aquasecurity · alphadev4 · Feb 27, 2025 · Feb 27, 2025 · Feb 27, 2025 · Feb 27, 2025
diff --git a/exports.js b/exports.js
@@ -621,9 +621,6 @@ module.exports = {
         'buildProjectEnvPriviligedMode' : require(__dirname + '/plugins/aws/codebuild/buildProjectEnvPriviligedMode.js'),
         'codebuildProjectLoggingEnabled': require(__dirname + '/plugins/aws/codebuild/codebuildProjectLoggingEnabled.js'),
 
-        'codestarValidRepoProviders'    : require(__dirname + '/plugins/aws/codestar/codestarValidRepoProviders.js'),
-        'codestarHasTags'               : require(__dirname + '/plugins/aws/codestar/codestarHasTags.js'),
-
         'pipelineArtifactsEncrypted'    : require(__dirname + '/plugins/aws/codepipeline/pipelineArtifactsEncrypted.js'),
 
         'dataStoreEncrypted'            : require(__dirname + '/plugins/aws/healthlake/dataStoreEncrypted.js'),

diff --git a/plugins/alibaba/ecs/openSalt.js b/plugins/alibaba/ecs/openSalt.js
@@ -5,7 +5,7 @@ module.exports = {
     title: 'Open Salt',
     category: 'ECS',
     domain: 'Compute',
-    severity: 'Medium',
+    severity: 'Critical',
     description: 'Ensure that security groups does not have TCP ports 4505 or 4506 for the Salt master open to the public.',
     more_info: 'Active Salt vulnerabilities, CVE-2020-11651 and CVE-2020-11652 are exploiting Salt instances exposed to the internet. These ports should be closed immediately.',
     link: 'https://www.alibabacloud.com/help/doc-detail/25471.htm',

diff --git a/plugins/aws/codestar/codestarHasTags.spec.js b/plugins/aws/codestar/codestarHasTags.spec.js
@@ -109,4 +109,4 @@ describe('codestarHasTags', function () {
             });
         });
     });
-});
+});
diff --git a/plugins/aws/codestar/codestarValidRepoProviders.js b/plugins/aws/codestar/codestarValidRepoProviders.js
@@ -60,7 +60,6 @@ module.exports = {
 
                 let repoProvider = (describeProject.data.projectTemplateId.split('/').length > 1) ?
                     describeProject.data.projectTemplateId.split('/')[1] : '';
-
                 if (config.codestar_disallowed_repo_providers.includes(repoProvider)) {
                     helpers.addResult(results, 2,
                         `CodeStar project is using ${repoProvider} as repository provider which should not be used`,
@@ -78,4 +77,4 @@ module.exports = {
             callback(null, results, source);
         });
     }
-}; 
+}; 
diff --git a/plugins/aws/ec2/openSalt.js b/plugins/aws/ec2/openSalt.js
@@ -5,7 +5,7 @@ module.exports = {
     title: 'Open Salt',
     category: 'EC2',
     domain: 'Compute',
-    severity: 'High',
+    severity: 'Critical',
     description: 'Determine if TCP ports 4505 or 4506 for the Salt master are open to the public',
     more_info: 'Active Salt vulnerabilities, CVE-2020-11651 and CVE-2020-11652 are exploiting Salt instances exposed to the internet. These ports should be closed immediately.',
     link: 'https://help.saltstack.com/hc/en-us/articles/360043056331-New-SaltStack-Release-Critical-Vulnerability',

diff --git a/plugins/azure/networksecuritygroups/openSalt.js b/plugins/azure/networksecuritygroups/openSalt.js
@@ -5,7 +5,7 @@ module.exports = {
     title: 'Open Salt',
     category: 'Network Security Groups',
     domain: 'Network Access Control',
-    severity: 'Medium',
+    severity: 'Critical',
     description: 'Determine if TCP ports 4505 or 4506 for the Salt master are open to the public',
     more_info: 'Active Salt vulnerabilities, CVE-2020-11651 and CVE-2020-11652 are exploiting Salt instances exposed to the internet. These ports should be closed immediately.',
     link: 'https://help.saltstack.com/hc/en-us/articles/360043056331-New-SaltStack-Release-Critical-Vulnerability',

diff --git a/plugins/google/vpcnetwork/openSalt.js b/plugins/google/vpcnetwork/openSalt.js
@@ -5,7 +5,7 @@ module.exports = {
     title: 'Open Salt',
     category: 'VPC Network',
     domain: 'Network Access Control',
-    severity: 'High',
+    severity: 'Critical',
     description: 'Determine if TCP ports 4505 or 4506 for the Salt master are open to the public',
     more_info: 'Active Salt vulnerabilities, CVE-2020-11651 and CVE-2020-11652 are exploiting Salt instances exposed to the internet. These ports should be closed immediately.',
     link: 'https://help.saltstack.com/hc/en-us/articles/360043056331-New-SaltStack-Release-Critical-Vulnerability',

diff --git a/plugins/oracle/networking/openSalt.js b/plugins/oracle/networking/openSalt.js
@@ -5,7 +5,7 @@ module.exports = {
     title: 'Open Salt',
     category: 'Networking',
     domain: 'Network Access Control',
-    severity: 'Medium',
+    severity: 'Critical',
     description: 'Determine if TCP ports 4505 or 4506 for the Salt master are open to the public',
     more_info: 'Active Salt vulnerabilities, CVE-2020-11651 and CVE-2020-11652 are exploiting Salt instances exposed to the internet. These ports should be closed immediately.',
     recommended_action: 'Restrict TCP ports 4505 and 4506 to known IP addresses',
-Original file line number
+Diff line change
@@ Expand Up / @@ -109,4 +109,4 @@ describe('codestarHasTags', function () { @@
                 });
             });
         });
-    });
+    });