Learn how to create your own Checkov policies for Terraform providers to enforce infrastructure best practices across your IaaS, PaaS, and SaaS applications.
We’re back with Episode 05 of the #CodifiedSecurity Office Hours! We welcomed Rob Eden from…
With variable rendering support in Checkov, you can now analyze a misconfig even if it was sourced in a parameter defined on a different code block, ensuring that no risk goes unidentified.
Pick up these best practices and tools for Identity and Access Management, a crucial component of cloud security.
Learn how to automate security scanning of Helm charts for Kubernetes misconfigurations with Bridgecrew's open-source scanner, Checkov.
We sat down with Corcoran Smith from Slalom to discuss new Checkov developments, enterprise DevSecOps challenges, and infrastructure as code solutions.
Automatically detect AWS IAM drift and manage access with AirIAM and GitHub Actions.
Catch up with the the latest open source and cloud security updates in Episode 02 of Bridgecrew's #CodifedSecurity Office Hours.
Join us for live community chats covering the latest news in cloud security, open source, and infrastructure as code.
We’re excited to release CfnGoat 🐐, a security training project for AWS CloudFormation. In addition…
We scanned the Terraform Registry and analyzed the overall state of infrastructure-as-code security and compliance. Read the full report to learn about the security posture of the IaC ecosystem.
Use Checkov, Bridgecrew's OSS infrastructure as code analysis tool, to scan Kubernetes manifests and identify security issues in Kubernetes workloads.