Merge pull request #51 from jnmcfly/radar-2021-01-01-checkov

Add Checkov
2021-06-29 13:54:39 +02:00
parent 2e902f1961 8cca09dcd8
commit 6abaf5d0c1
1 changed files with 19 additions and 0 deletions
--- a/radar/2021-01-01/checkov.md
+++ b/radar/2021-01-01/checkov.md
@@ -0,0 +1,19 @@
+---
+title:      "Checkov"
+ring:       assess
+quadrant:   platforms-and-aoe-services
+
+---
+
+Checkov is a static code analysis tool for infrastructure-as-code.
+
+It scans cloud infrastructure provisioned using
+
+- Terraform
+- Terraform plan
+- Cloudformation
+- Kubernetes
+
+and detects security and compliance misconfigurations.
+
+At AOE we use checkov in CI/CD processes to get insights into our Terraform-Modules.