested review from elken elken is a code owner automatically assigned from ministryofjustice/octo-cyber-team

@sommanda-moj sommanda-moj Awaiting requested review from sommanda-moj sommanda-moj is a code owner automatically assigned from ministryofjustice/octo-cyber-team

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

environments-repository Used to exclude PRs from this repo in our Slack PR update

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mikereiddigital