Continuous Terraform security and compliance
Enforce security and compliance policies in your Terraform modules to prevent misconfigured cloud resources from being deployed.

Terraform security 101
Infrastructure as code (IaC) frameworks like Terraform make it easy to scale infrastructure quickly and consistently across providers and cloud environments. It also poses new risks as additional layers of configuration are introduced, as well as opportunities to shift cloud security left. In order to prevent Terraform misconfigurations, your Terraform cloud modules need increased security scanning.
Security configuration is one of the major concerns of Terraform security. This is because misconfigurations can expose your runtime environment to different security risks if not addressed. Prevention of misconfigurations should be at the forefront of Terraform development.

Terraform security risks
Because Terraform modules are built with functionality and performance in mind, security is often overlooked. Having missing or misconfigured variables in IaC modules, you may be inadvertently deploying vulnerable cloud resources. In order to prevent misconfiguration, additional Terraform security scanning is crucial.

Codified security opportunity
Terraform enables you to embed cloud security earlier and leverage automation and code to secure it. By scanning your Terraform modules earlier in the development lifecycle you can actually prevent misconfigurations from being deployed.
Platform
Codified and automated Terraform security platform

Continuous Terraform and Terraform Cloud policy enforcement

Hundreds of security and compliance policies across AWS, Azure, Kubernetes, and Google Cloud

Terraform code fixes for misconfigurations wherever they are

Get started with Bridgecrew for Terraform
Start codifying your cloud security with Bridgecrew for Terraform and Terraform Cloud and prevent your misconfigurations.
Bridgecrew for Terraform
Scan your Terraform files via your IDE or CLI to get feedback as you code. Connect your VCS repositories containing Terraform code to scan for security issues and misconfigurations on each commit.
Bridgecrew for Terraform Cloud
To make Terraform scanning a native experience, leverage Terraform Cloud Run Tasks which enforce Bridgecrew policies between the Terraform plan and apply stages.
Bridgecrew for Terraform Enterprise
For Terraform security at enterprise scale, Bridgecrew and its built-in policies can be seamlessly integrated with Terraform Enterprise and Sentinel.
Get started with Bridgecrew
Try it out for yourself or talk to a Terraform security expert
Terraform security resources
Bridgecrew for Terraform Tutorial
Learn how to get started with Bridgecrew for Terraform by integrating with GitHub and embedding continuous Terraform scanning into your workflow.
State of Terraform Security
In our recent research report, we dug into the open source Terraform ecosystem and found that nearly 1 in 2 modules violates a security policy or best practice.
Terraform security training tool
To help engineers learn how to identify and address Terraform misconfigurations, we built TerraGoat, a vulnerable-by-design training tool.