190 New Policies 🛂

Bridgecrew added 190 new out of the box policies across all supported providers.

Alibaba Cloud custom policies 🧡

Bridgecrew now supports custom policies for Alibaba Cloud! This update augments Bridgecrew’s recent release of twenty-five new out-of-the-box Alibaba Cloud policies for Kubernetes, IAM, secrets, and more.

added

SBOM Generation 📄

You can now generate a software bill of materials (SBOM) from both Checkov and the Bridgecrew platform. With an SBOM, you can gain visibility into the inventory and any security issues of software components of cloud-native applications. SBOMs can also be used to identify any tampering based on unexpected changes to the components list.

Multiple Azure Repos integrations 👩‍💻

Bridgecrew now supports multiple integrations for Azure Repos. Before, users could only onboard one Azure repo integration at a time, which required users to consistently override integrations whenever they onboarded new Azure repos. Now, the Bridgecrew platform enables you to seamlessly integrate Azure repos in parallel.

Resource Explorer 2.0 🔎

Exploring security issues related to a resource is easier when you have more background information about that specific resource. Bridgecrew’s Resource Explorer refresh gives you a more context-rich and consistent experience to focus in on IaC, packages, and runtime resources across the entire platform—on the Projects, Supply Chain Graph, Incidents, and Resource Inventory screens.

GitHub Actions workflow configuration scan results in Bridgecrew ⚡

Bridgecrew now automatically scans and identifies misconfigurations in any GitHub Actions workflow files that are found in onboarded repositories. CLI results will also appear in the platform when scans are performed locally or in a CI pipeline.

CloudFormation Drift Detection ☁️

In addition to detecting cloud infrastructure drift in Terraform, Bridgecrew now supports drift detection violations for CloudFormation templates!

Alibaba Cloud Terraform-based policies 🆕

Bridgecrew is about to add 25 new out-of-the-box policies for Alibaba Cloud Terraform resources!
The following policies are estimated to be effective starting August 7th:

added

Helm Support ⎈

Helm is a popular templating language for packaging complex Kubernetes deployments. Last year, Checkov added support for Helm. Now, onboarding a Helm repository to Bridgecrew will automatically render and scan the Helm charts for violations.

Severity changes across 111 policies 🛂

In order to align with the continuous policy changes within Prisma cloud, Bridgecrew has changed the severities of the policies mentioned below.
Note that such change might impact severity-based feature like Enforcement.