Skip to content

bug(scan): falsely scans #7424

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
MilanObrenovicAvenu opened this issue Apr 3, 2025 · 0 comments
Open

bug(scan): falsely scans #7424

MilanObrenovicAvenu opened this issue Apr 3, 2025 · 0 comments
Labels
azure PR related with Azure Cloud bug Something isn't working community Community contribution query New query feature terraform Terraform query

Comments

@MilanObrenovicAvenu
Copy link

MilanObrenovicAvenu commented Apr 3, 2025
edited
Loading

Expected Behavior

(Which results are expected from KICS?)

Scans Storage Account and reports that it's not using https traffic only enabled.
It is expected to not report this as an issue.

Actual Behavior

(Formatted logs and samples helps us to better understand the issue)

Reports the issue:
https://docs.kics.io/latest/queries/terraform-queries/azure/12944ec4-1fa0-47be-8b17-42a034f937c2/

The docs are also outdated, there is no enable_https_traffic_only, this attribute has been renamed to https_traffic_only_enabled, is this why it's reporting the false scan?

Steps to Reproduce the Problem

(Command line arguments and flags used)

  1. Use hashicorp/azurerm version ^4.25.0
  2. Add storage account resource and enable https only
  3. Run KICS scan and get the false scan

Code

resource "azurerm_storage_account" "control_plane_storage_account" {
  # ...
  https_traffic_only_enabled      = local.control_plane_storage_account.https_traffic_only_enabled
  # ...
}

locals {
  control_plane_storage_account = {
    https_traffic_only_enabled      = true
    # ...
  }
}

Image
@MilanObrenovicAvenu MilanObrenovicAvenu added bug Something isn't working community Community contribution labels Apr 3, 2025
@github-actions github-actions bot added query New query feature terraform Terraform query azure PR related with Azure Cloud labels Apr 3, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
azure PR related with Azure Cloud bug Something isn't working community Community contribution query New query feature terraform Terraform query
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@MilanObrenovicAvenu