# Checkov

This plugin allows you to scan your **Terraform** code to find misconfigurations before they're deployed.

{% hint style="info" icon="link-horizontal" %}

* [Checkov home page](https://www.checkov.io/)
* [Source code on GitHub](https://github.com/bridgecrewio/checkov)
  {% endhint %}

### Accessing Checkov

1. Launch the **CI/CD Designer** by clicking the 🚀**CI/CD i**con available at the top. 
2. Click <mark style="color:$primary;">**`+`**</mark>  in the canvas to add a new task, and select <mark style="color:$primary;">**Checkov**</mark> from the available options. It will be added to the canvas, and its **Task details** slide form will appear on the right, where you can do the desired configuration.

<figure><img src="/files/H0fGu1nwcWb3FYSZwxQe" alt=""><figcaption></figcaption></figure>

### **Configuration options**

1. **Name:** This is the Brainboard field to describe what this task is about.
2. **Version:** Always points to the latest version to give you the latest security checks released.
3. **Skip checks.**
4. **Ignore failure:** This will put the task in a non-blocking failure, which means the execution of the following stage will be triggered even if the task fails.
5. **Require approval:** It implies that this task will not be executed until approved by the people added to the approvers' list.
   * The task remains blocked until all approvers added to the list approve it.
   * When enabled, it allows you to add approvers to the list.

{% hint style="warning" %}
The approver has to be a **Brainboard** user.
{% endhint %}

<figure><img src="/files/jRzlDS1effvzxyNiJAGX" alt="" width="488"><figcaption></figcaption></figure>

{% hint style="info" %}
**API key is optional.** If you have a paid subscription, you can add your key and repository ID.
{% endhint %}

**Sample output**

<figure><img src="/files/Y3cddgpFF1sWiNaLvH1v" alt=""><figcaption></figcaption></figure>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.brainboard.co/automation/supported-plugins/security/checkov.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.