Skip to content

1.35.0.12330

Choose a tag to compare

View all tags
@rudy-regazzoni-sonarsource rudy-regazzoni-sonarsource released this 17 Sep 07:15
· 454 commits to master since this release
1.35.0.12330
17c9345
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Release notes - SonarIac - 1.35

Bug

SONARIAC-1574 Rule id's of cfn-lint issues should be correctly imported

False-Positive

SONARIAC-976 S6249 should not raise when the Resource field of the bucket policy is a list

SONARIAC-1083 S6380 should not raise an issue when a child resource defined outside of its parent resource makes it compliant

SONARIAC-1084 S6648 should not raise an issue for expression

SONARIAC-1120 S6595 shouldn't raise when "install" command is part of ARG

SONARIAC-1122 S6500 should not raise an issue if the option `--no-install-recommends` is present anywhere in the command

SONARIAC-1295 S6504 should raise an issue independently from the file extension

SONARIAC-1482 S6270 should not raise when conditions are set

SONARIAC-1491 S6949 should not raise for "Global" location

SONARIAC-1595 S6505 should not raise an issue when `--ignore-script` is missing but env variable `YARN_ENABLE_SCRIPTS` is `false`

SONARIAC-1596 ARM rules should use ContextualResource in order to properly check existing resource

SONARIAC-1605 S6865: Change the detection logic to a more realistic one

SONARIAC-1607 S7026 should not raise an issue on wget/curl when specific request elements are precised

SONARIAC-1608 S7031 should not raise if consecutive RUN instructions have different options

SONARIAC-1610 S6587 should not raise if a cache mount is used

SONARIAC-1611 S117 should not raise an issue on variable name $ (dollar)

SONARIAC-1614 Improve precision of S1874 to reduce the FP rate

New Feature

SONARIAC-1272 S6333 should raise an issue for APIGatewayV2 HTTP API

False Negative

SONARIAC-1014 S6413 should raise an issue for AWS CloudWatch resource

SONARIAC-1099 S6388 detection logic for `virtualMachine` resource should be adapted

SONARIAC-1100 S6388 detection logic for `virtualMachineScaleSet` resource should be adapted

SONARIAC-1104 S5332 should raise if isHttpAllowed is set to true on Cdns/profiles/endpoints

Improvement

SONARIAC-402 Missing properties in issue/hotspot message should be surrounded with double quotes

SONARIAC-748 Improve "Why is this an issue?" for external CFNLint issues

SONARIAC-1006 S6382 should handle both old name `client_cert` and new name `client_certificate` in impacted resources

SONARIAC-1077 External Reports should adopt the new Clean Code Taxonomy

SONARIAC-1487 Implement syntax highlighting for keys in YAML files

SONARIAC-1619 Reporting an issue on a resource in bicep should highlight the symbolic name instead of the name attribute

Assets 2
Loading