New in Bridgecrew: Drift detection for Terraform Cloud
Detect and reconcile cloud infrastructure configuration drifts between AWS and Terraform Cloud in real-time with Bridgecrew drift detection.
Building an IaC security and governance program step-by-step
Our strategy guide helps you determine where and how to enforce security controls to meet your goals without slowing your developers down.
Adding IaC security scans to your CI pipeline
Set up infrastructure as code (IaC) security to gain the benefits of speed, scalability, cost-savings, and hardened cloud security posture.
IAM Insights: Automated right-sizing with policy-as-code
To help teams maintain secure IAM configuration and easily right-size existing IAM sprawl, we’re excited to introduce IAM Insights.
These infrastructure as code benefits are your cloud security opportunities
Leverage the inherent benefits of infrastructure as code to strengthen your cloud security, save money, and enhance DevSecOps collaboration.
Security challenges and risks with infrastructure as code
Infrastructure as code is the foundation for the next generation of cloud security. In this post, we review the challenges of IaC security and how to address them.
Bridgecrew Custom Policies: A simple standard for policy-as-code
With Bridgecrew's Custom Policies, you can easily govern your cloud infrastructure without learning a new language.
Tutorial: Find, fix, and prevent Terraform misconfigurations with Bridgecrew
Learn how to scan your Terraform files as part of every code review for misconfigurations and policy violations using GitHub and Bridgecrew.
Securing cloud infrastructure in run-time vs. build-time
Addressing cloud security in run-time alone isn't enough. Learn the pros of doing both run-time and build-time security together.
Securing Serverless Framework configurations for AWS using Bridgecrew
Bridgecrew now extends the Serverless Framework’s existing security and compliance policy to secure configurations on AWS.
Introducing the State of Open Source Terraform Security Report
We scanned the Terraform Registry and analyzed the overall state of infrastructure-as-code security and compliance. Read the full report to learn about the security posture of the IaC ecosystem.
Introducing ten (and a half) new developer-first integrations to Bridgecrew’s codified cloud security platform
In our biggest update yet, we're extremely proud to release new integrations to expand our support throughout the development lifecycle.