Matt Johnson, Author at Bridgecrew

Announcing new Checkov framework support for Kustomize

Matt Johnson February 3, 2022February 3, 2022

Now with Checkov, you can make reusable Kustomize manifests and all of the resulting environments more secure from the start.

New research: Graphing misconfigurations and vulnerabilities to visualize blast radius

Matt Johnson October 21, 2021October 27, 2021

Following up on our recent IaC security findings in the 2H 2021 Cloud Threat Report, we rewrote Helm Scanner to visualize chained misconfigurations and CVEs.

Open source projects

Happy Hacktoberfest 2021!

Matt Johnson September 24, 2021September 30, 2021

Learn about Bridgecrew's contribution to Hacktoberfest 2021. We're getting our open-source community involved and giving away some cool prizes.

Infrastructure as code

Simplify cost allocation using Yor automated tagging with AWS Cost Explorer

Matt Johnson July 21, 2021July 21, 2021

Open source tool Yor can automate cost allocation tags alongside AWS Cost Explorer to narrow down costs per team, project, or environment.

Automate infrastructure tagging with Yor and GitLab CI

Matt Johnson July 8, 2021July 27, 2021

Yor is fully extensible and supports any CI pipeline you need, including GitLab CI, to enable a host of “code to cloud” tracking and auditing.

Part 3: Top trends from analyzing the security posture of open-source Helm charts

Matt Johnson May 6, 2021May 6, 2021

In part three of our open-source Helm security research, we analyze one of the most commonly used dependencies from a security standpoint.

Open source projects

Part 2: Top trends from analyzing the security posture of open-source Helm charts

Matt Johnson May 5, 2021May 6, 2021

In part two of our open-source Helm security research, we analyze Helm chart dependencies and provide recommendations for security best practices.

Open source projects

Part 1: Top trends from analyzing the security posture of open-source Helm charts

Matt Johnson May 4, 2021May 27, 2021

In this open-source Helm security research, we scanned thousands of Helm charts available on Artifact Hub and are sharing our findings and trends.

Open source projects

Checkov 2.0: Deeper, broader, and faster IaC scanning

Matt Johnson April 8, 2021May 4, 2021

Introducing our biggest update to Checkov 2.0 yet including an all-new graph-based framework, 250 new policies, and Dockerfile support.

Bridgecrew shifts security so far left it can scan developers’ thoughts

Matt Johnson April 1, 2021

Our latest extension shifts security so far left it can read your thoughts before a single line of code is even written!

Company news

Built-in Helm chart scanning with Checkov!

Matt Johnson March 11, 2021

Automatically check Helm charts against Checkov's built-in checks for Kubernetes deployments with native Helm chart scanning!

Open source projects

CodifiedSecurity Office Hours Recap: Episode 05

Matt Johnson January 5, 2021January 5, 2021

We’re back with Episode 05 of the #CodifiedSecurity Office Hours! We welcomed Rob Eden from…

Subscribe to our newsletter