Skip to content

feat: Add argument to customise command used to run checkov#14

Open
cogwirrel wants to merge 1 commit intobridgecrewio:mainfrom
cogwirrel:main
Open

feat: Add argument to customise command used to run checkov#14
cogwirrel wants to merge 1 commit intobridgecrewio:mainfrom
cogwirrel:main

Conversation

@cogwirrel
Copy link

@cogwirrel cogwirrel commented Sep 23, 2025

Allow customising the command to invoke checkov.

This will allow us to make use of this construct in the Nx Plugin for AWS - we use checkov for our Terraform projects and want to use it for CDK too! :)

NB this doesn't quite solve the "possible improvement to allow Docker usage" comment as the templates would need to be moved to the mounted location, however it at least moves us one step closer too :)

I also fixed a typescript build issue I was seeing:


    src/utils.ts:15:40 - error TS2345: Argument of type 'string | undefined' is not assignable to parameter of type 'string'.
      Type 'undefined' is not assignable to type 'string'.

    15     maxBuffer: 1024 * 1024 * (parseInt(process.env['CHECKOV_MAX_BUFFER_SIZE_MB']) || 1),
                                              ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

@cogwirrel cogwirrel mentioned this pull request Sep 23, 2025
Closed
1 task
@cogwirrel
Copy link
Author

cogwirrel commented Sep 23, 2025

Update: need a bit more control than this so we're going to just run the checkov cli ourselves. Happy for you to either merge or close this PR :)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@cogwirrel