tfsec

Security scanner for your Terraform code [Moved to: https://github.com/aquasecurity/tfsec] (by tfsec)
Review Terraform Security Scanner Static Analysis CI AWS Azure google-cloud-platform Compliance HacktoberFest infrastructure-as-code

DISCONTINUED

Suggest alternative
Edit details
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

Tfsec Alternatives

Similar projects and alternatives to tfsec

tfsec
tfsec

  1. terraform

    563 tfsec VS terraform

    Terraform enables you to safely and predictably create, change, and improve infrastructure. It is a source-available tool that codifies APIs into declarative configuration files that can be shared amongst team members, treated as code, edited, reviewed, and versioned.

  2. InfluxDB

    InfluxDB – Built for High-Performance Time Series Workloads. InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.

    InfluxDB logo

  3. pre-commit

    206 tfsec VS pre-commit

    A framework for managing and maintaining multi-language pre-commit hooks.

  4. sops

    160 tfsec VS sops

    Simple and flexible tool for managing secrets

  5. rancher

    91 tfsec VS rancher

    Complete container management platform

  6. terraform-provider-azurerm

    86 tfsec VS terraform-provider-azurerm

    Terraform provider for Azure Resource Manager

  7. checkov

    62 tfsec VS checkov

    Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

  8. aws-vault

    50 tfsec VS aws-vault

    A vault for securely storing and accessing AWS credentials in development environments

  9. SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo

  10. terratest

    49 tfsec VS terratest

    Terratest is a Go library that makes it easier to write automated tests for your infrastructure code.

  11. tflint

    37 tfsec VS tflint

    A Pluggable Terraform Linter

  12. terraform-docs

    35 tfsec VS terraform-docs

    Generate documentation from Terraform modules in various output formats

  13. driftctl

    32 tfsec VS driftctl

    Detect, track and alert on infrastructure drift

  14. buildah

    30 tfsec VS buildah

    A tool that facilitates building OCI images.

  15. v2ray-core

    26 tfsec VS v2ray-core

    A platform for building proxies to bypass network restrictions. (by v2fly)

  16. conftest

    11 tfsec VS conftest

    Write tests against structured configuration data using the Open Policy Agent Rego query language

  17. Go

    12 tfsec VS Go

    Algorithms and Data Structures implemented in Go for beginners, following best practices. (by TheAlgorithms)

  18. lotus

    11 tfsec VS lotus

    Reference implementation of the Filecoin protocol, written in Go

  19. pre-commit-hooks

    27 tfsec VS pre-commit-hooks

    Some out-of-the-box hooks for pre-commit

  20. atlantis

    127 tfsec VS atlantis

    Terraform Pull Request Automation

  21. terrascan

    24 tfsec VS terrascan

    Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

  22. terraform-aws-gitlab-runner

    4 tfsec VS terraform-aws-gitlab-runner

    Terraform module for AWS GitLab runners on ec2 (spot) instances

  23. SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better tfsec alternative or higher similarity.
Suggest an alternative to tfsec

tfsec discussion

Log in or Post with

tfsec reviews and mentions

Posts with mentions or reviews of tfsec. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2022-04-17.
  • Terraform in AWS
    4 projects | dev.to | 17 Apr 2022
    Using pre-commit framework with terraform repository, will help your code to be kept clean, formated, updated document and checked for tf security issues (optional with tfsec) before committing and pushing the code to git source.
  • Terraforming in 2021 – new features, testing and compliance
    12 projects | dev.to | 2 May 2021
    Here again more than one tool exists to assist. We will highlight two of the most popular ones here: tfsec and checkov. Both provide a predefined set of checks that they use to inspect your code, allowing to explicitly open exceptions (if you really want to) by annotating your code with comments, and adjust the configuration to ignore some modules, for example.
  • How FirstPort manage GitHub, using code stored in GitHub
    5 projects | dev.to | 27 Apr 2021
    An additional benefit of using a CI workflow is adding automated tests. In this scenario, I’ve added a step leveraging tfsec to scan for static code vulnerabilities. In the example below, tfsec warns against creating an Azure network security rule which is fully open. This will halt and fail the workflow unless I provide an ignore comment to accept the warning.
  • Terraform v15.0 with AWS (EKS deployment)
    7 projects | dev.to | 17 Apr 2021
    · Provision an EKS Cluster (AWS) · Terraform v15.0 · Terraform Registry · Pre-Commit · Terraform Pre-commit · Terraform-docs · Tflint · Tfsec
  • A way to restrict options for devs in AWS
    2 projects | /r/devops | 2 Apr 2021
    Using terraform, create a skeleton directory that they can review for how EC2 instances should be created. Use tools like https://github.com/tfsec/tfsec or other scanners/linters to validate that your developers followed this process and didn't uncheck something.
  • Terraform VMware vSphere Provider - is it worth it?
    1 project | /r/Terraform | 12 Jan 2021
    I know tfsec (https://github.com/tfsec/tfsec) which is pretty good for AWS resources but I think vSphere resources are not implemented.
  • Gopher Gold #15 - Wed Oct 14 2020
    16 projects | dev.to | 14 Oct 2020
    tfsec/tfsec (Go): 🔒🌍 Static analysis powered security scanner for your terraform code
  • A note from our sponsor - SaaSHub
    www.saashub.com | 18 Jun 2025
    SaaSHub helps you find the best software and product alternatives Learn more →

Stats

Basic tfsec repo stats
7
2,991
9.4
almost 4 years ago

tfsec/tfsec is an open source project licensed under MIT License which is an OSI approved license.

The primary programming language of tfsec is Go.

Popular Comparisons

  1. tfsec VS tflint
  2. tfsec VS checkov
  3. tfsec VS conftest
  4. tfsec VS pre-commit-hooks
  5. tfsec VS atlantis
  6. tfsec VS terrascan
  7. tfsec VS terraform-aws-gitlab-runner
  8. tfsec VS terraform-provider-azurerm
  9. tfsec VS pre-commit
  10. tfsec VS pre-commit-terraform

Sponsored
InfluxDB – Built for High-Performance Time Series Workloads
InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.
www.influxdata.com

Did you know that Go is
the 4th most popular programming language
based on number of references?

Loading...