Checkov Alternatives
Similar projects and alternatives to checkov
-
tfsec
Security scanner for your Terraform code [Moved to: https://github.com/aquasecurity/tfsec] (by tfsec)
-
-
SonarLint
Deliver Cleaner and Safer Code - Right in Your IDE of Choice!. SonarLint is a free and open source IDE extension that identifies and catches bugs and vulnerabilities as you code, directly in the IDE. Install from your favorite IDE marketplace today.
-
terratest
Terratest is a Go library that makes it easier to write automated tests for your infrastructure code.
-
terraform-security-scan
Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec
-
terrascan
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
-
-
trivy
Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues and hard-coded secrets
-
Scout APM
Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.
-
Pulumi
Pulumi - Universal Infrastructure as Code. Your Cloud, Your Language, Your Way 🚀
-
pre-commit-terraform
pre-commit git hooks to take care of Terraform configurations 🇺🇦
-
-
-
kube-bench
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
-
-
-
terraform-docs
Generate documentation from Terraform modules in various output formats
-
conftest
Write tests against structured configuration data using the Open Policy Agent Rego query language
-
cfn-security
A simple GitHub Action for AWS CloudFormation static code analysis to improve infrastructure-as-code security.
-
-
terraform
Terraform enables you to safely and predictably create, change, and improve infrastructure. It is an open source tool that codifies APIs into declarative configuration files that can be shared amongst team members, treated as code, edited, reviewed, and versioned.
-
checkov reviews and mentions
- Allow ECS Task Role to assume any role or invoke any lambda function. Yay or nay?
-
Terraform Best Practices for Better Infrastructure Management
checkov – Terraform static analysis tool
-
Terraform policy generator?
Checkov
-
Finding and Fixing Cloud Misconfigurations with open source
The IaC scanner called Checkov, helps prevent misconfigured and insecure configurations prior to being released in the wild, leveraging a policy as code for everyone approach.
-
Ways to test terraform scripts
- Security and Compliance testing for terraform: - https://github.com/bridgecrewio/checkov
-
Learn About Infrastructure as Code in 5 Minutes and Why You Should Use It
Errors in IaC files can be a serious problem if they are not detected prior to deploying IaC definitions. Therefore, it is recommended to automatically and continuously scan IaC files, ensuring that verification occurs whenever an IaC definition is created or updated. You can do it using such tools as Checkov, TFLint, Accurics.
-
Policyer Action
Policyer is an open source project (more like a vision) I created after inspired by policy engines that become very popular lately (OPA,Checkov) Policyer going to focus on providing platform to run and create meaningful reports, data engagement and plugin system to let you provide any data, some time it can be k8s yaml and in other it can be user data.
-
Container security best practices: Comprehensive guide
If you are using infrastructure as code, incorporate IaC scanning tools like Apolicy, Checkov, tfsec, or cfn_nag to validate the configuration of your infrastructure before it is created or updated. Similar to other linting tools, apply IaC scanning tools locally and in your pipeline, and consider blocking changes that introduce security issues.
-
Testing Terraform The Right Way
checkov — https://github.com/bridgecrewio/checkov/
-
Kubernetes Security Checklist 2021
Workload configuration should be audited regularly (Kics, Kubeaudit, Kubescape, Conftest, Kubesec, Checkov)
- Policy-as-Code for Everyone
-
checkov VS terrascan - a user suggested alternative
2 projects | 8 Aug 2021
-
Finally done: ACloudGuru Elasticache Challenge!
The use of BridgeCrew Checkov to validate the security and best practices of your Terraform IaC.
-
How to fix checkov failed item by its rules?
Have you tried posting an issue to https://github.com/bridgecrewio/checkov ?
-
Terraforming in 2021 – new features, testing and compliance
Here again more than one tool exists to assist. We will highlight two of the most popular ones here: tfsec and checkov. Both provide a predefined set of checks that they use to inspect your code, allowing to explicitly open exceptions (if you really want to) by annotating your code with comments, and adjust the configuration to ignore some modules, for example.
Stats
bridgecrewio/checkov is an open source project licensed under Apache License 2.0 which is an OSI approved license.
Popular Comparisons
Are you hiring? Post a new remote job listing for free.