Bridgecrew's Codified Security Blog | Bridgecrew

Sign in Sign up

Tutorial: Enforcing Security and Compliance Policies in CloudFormation with Bridgecrew

Mike Urbanski/ October 21, 2020October 22, 2020

Learn how to secure your AWS CloudFormation templates with Bridgecrew's continuous scanning, monitoring, and easy remediation.

CodifiedSecurity Office Hours Recap: Episode 02

<img width="150" height="150" alt="" loading="lazy" data-srcset="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-150x150.jpeg 150w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-300x300.jpeg 300w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-768x768.jpeg 768w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-24x24.jpeg 24w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-48x48.jpeg 48w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-96x96.jpeg 96w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot.jpeg 800w" data-src="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-150x150.jpeg" data-sizes="(max-width: 150px) 100vw, 150px" class="avatar avatar-150 photo lazyload" src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" /><noscript><img width="150" height="150" src="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-150x150.jpeg" class="avatar avatar-150 photo" alt="" loading="lazy" srcset="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-150x150.jpeg 150w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-300x300.jpeg 300w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-768x768.jpeg 768w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-24x24.jpeg 24w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-48x48.jpeg 48w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-96x96.jpeg 96w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot.jpeg 800w" sizes="(max-width: 150px) 100vw, 150px" />

Matt Johnson/ October 20, 2020October 19, 2020

Catch up with the the latest open source and cloud security updates in Episode 02 of Bridgecrew's #CodifedSecurity Office Hours.

How to get ephemeral access keys to an AWS account using MFA

<img width="150" height="150" src="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/download-150x150.jpg" class="avatar avatar-150 photo" alt="" loading="lazy" srcset="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/download-150x150.jpg 150w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/download-24x24.jpg 24w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/download-48x48.jpg 48w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/download-96x96.jpg 96w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/download.jpg 200w" sizes="(max-width: 150px) 100vw, 150px" />

Barak Schoster/ October 19, 2020October 18, 2020

Programmatic access makes it easier to automate tasks, but at the price of increased risk. Learn how to overcome these risks with AWS best practices on access keys management.

Cloud security

Security challenges and risks with infrastructure as code

<img width="150" height="150" src="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/2_04jaAZTUOSwQR0tBB_s4WA-150x150.jpeg" class="avatar avatar-150 photo" alt="" loading="lazy" srcset="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/2_04jaAZTUOSwQR0tBB_s4WA-150x150.jpeg 150w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/2_04jaAZTUOSwQR0tBB_s4WA-300x300.jpeg 300w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/2_04jaAZTUOSwQR0tBB_s4WA-24x24.jpeg 24w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/2_04jaAZTUOSwQR0tBB_s4WA-48x48.jpeg 48w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/2_04jaAZTUOSwQR0tBB_s4WA-96x96.jpeg 96w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/2_04jaAZTUOSwQR0tBB_s4WA.jpeg 336w" sizes="(max-width: 150px) 100vw, 150px" />

Guy Eisenkot/ October 15, 2020October 14, 2020

Infrastructure as code is the foundation for the next generation of cloud security. In this post, we review the challenges of IaC security and how to address them.

Panel Highlights: Collaborating with DevOps to automate cloud security at scale

<img width="150" height="150" src="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/TGMGNK6LT-U011NRWGLJ2-a3c37c9a892b-512-150x150.jpg" class="avatar avatar-150 photo" alt="" loading="lazy" srcset="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/TGMGNK6LT-U011NRWGLJ2-a3c37c9a892b-512-150x150.jpg 150w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/TGMGNK6LT-U011NRWGLJ2-a3c37c9a892b-512-300x300.jpg 300w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/TGMGNK6LT-U011NRWGLJ2-a3c37c9a892b-512-24x24.jpg 24w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/TGMGNK6LT-U011NRWGLJ2-a3c37c9a892b-512-48x48.jpg 48w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/TGMGNK6LT-U011NRWGLJ2-a3c37c9a892b-512-96x96.jpg 96w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/TGMGNK6LT-U011NRWGLJ2-a3c37c9a892b-512.jpg 512w" sizes="(max-width: 150px) 100vw, 150px" />

Payton O'Neal/ October 13, 2020October 12, 2020

Get the highlights from our recent panel discussion on building trust between security and engineering teams.

