Blog | Bridgecrew

Introducing the State of Open Source Terraform Security Report

Guy Eisenkot/ July 22, 2020July 23, 2020

We scanned the Terraform Registry and analyzed the overall state of infrastructure-as-code security and compliance. Read the full report to learn about the security posture of the IaC ecosystem.

Securing cloud infrastructure in run-time vs. build-time

Guy Eisenkot/ August 10, 2020August 9, 2020

Addressing cloud security in run-time alone isn't enough. Learn the pros of doing both run-time and build-time security together.

Securing Serverless Framework configurations for AWS using Bridgecrew

Guy Eisenkot/ August 6, 2020August 6, 2020

Bridgecrew now extends the Serverless Framework’s existing security and compliance policy to secure configurations on AWS.

Scanning Azure Resource Manager (ARM) Templates with Bridgecrew

Jon Jozwiak/ July 30, 2020August 6, 2020

When managing cloud resources at scale, declarative frameworks help consolidate scripts, improve resource visibility, and…

Infrastructure-as-code

Why investing in IaC security should be top of mind for DevOps and security teams

Barak Schoster/ July 27, 2020July 29, 2020

By investing in IaC security, DevOps and security teams leverage the scalability and predictability of IaC to maintain a strong cloud security posture.

Webinar recap: Infrastructure-as-code scanning in your CI/CD workflow with Bridgecrew and CircleCI

Payton O'Neal/ July 23, 2020

Learn more about infrastructure as code security best practices and how to use Bridgecrew’ and CircleCI to scan IaC for misconfigurations in this webinar recap.

How Globality eliminated manual cloud configuration errors and saved time securing its AWS infrastructure

Payton O'Neal/ July 8, 2020July 10, 2020

Our new case study shows how Bridgecrew enabled Globality to efficiently eliminate manual configuration errors in their AWS environment.

Cloud security

Infrastructure-as-code security 101

Payton O'Neal/ June 30, 2020June 30, 2020

Infrastructure-as-code security is core to our mission at Bridgecrew which is why we're writing about where security fits into IaC and how to be successful with it.

Infrastructure-as-code

Kubernetes static code analysis with Checkov

Jon Jozwiak/ June 24, 2020June 24, 2020

Use Checkov, Bridgecrew's OSS infrastructure-as-code analysis tool, to scan Kubernetes manifests and identify security issues in Kubernetes workloads.

Enabling BetterHelp to detect and prevent cloud infrastructure security issues

Payton O'Neal/ June 23, 2020

Our case study with Brex shows how Bridgecrew bridges the gap between their security, DevOps, and compliance teams to secure their cloud.

Subscribe to our newsletter