Checkov

v3.2.527 Security

This release patches 2 CVEs for security teams tracking exposure across their dependency inventory.

Published 27d Vulnerability Scanning

View tool

2 patched CVEs

Read the diff → Tool health → What is this tool? →

This release patches 2 known CVEs CVE-2020-11023 CVE-2023-44487 EPSS 94%

2 CVEs patched

Topics

aws aws-security azure cloudformation compliance devops

+6 more

gcp iac kubernetes scans static-analysis terraform

Summary

AI summary

Reverted secrets fix to only report the first multiline regex match per file.

Full changelog

Feature

secrets: Revert "fix(secrets): report all multiline regex matches per file, not just first occurrence" - #7537

Breaking Changes

Secrets scanner now reports only the first multiline regex match per file, reverting previous behavior that reported all matches.

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track Checkov

Get notified when new releases ship.

About Checkov

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

All releases →

Related context

Related tools

Beta — feedback welcome: [email protected]