Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
☆5,201Nov 20, 2025Updated 3 months ago
Alternatives and similar repositories for terrascan
Users that are interested in terrascan are comparing it to the libraries listed below
Sorting:
- Tfsec is now part of Trivy☆6,961Nov 10, 2025Updated 3 months ago
- A Pluggable Terraform Linter☆5,630Feb 23, 2026Updated last week
- Cloud cost estimates for Terraform in pull requests💰📉 Shift FinOps Left!☆12,184Updated this week
- Detect, track and alert on infrastructure drift☆2,621Jan 30, 2026Updated last month
- Terratest is a Go library that makes it easier to write automated tests for your infrastructure code.☆7,877Feb 25, 2026Updated last week
- Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud envir…☆13,160Updated this week
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆32,280Updated this week
- Terragrunt is a flexible orchestration tool that allows Infrastructure as Code written in OpenTofu/Terraform to scale.☆9,347Updated this week
- CLI tool to generate terraform files from existing infrastructure (reverse Terraform). Infrastructure to Code☆14,495Dec 5, 2025Updated 3 months ago
- Generate documentation from Terraform modules in various output formats☆4,706Dec 18, 2025Updated 2 months ago
- Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security…☆11,213Feb 18, 2026Updated 2 weeks ago
- Terraform Pull Request Automation☆8,873Feb 26, 2026Updated last week
- a lightweight, security focused, BDD test framework against terraform.☆1,439Dec 8, 2025Updated 2 months ago
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,575Updated this week
- Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark☆7,951Feb 23, 2026Updated last week
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆3,129Feb 23, 2026Updated last week
- Cloud Native Runtime Security☆8,690Feb 23, 2026Updated last week
- A vulnerability scanner for container images and filesystems☆11,652Updated this week
- A web dashboard to inspect Terraform States☆2,000Updated this week
- Vulnerability Static Analysis for Containers☆10,932Feb 25, 2026Updated last week
- Cost monitoring for Kubernetes workloads and cloud costs☆6,403Updated this week
- Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resour…☆5,937Updated this week
- pre-commit git hooks to take care of Terraform configurations 🇺🇦☆3,663Feb 24, 2026Updated last week
- Reads from existing public and private cloud providers (reverse Terraform) and generates your infrastructure as code on Terraform configu…☆2,350Sep 2, 2025Updated 6 months ago
- Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s manifests) for AWS, Azure, Google Cloud, and Kubernetes se…☆963Sep 3, 2024Updated last year
- Curated list of resources on HashiCorp's Terraform and OpenTofu☆6,307Updated this week
- Hunt for security weaknesses in Kubernetes clusters☆5,005Mar 19, 2024Updated last year
- KubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented in them adh…☆3,403Feb 25, 2026Updated last week
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆8,435Updated this week
- Terratag is a CLI tool that enables users of Terraform to automatically create and maintain tags across their entire set of AWS, Azure, a…☆1,043Dec 17, 2025Updated 2 months ago
- Validation of best practices in your Kubernetes clusters☆3,347Feb 24, 2026Updated last week
- Interactive Terraform visualization. State and configuration explorer.☆3,266Jul 30, 2025Updated 7 months ago
- Cloud Security Posture Management (CSPM)☆3,707Feb 23, 2026Updated last week
- AI-ready API traffic analyzer for Kubernetes, providing deep packet inspection with complete API and Kubernetes contexts, retaining clust…☆11,803Feb 26, 2026Updated last week
- Multi-Cloud Security Auditing Tool☆7,551Sep 23, 2025Updated 5 months ago
- Read your tfstate or HCL to generate a graph specific for each provider, showing only the resources that are most important/relevant.☆1,996Aug 13, 2025Updated 6 months ago
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.☆9,405Oct 16, 2025Updated 4 months ago
- Karpenter is a Kubernetes Node Autoscaler built for flexibility, performance, and simplicity.☆7,577Updated this week
- Unified Policy as Code☆7,446Updated this week