terraform-aws-module-template
terraform-security-scan
terraform-aws-module-template | terraform-security-scan | |
---|---|---|
1 | 1 | |
16 | 110 | |
- | - | |
1.2 | 4.6 | |
about 1 year ago | 8 months ago | |
Shell | Shell | |
Apache License 2.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
terraform-aws-module-template
terraform-security-scan
-
tfsec vs chekhov vs terrascan - What do pople recommend?
While I think the major problem is how the https://github.com/triat/terraform-security-scan action works in that it compiles tfsec from scratch on each run. There is a major issue to me with how the tfsec team manages their project it seems like instead of releasing new versions of their tool they will go back and retag new code. This has introduced issues where the tfsec will just randomly fail one day because of a bug, we've had it happen about 3 times in the last four months.
What are some alternatives?
aws-grafana-billing-dashboard - A Grafana dashboard for AWS billing metrics which is deployable via Terraform or cdktf
checkov - Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
terraform-module-template - Best Practices for a Terraform Module and supporting content
tfsec - Security scanner for your Terraform code
terraform-terraform-template - Terraform module template. Good for any cloud and any provider
prowler - Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
super-linter - Combination of multiple linters to install as a GitHub Action
s3-sync-action - ๐ GitHub Action to sync a directory with a remote S3 bucket ๐งบ
tfsec - Security scanner for your Terraform code [Moved to: https://github.com/aquasecurity/tfsec]
terraform-multienv - A template for maintaining a multiple environments infrastructure with Terraform. This template includes a CI/CD process, that applies the infrastructure in an AWS account.
actions - GitHub Action for Infracost. See cloud cost estimates for Terraform in pull requests. ๐ฐ๐ Love your cloud bill!