Bridgecrew Multi-Cloud Drift Detection identifies differences between your IaC code and cloud, so you can quickly bring them back in sync.
Learn about Bridgecrew's contribution to Hacktoberfest 2021. We're getting our open-source community involved and giving away some cool prizes.
Learn advanced tips about securing Terraform, such as security scanning at each step of the DevOps lifecycle, keeping IAM sprawl under control, and more.
Bridgecrew has been updated to automatically comment on misconfigurations for resources, and includes richer context and fix suggestions.
Puppet has just released the 10 year anniversary version of their annual State of DevOps Report. Important findings include the role of automation, cultural buy-in, and more.
Even the most popular web server deployment has insecure defaults. Here, we identify misconfigurations in default K8s NGINX deployments.
Learn five common mistakes developers while managing the security of secrets like passwords, API keys, tokens, and more.
Get our top tips for leveraging infrastructure as code (IaC) for efficient cloud management and a secure cloud environment.
Want to get started with infrastructure as code (IaC)? Get guidelines for securely leveraging Terraform and Terraform modules.
Use Yor to automate the process of adding team ownership and environment tags to IaC and enforce AWS IAM policies using tagged resources.
Follow these seven best practices to optimize your version control system (VCS) and bring security and automation for more robust DevSecOps.
Automate AWS Config compliance fixes for infrastructure as code misconfigurations using Yor and Slack notifications.
Prioritize only new infrastructure as code misconfigurations with open-source tool Checkov's baseline feature.