From 3c961257283a002c819023fded7cd69c73fbc411 Mon Sep 17 00:00:00 2001 From: Jan Bechtel Date: Mon, 28 Jun 2021 11:25:27 +0200 Subject: [PATCH 1/3] Add checkov Signed-off-by: Jan Bechtel --- radar/2021-01-01/checkov.md | 12 ++++++++++++ 1 file changed, 12 insertions(+) create mode 100644 radar/2021-01-01/checkov.md diff --git a/radar/2021-01-01/checkov.md b/radar/2021-01-01/checkov.md new file mode 100644 index 0000000..c32ab2c --- /dev/null +++ b/radar/2021-01-01/checkov.md @@ -0,0 +1,12 @@ +--- +title: "Checkov" +ring: assess +quadrant: platforms-and-aoe-services + +--- + +Checkov is a static code analysis tool for infrastructure-as-code. + +It scans cloud infrastructure provisioned using Terraform, Terraform plan, Cloudformation, Kubernetes, Dockerfile, Serverless or ARM Templates and detects security and compliance misconfigurations using graph-based scanning. + +At AOE we use checkov in CI/CD processes to get insights into our Terraform-Modules. \ No newline at end of file From a88a0f10a5073a74d0edd8b361a4b2a858721816 Mon Sep 17 00:00:00 2001 From: Jan Bechtel Date: Mon, 28 Jun 2021 11:36:09 +0200 Subject: [PATCH 2/3] update desc Signed-off-by: Jan Bechtel --- radar/2021-01-01/checkov.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/radar/2021-01-01/checkov.md b/radar/2021-01-01/checkov.md index c32ab2c..9afbf4a 100644 --- a/radar/2021-01-01/checkov.md +++ b/radar/2021-01-01/checkov.md @@ -7,6 +7,6 @@ quadrant: platforms-and-aoe-services Checkov is a static code analysis tool for infrastructure-as-code. -It scans cloud infrastructure provisioned using Terraform, Terraform plan, Cloudformation, Kubernetes, Dockerfile, Serverless or ARM Templates and detects security and compliance misconfigurations using graph-based scanning. +It scans cloud infrastructure provisioned using Terraform, Terraform plan, Cloudformation, Kubernetes, detects security and compliance misconfigurations. At AOE we use checkov in CI/CD processes to get insights into our Terraform-Modules. \ No newline at end of file From 8cca09dcd8febe765bc7f7823ab8ebb2a5afef48 Mon Sep 17 00:00:00 2001 From: Jan Bechtel Date: Tue, 29 Jun 2021 13:34:19 +0200 Subject: [PATCH 3/3] use bullets --- radar/2021-01-01/checkov.md | 11 +++++++++-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/radar/2021-01-01/checkov.md b/radar/2021-01-01/checkov.md index 9afbf4a..1517e02 100644 --- a/radar/2021-01-01/checkov.md +++ b/radar/2021-01-01/checkov.md @@ -7,6 +7,13 @@ quadrant: platforms-and-aoe-services Checkov is a static code analysis tool for infrastructure-as-code. -It scans cloud infrastructure provisioned using Terraform, Terraform plan, Cloudformation, Kubernetes, detects security and compliance misconfigurations. +It scans cloud infrastructure provisioned using -At AOE we use checkov in CI/CD processes to get insights into our Terraform-Modules. \ No newline at end of file +- Terraform +- Terraform plan +- Cloudformation +- Kubernetes + +and detects security and compliance misconfigurations. + +At AOE we use checkov in CI/CD processes to get insights into our Terraform-Modules.