CodifiedSecurity Office Hours Recap: Episode 01

<img width="150" height="150" alt="" loading="lazy" data-srcset="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-150x150.jpeg 150w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-300x300.jpeg 300w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-768x768.jpeg 768w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-24x24.jpeg 24w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-48x48.jpeg 48w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-96x96.jpeg 96w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot.jpeg 800w" data-src="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-150x150.jpeg" data-sizes="(max-width: 150px) 100vw, 150px" class="avatar avatar-150 photo lazyload" src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" /><noscript><img width="150" height="150" src="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-150x150.jpeg" class="avatar avatar-150 photo" alt="" loading="lazy" srcset="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-150x150.jpeg 150w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-300x300.jpeg 300w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-768x768.jpeg 768w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-24x24.jpeg 24w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-48x48.jpeg 48w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-96x96.jpeg 96w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot.jpeg 800w" sizes="(max-width: 150px) 100vw, 150px" />

Matt Johnson/ October 9, 2020October 12, 2020

A recap of Episode 01 of our CodifiedSecurity Office Hours. Join us for live community chats covering the latest news in cloud security, open source, and infrastructure as code.

Bridgecrew brings IaC security to GitHub with a code scanning integration

<img width="150" height="150" src="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/download-150x150.jpg" class="avatar avatar-150 photo" alt="" loading="lazy" srcset="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/download-150x150.jpg 150w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/download-24x24.jpg 24w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/download-48x48.jpg 48w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/download-96x96.jpg 96w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/download.jpg 200w" sizes="(max-width: 150px) 100vw, 150px" />

Barak Schoster/ October 7, 2020

We’re proud to bring IaC security scanning to GitHub with our new GitHub code scanning integration.

Automating your AWS cloud security with Bridgecrew

<img width="150" height="150" src="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/TGMGNK6LT-U011NRWGLJ2-a3c37c9a892b-512-150x150.jpg" class="avatar avatar-150 photo" alt="" loading="lazy" srcset="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/TGMGNK6LT-U011NRWGLJ2-a3c37c9a892b-512-150x150.jpg 150w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/TGMGNK6LT-U011NRWGLJ2-a3c37c9a892b-512-300x300.jpg 300w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/TGMGNK6LT-U011NRWGLJ2-a3c37c9a892b-512-24x24.jpg 24w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/TGMGNK6LT-U011NRWGLJ2-a3c37c9a892b-512-48x48.jpg 48w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/TGMGNK6LT-U011NRWGLJ2-a3c37c9a892b-512-96x96.jpg 96w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/TGMGNK6LT-U011NRWGLJ2-a3c37c9a892b-512.jpg 512w" sizes="(max-width: 150px) 100vw, 150px" />

Payton O'Neal/ September 28, 2020September 28, 2020

In this overview of Bridgecrew for AWS, you’ll learn how to start finding and fixing security issues in your AWS environment in just a few minutes.

Cloud security

Bridgecrew Custom Policies: A simple standard for policy-as-code

<img width="150" height="150" src="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/2_04jaAZTUOSwQR0tBB_s4WA-150x150.jpeg" class="avatar avatar-150 photo" alt="" loading="lazy" srcset="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/2_04jaAZTUOSwQR0tBB_s4WA-150x150.jpeg 150w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/2_04jaAZTUOSwQR0tBB_s4WA-300x300.jpeg 300w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/2_04jaAZTUOSwQR0tBB_s4WA-24x24.jpeg 24w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/2_04jaAZTUOSwQR0tBB_s4WA-48x48.jpeg 48w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/2_04jaAZTUOSwQR0tBB_s4WA-96x96.jpeg 96w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/2020/06/2_04jaAZTUOSwQR0tBB_s4WA.jpeg 336w" sizes="(max-width: 150px) 100vw, 150px" />

Guy Eisenkot/ September 15, 2020September 15, 2020

With Bridgecrew's Custom Policies, you can easily govern your cloud infrastructure without learning a new language.

Buildkite, meet Bridgecrew!

<img width="150" height="150" alt="" loading="lazy" data-srcset="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-150x150.jpeg 150w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-300x300.jpeg 300w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-768x768.jpeg 768w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-24x24.jpeg 24w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-48x48.jpeg 48w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-96x96.jpeg 96w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot.jpeg 800w" data-src="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-150x150.jpeg" data-sizes="(max-width: 150px) 100vw, 150px" class="avatar avatar-150 photo lazyload" src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" /><noscript><img width="150" height="150" src="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-150x150.jpeg" class="avatar avatar-150 photo" alt="" loading="lazy" srcset="https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-150x150.jpeg 150w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-300x300.jpeg 300w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-768x768.jpeg 768w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-24x24.jpeg 24w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-48x48.jpeg 48w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot-96x96.jpeg 96w, https://mk0bridgecrewioa9g63.kinstacdn.com/wp-content/uploads/matt-headshot.jpeg 800w" sizes="(max-width: 150px) 100vw, 150px" />

Matt Johnson/ September 11, 2020September 10, 2020

A super simple walkthrough integrating Buildkite and the Bridgecrew platform, adding Infrastructure as code scanning to your CI pipelines.