bridgecrewio / checkov
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
☆6,987Updated this week
Related projects: ⓘ
- Tfsec is now part of Trivy☆6,659Updated last week
- A Pluggable Terraform Linter☆4,852Updated this week
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆4,684Updated last week
- Terratest is a Go library that makes it easier to write automated tests for your infrastructure code.☆7,462Updated 2 weeks ago
- Terragrunt is a flexible orchestration tool that allows Infrastructure as Code written in OpenTofu/Terraform to scale.☆7,931Updated this week
- Detect, track and alert on infrastructure drift☆2,448Updated 2 months ago
- Interactive Terraform visualization. State and configuration explorer.☆3,005Updated 2 months ago
- Terraform Pull Request Automation☆7,676Updated this week
- Generate documentation from Terraform modules in various output formats☆4,179Updated last week
- Cloud cost estimates for Terraform in pull requests💰📉 Shift FinOps Left!☆10,878Updated this week
- Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark☆6,933Updated last week
- CLI tool to generate terraform files from existing infrastructure (reverse Terraform). Infrastructure to Code☆12,416Updated last week
- pre-commit git hooks to take care of Terraform configurations 🇺🇦☆3,157Updated this week
- Reads from existing public and private cloud providers (reverse Terraform) and generates your infrastructure as code on Terraform configu…☆2,173Updated 4 months ago
- Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resour…☆5,365Updated this week
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆2,848Updated this week
- Boundary enables identity-based access management for dynamic infrastructure.☆3,831Updated this week
- Curated list of resources on HashiCorp's Terraform and OpenTofu☆5,424Updated last week
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,024Updated this week
- Hunt for security weaknesses in Kubernetes clusters☆4,715Updated 6 months ago
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆22,863Updated this week
- A tool for cleaning up your cloud accounts by nuking (deleting) all resources within it☆2,752Updated last week
- Interactive visualizations of Terraform dependency graphs using d3.js☆2,043Updated last month
- Read your tfstate or HCL to generate a graph specific for each provider, showing only the resources that are most important/relevant.☆1,706Updated 3 months ago
- Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on p…☆4,229Updated last week
- Terraform module to create Amazon Elastic Kubernetes (EKS) resources 🇺🇦☆4,386Updated this week
- 👀 A Kubernetes cluster resource sanitizer☆5,199Updated this week
- A vault for securely storing and accessing AWS credentials in development environments☆8,417Updated last month
- Terraform version manager☆4,497Updated 2 months ago
- Karpenter is a Kubernetes Node Autoscaler built for flexibility, performance, and simplicity.☆6,606Updated this week