Skip to content

Migrate content from portfolio-template-sdlc #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
williambrady wants to merge 1 commit into
base: main
Choose a base branch
from

Migrate content from portfolio-template-sdlc

7393daf
Select commit
Loading
Failed to load commit list.
Open

Migrate content from portfolio-template-sdlc #2

Migrate content from portfolio-template-sdlc
7393daf
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / SDLC Code Scanner (checkov) failed Jan 11, 2026 in 6s

7 new alerts including 2 high severity security vulnerabilities

New alerts in code changed by this pull request

Security Alerts:

  • 2 high
  • 5 medium

See annotations below for details.

View all branch alerts.

Annotations

Check failure on line 35 in terraform/main.tf

See this annotation in the file changed.

Code scanning / SDLC Code Scanner (checkov)

Ensure that CloudWatch Log Group is encrypted by KMS High

Ensure that CloudWatch Log Group is encrypted by KMS | FAILED | Resource: aws_cloudwatch_log_group.app_logs

Check failure on line 45 in terraform/main.tf

See this annotation in the file changed.

Code scanning / SDLC Code Scanner (checkov)

Ensure that S3 buckets are encrypted with KMS by default High

Ensure that S3 buckets are encrypted with KMS by default | FAILED | Resource: aws_s3_bucket.data_bucket

Check warning on line 35 in terraform/main.tf

See this annotation in the file changed.

Code scanning / SDLC Code Scanner (checkov)

Ensure CloudWatch log groups retains logs for at least 1 year Medium

Ensure CloudWatch log groups retains logs for at least 1 year | FAILED | Resource: aws_cloudwatch_log_group.app_logs

Check warning on line 45 in terraform/main.tf

See this annotation in the file changed.

Code scanning / SDLC Code Scanner (checkov)

Ensure S3 buckets should have event notifications enabled Medium

Ensure S3 buckets should have event notifications enabled | FAILED | Resource: aws_s3_bucket.data_bucket

Check warning on line 45 in terraform/main.tf

See this annotation in the file changed.

Code scanning / SDLC Code Scanner (checkov)

Ensure the S3 bucket has access logging enabled Medium

Ensure the S3 bucket has access logging enabled | FAILED | Resource: aws_s3_bucket.data_bucket

Check warning on line 45 in terraform/main.tf

See this annotation in the file changed.

Code scanning / SDLC Code Scanner (checkov)

Ensure that S3 bucket has cross-region replication enabled Medium

Ensure that S3 bucket has cross-region replication enabled | FAILED | Resource: aws_s3_bucket.data_bucket

Check warning on line 84 in terraform/main.tf

See this annotation in the file changed.

Code scanning / SDLC Code Scanner (checkov)

Ensure S3 lifecycle configuration sets period for aborting failed uploads Medium

Ensure S3 lifecycle configuration sets period for aborting failed uploads | FAILED | Resource: aws_s3_bucket_lifecycle_configuration.data_bucket_lifecycle