From f89f6e7157fdd3ece609ff5968c3b3638829652c Mon Sep 17 00:00:00 2001
From: Astound <kirito@disroot.org>
Date: Sun, 13 Jul 2025 19:57:56 -0500
Subject: [PATCH] Add checkov package

---
 Dockerfile | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index 87116c3..4cd6752 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -43,6 +43,7 @@ RUN apt-get update -y && apt-get upgrade -y && apt-get install --no-install-reco
     nodejs \
     npm \
     passwd \
+    pipx \
     python3 \
     python3-pip \
     python3-venv \
@@ -64,10 +65,11 @@ RUN apt-get update -y && apt-get upgrade -y && apt-get install --no-install-reco
 # Docker
 RUN curl -fsSL https://get.docker.com | sh && dockerd --version
 
-# pre-commit
-RUN pip3 install --break-system-packages --no-cache-dir pipx && \
-    pipx install pre-commit && \
-    ln -s /root/.local/pipx/venvs/pre-commit/bin/pre-commit /usr/local/bin/pre-commit
+# pre-commit and checkov
+RUN pipx install pre-commit && \
+    pipx install "checkov>=3.1.0,<3.3.0" && \
+    ln -s /root/.local/pipx/venvs/pre-commit/bin/pre-commit /usr/local/bin/pre-commit && \
+    ln -s /root/.local/pipx/venvs/checkov/bin/checkov /usr/local/bin/checkov
 
 # AWS CLI (handle arch manually)
 RUN set -e; \