AJR/TechradarDev
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add checkov

Browse Source 
Signed-off-by: Jan Bechtel <jan.bechtel@omnevo.net>
This commit is contained in:
Jan Bechtel
2021-06-28 11:25:27 +02:00
parent 314d1171f2
commit 3c96125728
1 changed files with 12 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
radar/2021-01-01/checkov.md Normal file
View File

@@ -0,0 +1,12 @@
---
title: "Checkov"
ring: assess
quadrant: platforms-and-aoe-services
---
Checkov is a static code analysis tool for infrastructure-as-code.
It scans cloud infrastructure provisioned using Terraform, Terraform plan, Cloudformation, Kubernetes, Dockerfile, Serverless or ARM Templates and detects security and compliance misconfigurations using graph-based scanning.
At AOE we use checkov in CI/CD processes to get insights into our Terraform-Modules.