tfsec-1.28.11 – static analyzer for Terraform (cvsweb github mirror)

Description

tfsec uses static analysis of your Terraform code to spot potential
misconfigurations.

Features:
* Checks for misconfigurations across all major (and some minor) cloud providers
* Hundreds of built-in rules
* Scans modules (local and remote)
* Evaluates HCL expressions as well as literal values
* Evaluates Terraform functions e.g. concat()
* Evaluates relationships between Terraform resources
* Compatible with the Terraform CDK
* Applies (and embellishes) user-defined Rego policies
* Supports multiple output formats: lovely (default), JSON, SARIF, CSV,
  CheckStyle, JUnit, text, Gif.
* Configurable (via CLI flags and/or config file)
* Very fast, capable of quickly scanning huge repositories
* Plugins for popular IDEs available (JetBrains, VSCode and Vim)
* Community-driven - come and chat with us on Slack!

WWW: https://aquasecurity.github.io/tfsec

Maintainer

Pavel Korovin

Only for arches

aarch64 amd64 arm i386 riscv64

Categories

lang/go security

Build dependencies

Files

Ports Readmes 7.52, created on 2024-11-14, powered by Dancer 1.3521