Update checkov.md with corrected typo (#9247)

DefectDojo · Jan 2, 2024 · bca24c6 · bca24c6
1 parent 3e30305
commit bca24c6
Showing 1 changed file with 48 additions and 1 deletion.
diff --git a/docs/content/en/integrations/parsers/file/checkov.md b/docs/content/en/integrations/parsers/file/checkov.md
@@ -2,4 +2,51 @@
 title: "Checkov Report"
 toc_hide: true
 ---
-Import JSON reports of Infrastructure as Code vulnerabilities.
+### File Types
+DefectDojo parser accepts Checkov scan data as a .JSON file.
+
+JSON files can be created from the Checkov CLI: https://www.checkov.io/2.Basics/CLI%20Command%20Reference.html
+
+### Acceptable JSON Format
+
+~~~
+{
+    "check_type": "terraform",
+    "results": {
+        "passed_checks": [
+          ],
+        "failed_checks": [
+                {
+                    "check_id": "CKV_AZURE_41",
+                    "check_name": "Ensure the key vault is recoverable",
+                    "check_result": {
+                        "result": "FAILED"
+                    },
+                    "code_block": [
+                    ],
+                    "file_path": "file_path",
+                    "file_line_range": [
+                        1,
+                        16
+                    ],
+                    "resource": "azurerm_key_vault.main",
+                    "check_class": "checkov.terraform.checks.resource.azure.KeyvaultRecoveryEnabled",
+                    "guideline": "https://docs.bridgecrew.io/docs/ensure-the-key-vault-is-recoverable"
+                },
+            ...
+        ],
+        "skipped_checks": [],
+        "parsing_errors": []
+    },
+    "summary": {
+        "passed": 0,
+        "failed": 2,
+        "skipped": 0,
+        "parsing_errors": 0,
+        "checkov_version": "1.0.467"
+    }
+}
+~~~
+
+### Sample Scan Data
+Sample Checkov scans can be found at https://github.com/DefectDojo/django-DefectDojo/tree/master/unittests/scans/checkov