Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(misconf): make protocol checks case-insensitive #8460

Closed
nikpivkin opened this issue Feb 27, 2025 · 0 comments
Closed

fix(misconf): make protocol checks case-insensitive #8460

nikpivkin opened this issue Feb 27, 2025 · 0 comments
Assignees
@nikpivkin
Labels
kind/bug Categorizes issue or PR as related to a bug. scan/misconfiguration Issues relating to misconfiguration scanning
Milestone
v0.60.0

Comments

@nikpivkin
Copy link
Contributor

Terraform converts upper case to lower case:

Config:

resource "aws_security_group_rule" "ignored_ingress_22_tcp" {
  cidr_blocks       = ["0.0.0.0/0"]
  description       = "Allow 22/tcp ingress from anywhere."
  from_port         = 22
   to_port           = 22
  protocol          = "TCP"
  security_group_id = "sg-123456"
  type              = "ingress"
}

Plan:

  # aws_security_group_rule.ignored_ingress_22_tcp will be created
  + resource "aws_security_group_rule" "ignored_ingress_22_tcp" {
      + cidr_blocks              = [
          + "0.0.0.0/0",
        ]
      + description              = "Allow 22/tcp ingress from anywhere."
      + from_port                = 22
      + id                       = (known after apply)
      + protocol                 = "tcp"
      + security_group_id        = "sg-123456"
      + security_group_rule_id   = (known after apply)
      + self                     = false
      + source_security_group_id = (known after apply)
      + to_port                  = 22
      + type                     = "ingress"
    }

Discussed in #8459
@nikpivkin nikpivkin added kind/bug Categorizes issue or PR as related to a bug. scan/misconfiguration Issues relating to misconfiguration scanning labels Feb 27, 2025
@nikpivkin nikpivkin self-assigned this Feb 27, 2025
@nikpivkin nikpivkin mentioned this issue Feb 27, 2025
Merged
@simar7 simar7 added this to the v0.60.0 milestone Feb 27, 2025
@simar7 simar7 closed this as completed Feb 28, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@nikpivkin nikpivkin

Labels
kind/bug Categorizes issue or PR as related to a bug. scan/misconfiguration Issues relating to misconfiguration scanning
Projects
Trivy Roadmap
Status: No status
Milestone
v0.60.0
Development

No branches or pull requests
2 participants
@simar7 @nikpivkin