Glossary
IaC Scanning
IaC scanning checks your infrastructure code for security problems before you build anything - like having someone review blueprints before construction.
What is IaC Scanning?
Static analysis of infrastructure as code templates to identify security misconfigurations before deployment.
Why Should You Care?
Catching misconfigurations in code is cheaper and faster than fixing them in production. Shift left security for infrastructure.
Is your business exposed?
Real-World Example
Checkov identifies a Terraform configuration that would create a publicly accessible database and fails the pipeline.
How to Protect Against IaC Scanning
- 1.
Add IaC scanning to all infrastructure pipelines
- 2.
Define acceptable risk thresholds for IaC findings
Related Terms
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required