terrascan
Terrascan provides a static code analysis tool aimed at bolstering the security and compliance of Infrastructure as Code systems. It includes over 500 security best practice policies and supports scanning for Terraform, AWS CloudFormation, Kubernetes, and Dockerfiles. The tool aids in identifying security vulnerabilities, observes changes in cloud infrastructure, and can be integrated into CI/CD pipelines to reduce provisioning risks. It offers various deployment methods, such as native executables and Docker images, for seamless integration into diverse environments. Users have the option to tailor scans, omit specific policies, and efficiently scrutinize code for vulnerabilities.