Merge pull request #51 from jnmcfly/radar-2021-01-01-checkov
Add Checkov
This commit is contained in:
bmsuseluda
GitHub
19
radar/2021-01-01/checkov.md
Normal file
19
radar/2021-01-01/checkov.md
Normal file
@@ -0,0 +1,19 @@
|
|||||||
|
---
|
||||||
|
title: "Checkov"
|
||||||
|
ring: assess
|
||||||
|
quadrant: platforms-and-aoe-services
|
||||||
|
|
||||||
|
---
|
||||||
|
|
||||||
|
Checkov is a static code analysis tool for infrastructure-as-code.
|
||||||
|
|
||||||
|
It scans cloud infrastructure provisioned using
|
||||||
|
|
||||||
|
- Terraform
|
||||||
|
- Terraform plan
|
||||||
|
- Cloudformation
|
||||||
|
- Kubernetes
|
||||||
|
|
||||||
|
and detects security and compliance misconfigurations.
|
||||||
|
|
||||||
|
At AOE we use checkov in CI/CD processes to get insights into our Terraform-Modules.
|
||||||
Reference in New Issue
Block a user