DevOps Articles

Curated articles, resources, tips and trends from the DevOps World.

Checkov 2.0: Context-Aware Security Scanning for Infrastructure as Code

4 years ago thenewstack.io
Checkov 2.0: Context-Aware Security Scanning for Infrastructure as Code

Summary: This is a summary of an article originally published by The New Stack. Read the full original article here →

When over 20% of Terraform templates and over 40% of CloudFormation templates are misconfigured, that’s a big task. Misconfigurations in templates can lead to real risks in production, such as SSH ports open to the world and unencrypted databases.

To simplify things for developers, declarative IaC tools can interpret and deploy infrastructure no matter what order it is in in the template.

This customized policy or any others you build can be added to Checkov for every scan by adding it to the appropriate folder in /checkov/{provider}/checks/.

We’ve extended the types of templates, moved to a new backend architecture and dramatically expanded the number of policies.

Read More
Oh Dear
Oh Dear
The all-in-one monitoring tool for your entire website
Fathom
Fathom
Fathom Analytics: A Better Google Analytics Alternative
Namecheap
Namecheap
DevOpsChat Logo Your DevOps Community
Product
Useful Links

Made with pure grit © 2024 Jetpack Labs Inc. All rights reserved. www.jetpacklabs.com