-
checkov
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
I've been looking for Policy as code tools to monitor Git repositories configuration in Bitbucket, I've found this tool checkov and looks it can meet what I'm looking for and I would like to know...
I'm using it in my public incidents-k8s Github Actions. Haven't fixed yet all the issues it found, but got down some of them. It taught me some pretty neat trick, but issues it founds for k8s are pretty obscure and complex to implement.