Giters

vanshaj / defsec

DefSec is a set of tools for scanning definitions of infrastructure

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

GoReportCard Join Our Slack

defsec

DefSec is a collection of Infrastructure-as-Code rules.

These rules as defined in Go and Rego.

Defining DefSec rules in this central repository means they can be used from various projects, regardless of the IaC implementation. For example, DefSec is currently used by both tfsec (for Terraform) and cfsec (CloudFormation). The same logic is applied to cloud resources defined in both source formats.

There's a detailed walkthrough for creating a new check in the tfsec contributing guide.

defsec is an Aqua Security open source project. Learn about our open source work and portfolio here. Join the community, and talk to us about any matter in GitHub Discussion or Slack.

About

DefSec is a set of tools for scanning definitions of infrastructure

License:MIT License

Languages

Language:Go 89.0%Language:Open Policy Agent 9.7%Language:Mustache 1.2%Language:Makefile 0.0%Language:Shell 0.0%Language:Python 0.0%Language:Dockerfile 0.0%Language:HCL 0.0%