这是indexloc提供的服务,不要输入任何密码
Skip to content

SSL Certificate Error : Skips using BC_* IDs will not work #7353

New issue
New issue
Open
Open
SSL Certificate Error : Skips using BC_* IDs will not work#7353
Labels
skips
@jean-humann

Description

@jean-humann
jean-humann
opened on Oct 23, 2025

Describe the issue
When running checkov -d . I have this error

checkov -d .
2025-10-23 18:21:25,927 [MainThread  ] [WARNI]  Failed to get the checkov mappings and guidelines from https://api0.prismacloud.io/bridgecrew/api/v2/guidelines. Skips using BC_* IDs will not work.
Traceback (most recent call last):
  File "urllib3/connectionpool.py", line 716, in urlopen
  File "urllib3/connectionpool.py", line 404, in _make_request
  File "urllib3/connectionpool.py", line 1061, in _validate_conn
  File "urllib3/connection.py", line 419, in connect
  File "urllib3/util/ssl_.py", line 458, in ssl_wrap_socket
  File "urllib3/util/ssl_.py", line 502, in _ssl_wrap_socket_impl
  File "ssl.py", line 501, in wrap_socket
  File "ssl.py", line 1041, in _create
  File "ssl.py", line 1310, in do_handshake
ssl.SSLCertVerificationError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1129)

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "checkov/common/bridgecrew/platform_integration.py", line 1273, in get_public_run_config
    request = self.http.request("GET", self.guidelines_api_url, headers=headers)  # type:ignore[no-untyped-call]
  File "urllib3/request.py", line 77, in request
  File "urllib3/request.py", line 99, in request_encode_url
  File "urllib3/poolmanager.py", line 376, in urlopen
  File "urllib3/connectionpool.py", line 830, in urlopen
  File "urllib3/connectionpool.py", line 830, in urlopen
  File "urllib3/connectionpool.py", line 830, in urlopen
  File "urllib3/connectionpool.py", line 802, in urlopen
  File "urllib3/util/retry.py", line 594, in increment
urllib3.exceptions.MaxRetryError: HTTPSConnectionPool(host='api0.prismacloud.io', port=443): Max retries exceeded with url: /bridgecrew/api/v2/guidelines (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1129)')))

Version (please complete the following information):

  • Checkov Version 3.2.485

Additional context
Checkov is installed through mise cf. @jdx
https://github.com/jdx/mise

which checkov
/Users/jean/.local/share/mise/installs/checkov/3.2.486/dist/checkov

Metadata

Metadata

Assignees

No one assigned

    Labels

    skips

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions