The security/tfsec port
tfsec-1.28.5 – static analyzer for Terraform (cvsweb github mirror)
Description
tfsec uses static analysis of your Terraform code to spot potential misconfigurations. Features: * Checks for misconfigurations across all major (and some minor) cloud providers * Hundreds of built-in rules * Scans modules (local and remote) * Evaluates HCL expressions as well as literal values * Evaluates Terraform functions e.g. concat() * Evaluates relationships between Terraform resources * Compatible with the Terraform CDK * Applies (and embellishes) user-defined Rego policies * Supports multiple output formats: lovely (default), JSON, SARIF, CSV, CheckStyle, JUnit, text, Gif. * Configurable (via CLI flags and/or config file) * Very fast, capable of quickly scanning huge repositories * Plugins for popular IDEs available (JetBrains, VSCode and Vim) * Community-driven - come and chat with us on Slack!WWW: https://aquasecurity.github.io/tfsec
Maintainer
Pavel Korovin
Only for arches
aarch64 amd64 arm armv7 i386 mips64 riscv64
Categories
Build dependencies
Files
- /usr/local/bin/tfsec