We scanned the Terraform Registry and analyzed the overall state of infrastructure-as-code security and compliance. Read the full report to learn about the security posture of the IaC ecosystem.
Addressing cloud security in run-time alone isn't enough. Learn the pros of doing both run-time and build-time security together.
Bridgecrew now extends the Serverless Framework’s existing security and compliance policy to secure configurations on AWS.
When managing cloud resources at scale, declarative frameworks help consolidate scripts, improve resource visibility, and…
By investing in IaC security, DevOps and security teams leverage the scalability and predictability of IaC to maintain a strong cloud security posture.
Learn more about infrastructure as code security best practices and how to use Bridgecrew’ and CircleCI to scan IaC for misconfigurations in this webinar recap.
Our new case study shows how Bridgecrew enabled Globality to efficiently eliminate manual configuration errors in their AWS environment.
Infrastructure-as-code security is core to our mission at Bridgecrew which is why we're writing about where security fits into IaC and how to be successful with it.
Use Checkov, Bridgecrew's OSS infrastructure-as-code analysis tool, to scan Kubernetes manifests and identify security issues in Kubernetes workloads.
Our case study with Brex shows how Bridgecrew bridges the gap between their security, DevOps, and compliance teams to secure their cloud.