Skip to content

Checkov

v3.2.532 Feature

This release adds 1 notable feature for engineering teams evaluating rollout.

Published 1d Vulnerability Scanning
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

aws aws-security azure cloudformation compliance devops
+6 more
gcp iac kubernetes scans static-analysis terraform

Affected surfaces

auth crypto_tls

ReleasePort's take

Moderate signal
editorial:auto 1d

The release adds verification of EC2SA‑P256 signatures on external custom checks before loading.

Why it matters: Security: Requires signing custom check code with severity score 90 to load, enforcing integrity validation for all custom pipelines.

Summary

AI summary

Verify ECDSA‑P256 signatures on external custom checks before loading.

Changes in this release

Security Critical

Verifies EC2SA‑P256 signatures on external custom checks before loading.

Verifies EC2SA‑P256 signatures on external custom checks before loading.

Source: llm_adapter@2026-06-03

Confidence: high
Full changelog

Feature

  • general: verify ECDSA-P256 signatures on external custom checks before loading - #7556
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track Checkov

Get notified when new releases ship.

Sign up free

About Checkov

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

All releases →

Related context

Beta — feedback welcome: [email protected]