Pinned

1. checkov Public

   Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

   Python 5.8k 943

2. yor Public

   Extensible auto-tagger for your IaC files. The ultimate way to link entities in the cloud back to the codified resource which created it.

   Go 693 106

3. terragoat Public

   TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into product…

   HCL 989 2.1k

4. AirIAM Public

   Least privilege AWS IAM Terraformer

   Python 730 76

5. bridgecrew-action Public

   This GitHub Action runs Bridgecrew against infrastructure-as-code, open source packages, container images, and CI/CD configurations to identify misconfigurations, vulnerabilities, and license compl…

   70 33

6. bridgecrew-orb Public

   This CircleCI Orb Action runs Bridgecrew analysis of Infrastructure-as-Code repository. Bridgecrerw performs static security analysis of Terraform, CloudFormation and Kubernetes Infrastructure code…

   11 4