19 lines
407 B
Markdown
19 lines
407 B
Markdown
---
|
|
title: "Checkov"
|
|
ring: assess
|
|
quadrant: platforms-and-aoe-services
|
|
---
|
|
|
|
Checkov is a static code analysis tool for infrastructure-as-code.
|
|
|
|
It scans cloud infrastructure provisioned using
|
|
|
|
- Terraform
|
|
- Terraform plan
|
|
- Cloudformation
|
|
- Kubernetes
|
|
|
|
and detects security and compliance misconfigurations.
|
|
|
|
At AOE we use Checkov in CI/CD processes to get insights into our Terraform-Modules.
|