Checkov Alternatives

Similar projects and alternatives to checkov

tfsec

1 2,991 9.4 Go checkov VS tfsec

Security scanner for your Terraform code [Moved to: https://github.com/aquasecurity/tfsec] (by tfsec)
tflint

4 3,085 8.8 Go checkov VS tflint

A Pluggable Terraform Linter
SonarLint

www.sonarlint.org
sponsored

Deliver Cleaner and Safer Code - Right in Your IDE of Choice!. SonarLint is a free and open source IDE extension that identifies and catches bugs and vulnerabilities as you code, directly in the IDE. Install from your favorite IDE marketplace today.
terratest

4 6,098 8.4 Go checkov VS terratest

Terratest is a Go library that makes it easier to write automated tests for your infrastructure code.
terraform-security-scan

- 95 3.7 Shell checkov VS terraform-security-scan

Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec
terrascan

- 3,018 9.0 Go checkov VS terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
atlantis

3 4,785 9.4 Go checkov VS atlantis

Terraform Pull Request Automation
trivy

- 11,784 9.6 Go checkov VS trivy

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues and hard-coded secrets
Scout APM

scoutapm.com
sponsored

Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.
Pulumi

3 12,422 9.9 Go checkov VS Pulumi

Pulumi - Universal Infrastructure as Code. Your Cloud, Your Language, Your Way 🚀
pre-commit-terraform

3 1,744 8.4 Shell checkov VS pre-commit-terraform

pre-commit git hooks to take care of Terraform configurations 🇺🇦
tfsec

- 4,502 9.7 Go checkov VS tfsec

Security scanner for your Terraform code
falco

2 4,819 9.7 C++ checkov VS falco

Cloud Native Runtime Security
kube-bench

2 4,807 8.2 Go checkov VS kube-bench

Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
kube-hunter

2 3,674 5.5 Python checkov VS kube-hunter

Hunt for security weaknesses in Kubernetes clusters
tfenv

2 3,132 4.6 Shell checkov VS tfenv

Terraform version manager
terraform-docs

2 2,763 6.7 Go checkov VS terraform-docs

Generate documentation from Terraform modules in various output formats
conftest

2 2,242 8.5 Go checkov VS conftest

Write tests against structured configuration data using the Open Policy Agent Rego query language
cfn-security

2 4 1.4 Shell checkov VS cfn-security

A simple GitHub Action for AWS CloudFormation static code analysis to improve infrastructure-as-code security.
cfn_nag

- 1,024 5.1 Ruby checkov VS cfn_nag

Linting tool for CloudFormation templates
terraform

1 32,524 9.9 Go checkov VS terraform

Terraform enables you to safely and predictably create, change, and improve infrastructure. It is an open source tool that codifies APIs into declarative configuration files that can be shared amongst team members, treated as code, edited, reviewed, and versioned.
OSQuery

1 18,896 9.1 C++ checkov VS OSQuery

SQL powered operating system instrumentation, monitoring, and analytics.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better checkov alternative or higher similarity.

Suggest an alternative to checkov

checkov reviews and mentions

Posts with mentions or reviews of checkov. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2022-05-15.

Allow ECS Task Role to assume any role or invoke any lambda function. Yay or nay?
1 project | reddit.com/r/aws | 18 May 2022
Terraform Best Practices for Better Infrastructure Management
9 projects | dev.to | 15 May 2022

checkov – Terraform static analysis tool
Terraform policy generator?
2 projects | reddit.com/r/Terraform | 15 Apr 2022

Checkov
Finding and Fixing Cloud Misconfigurations with open source
1 project | dev.to | 7 Apr 2022

The IaC scanner called Checkov, helps prevent misconfigured and insecure configurations prior to being released in the wild, leveraging a policy as code for everyone approach.
Ways to test terraform scripts
2 projects | reddit.com/r/Terraform | 26 Jan 2022

- Security and Compliance testing for terraform: - https://github.com/bridgecrewio/checkov
Learn About Infrastructure as Code in 5 Minutes and Why You Should Use It
6 projects | dev.to | 21 Jan 2022

Errors in IaC files can be a serious problem if they are not detected prior to deploying IaC definitions. Therefore, it is recommended to automatically and continuously scan IaC files, ensuring that verification occurs whenever an IaC definition is created or updated. You can do it using such tools as Checkov, TFLint, Accurics.
Policyer Action
5 projects | dev.to | 5 Dec 2021

Policyer is an open source project (more like a vision) I created after inspired by policy engines that become very popular lately (OPA,Checkov) Policyer going to focus on providing platform to run and create meaningful reports, data engagement and plugin system to let you provide any data, some time it can be k8s yaml and in other it can be user data.
Container security best practices: Comprehensive guide
17 projects | dev.to | 16 Nov 2021

If you are using infrastructure as code, incorporate IaC scanning tools like Apolicy, Checkov, tfsec, or cfn_nag to validate the configuration of your infrastructure before it is created or updated. Similar to other linting tools, apply IaC scanning tools locally and in your pipeline, and consider blocking changes that introduce security issues.
Testing Terraform The Right Way
4 projects | dev.to | 25 Oct 2021

checkov — https://github.com/bridgecrewio/checkov/
Kubernetes Security Checklist 2021
28 projects | dev.to | 18 Oct 2021

Workload configuration should be audited regularly (Kics, Kubeaudit, Kubescape, Conftest, Kubesec, Checkov)
Policy-as-Code for Everyone
1 project | news.ycombinator.com | 20 Sep 2021
checkov VS terrascan - a user suggested alternative
2 projects | 8 Aug 2021
Finally done: ACloudGuru Elasticache Challenge!
3 projects | dev.to | 30 Jul 2021

The use of BridgeCrew Checkov to validate the security and best practices of your Terraform IaC.
How to fix checkov failed item by its rules?
1 project | reddit.com/r/Terraform | 10 May 2021

Have you tried posting an issue to https://github.com/bridgecrewio/checkov ?
Terraforming in 2021 – new features, testing and compliance
12 projects | dev.to | 2 May 2021

Here again more than one tool exists to assist. We will highlight two of the most popular ones here: tfsec and checkov. Both provide a predefined set of checks that they use to inspect your code, allowing to explicitly open exceptions (if you really want to) by annotating your code with comments, and adjust the configuration to ignore some modules, for example.

Stats

Basic checkov repo stats

Mentions

Stars

4,156

Activity

10.0

Last Commit

5 days ago

bridgecrewio/checkov is an open source project licensed under Apache License 2.0 which is an OSI approved license.

checkov

Checkov Alternatives

Similar projects and alternatives to checkov

checkov reviews and mentions

Stats

Popular Comparisons