Add exit code logging (bridgecrewio#2641)

* add exit code logging

* add exit code logging

add CKV_K8S_20 for terraform (bridgecrewio#2628)

AWS S3 graph checks for Terraform V4 provider (bridgecrewio#2638)

* add s3BucketSSE yaml check

* add test

* CKV2_AWS_37 check - S3 versioning check with TFv4 support

* fixes

* add s3 logging graph check

* add test to bucket logging

* revert

* eof

* CKV2_AWS_38 check - S3 public ACL check with TFv4 support

* CKV2_AWS_39 check - S3 public ACL write access check with TFv4 support

* support a case where ACL object does not exist for the bucket

* rename check description to match the legacy encryption check

* Fix UTs according to new checks

* Fix UTs according to new checks

* Update checkov/terraform/checks/graph_checks/aws/S3BucketEncryption.yaml

Use within operator

Co-authored-by: Rotem Avni <[email protected]>

* use within operator

Co-authored-by: tronxd <[email protected]>
Co-authored-by: naorda <[email protected]>
Co-authored-by: Rotem Avni <[email protected]>

AWS Kinesis firehose - Delivery streams are encrypted (bridgecrewio#2635

)

* Delivery stream are encrypted

* Not valid if kinesis is the source

check for default namespace - in terraform (bridgecrewio#2629)

Merge cec82d8 into 3370e92

Lower amount of stack traces printed

implement CKV_K8S_14 for terraform - image tags are fixed (bridgecrew…

…io#2624)

* implement CKV_K8S_14 for terraform

* fix for conf

* Update checkov/terraform/checks/resource/kubernetes/ImageTagFixed.py

Co-authored-by: Anton Grübel <[email protected]>

* continue over break

Co-authored-by: Anton Grübel <[email protected]>

Fix replace GHA II

Improve sed