{"id":15878881,"url":"https://github.com/darkwizard242/ansible-role-checkov","last_synced_at":"2025-11-09T01:30:36.175Z","repository":{"id":44623477,"uuid":"272055446","full_name":"darkwizard242/ansible-role-checkov","owner":"darkwizard242","description":"Ansible role for checkov. Available on Ansible Galaxy.","archived":false,"fork":false,"pushed_at":"2024-06-20T17:56:38.000Z","size":44,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":3,"default_branch":"master","last_synced_at":"2024-12-28T06:00:49.909Z","etag":null,"topics":["ansible","ansible-galaxy","ansible-role","checkov","code-analysis","iac","static-analysis"],"latest_commit_sha":null,"homepage":"https://galaxy.ansible.com/darkwizard242/checkov","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/darkwizard242.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null}},"created_at":"2020-06-13T17:29:43.000Z","updated_at":"2024-06-20T17:56:27.000Z","dependencies_parsed_at":"2024-03-30T23:45:54.568Z","dependency_job_id":null,"html_url":"https://github.com/darkwizard242/ansible-role-checkov","commit_stats":null,"previous_names":[],"tags_count":10,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/darkwizard242%2Fansible-role-checkov","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/darkwizard242%2Fansible-role-checkov/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/darkwizard242%2Fansible-role-checkov/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/darkwizard242%2Fansible-role-checkov/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/darkwizard242","download_url":"https://codeload.github.com/darkwizard242/ansible-role-checkov/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":239565649,"owners_count":19660154,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ansible","ansible-galaxy","ansible-role","checkov","code-analysis","iac","static-analysis"],"created_at":"2024-10-06T02:42:12.592Z","updated_at":"2025-11-09T01:30:36.144Z","avatar_url":"https://github.com/darkwizard242.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"[![build-test](https://github.com/darkwizard242/ansible-role-checkov/workflows/build-and-test/badge.svg?branch=master)](https://github.com/darkwizard242/ansible-role-checkov/actions?query=workflow%3Abuild-and-test) [![release](https://github.com/darkwizard242/ansible-role-checkov/workflows/release/badge.svg)](https://github.com/darkwizard242/ansible-role-checkov/actions?query=workflow%3Arelease) ![Ansible Role](https://img.shields.io/ansible/role/d/darkwizard242/checkov) [![Maintainability Rating](https://sonarcloud.io/api/project_badges/measure?project=ansible-role-checkov\u0026metric=sqale_rating)](https://sonarcloud.io/dashboard?id=ansible-role-checkov) [![Reliability Rating](https://sonarcloud.io/api/project_badges/measure?project=ansible-role-checkov\u0026metric=reliability_rating)](https://sonarcloud.io/dashboard?id=ansible-role-checkov) [![Security Rating](https://sonarcloud.io/api/project_badges/measure?project=ansible-role-checkov\u0026metric=security_rating)](https://sonarcloud.io/dashboard?id=ansible-role-checkov) ![GitHub tag (latest SemVer)](https://img.shields.io/github/tag/darkwizard242/ansible-role-checkov?label=release) ![GitHub repo size](https://img.shields.io/github/repo-size/darkwizard242/ansible-role-checkov?color=orange\u0026style=flat-square)\n\n# Ansible Role: checkov\n\nRole to install [checkov](https://github.com/bridgecrewio/checkov) pip package on **Debian/Ubuntu** systems for performing static code analysis based on benchmarks and policies for code written in popular IaC's like Terraform, CloudFormation and Kubernetes.\n\n## Requirements\n\nNone.\n\n## Role Variables\n\nAvailable variables are listed below (located in `defaults/main.yml`):\n\n### Variables List:\n\n```yaml\ncheckov_debian_pre_reqs:\n  - python3\n  - python3-pip\ncheckov_debian_pre_reqs_desired_state: present\npip_executable: pip3\npip_upgrade_version: latest\ncheckov_app_debian_package: checkov\ncheckov_desired_state: present\n```\n\n### Variables table:\n\nVariable                              | Description\n------------------------------------- | -------------------------------------------------------------------------------------------------------------------\ncheckov_debian_pre_reqs               | Packages required to install **checkov** on Debian based systems. Using python3 as python2.x is EOL by end of 2020.\ncheckov_debian_pre_reqs_desired_state | Desired state for **checkov** pre-requisite apps on Debian systems.\npip_executable                        | The executable to utilize for installing **pip** package of `checkov`.\ncheckov_app_debian_package            | Name of checkov application package require to be installed i.e. `checkov` on Debian based systems.\ncheckov_desired_state                 | Desired state for **checkov**.\n\n## Dependencies\n\nNone\n\n## Example Playbook\n\nFor default behaviour of role (i.e. installation of **checkov** package) in ansible playbooks.\n\n```yaml\n- hosts: servers\n  roles:\n    - darkwizard242.checkov\n```\n\nFor customizing behavior of role (i.e. installation of latest **checkov** package instead of ensure it is installed ) in ansible playbooks.\n\n```yaml\n- hosts: servers\n  roles:\n    - darkwizard242.checkov\n  vars:\n    checkov_desired_state: latest\n```\n\nFor customizing behavior of role (i.e. removal of **checkov** package) in ansible playbooks.\n\n```yaml\n- hosts: servers\n  roles:\n    - darkwizard242.checkov\n  vars:\n    checkov_desired_state: absent\n```\n\n## License\n\n[MIT](https://github.com/darkwizard242/ansible-role-checkov/blob/master/LICENSE)\n\n## Author Information\n\nThis role was created by [Ali Muhammad](https://www.alimuhammad.dev/), a DevOps/CloudOps Engineer who loves to learn and contribute to Open Source community.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdarkwizard242%2Fansible-role-checkov","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdarkwizard242%2Fansible-role-checkov","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdarkwizard242%2Fansible-role-checkov/lists"}