Misconfigurations are flaws in the way the software environment is configured, whereas security vulnerabilities are flaws in the software itself.
Kubernetes is the go-to platform for managing containerized applications. Learn the best security practices through Kubernetes' layers and components here.
Without the right tooling, one IaC misconfiguration can snowball into thousands of security alerts. Proactive, embedded IaC security can help.
Terraform is one of the most popular infrastructure as code (IaC) tools used to deploy,…
Kubernetes is a powerful tool with enough settings to deploy a performant, scalable, and reliable…
Back-end and infrastructure-related software developers can automate these security tasks to produce secure, quality code.
Drift between running cloud resources and their associated infrastructure as code (IaC) will inevitably happen. Learn how to use drift as a learning opportunity and provide training on how to prevent it in the future.
Drift occurs when changes are made directly to a resource in a cloud provider. Learn how CloudFormation, Terraform, and Bridgecrew handle drift detection.
Learn how to add security into your Jenkins CI/CD to ensure only secure IaC code is committed to a repository and deployed.
Learn about Bridgecrew's contribution to Hacktoberfest 2021. We're getting our open-source community involved and giving away some cool prizes.
Learn advanced tips about securing Terraform, such as security scanning at each step of the DevOps lifecycle, keeping IAM sprawl under control, and more.
Bridgecrew has been updated to automatically comment on misconfigurations for resources, and includes richer context and fix suggestions.