Package Details: terrascan 1.19.1-1

Git Clone URL: https://aur.archlinux.org/terrascan.git (read-only, click to copy)
Package Base: terrascan
Description: Detect compliance and security violations across Infrastructure as Code
Upstream URL: https://github.com/accurics/terrascan
Keywords: cloud-security devops devsecops iac infrastructure-as-code scans security-tools security-violations terraform
Licenses: Apache-2
Conflicts: terrascan-bin
Provides: terrascan
Submitter: enmanuelmoreira
Maintainer: enmanuelmoreira
Last Packager: enmanuelmoreira
Votes: 2
Popularity: 0.100062
First Submitted: 2021-08-27 02:40 (UTC)
Last Updated: 2024-03-08 18:05 (UTC)

Dependencies (5)

Required by (0)

Sources (1)

Pinned Comments

enmanuelmoreira commented on 2021-08-27 02:42 (UTC) (edited on 2021-08-27 20:37 (UTC) by enmanuelmoreira)

Terrascan is a static code analyzer for Infrastructure as Code. Terrascan allows you to:

  • Seamlessly scan infrastructure as code for misconfigurations.
  • Monitor provisioned cloud infrastructure for configuration changes that introduce posture drift, and enables reverting to a secure posture.
  • Detect security vulnerabilities and compliance violations.
  • Mitigate risks before provisioning cloud native infrastructure.
  • Offers flexibility to run locally or integrate with your CI/CD.

Resources

To learn more about Terrascan's features and capabilities, see the documentation portal: https://runterrascan.io

Join The Terrascan Community on Discord : https://discord.gg/DFwXEfbjzt

Key features

  • 500+ Policies for security best practices
  • Scanning of Terraform (HCL2)
  • Scanning of Kubernetes (JSON/YAML), Helm v3, and Kustomize
  • Scanning of Dockerfiles
  • Support for AWS, Azure, GCP, Kubernetes, Dockerfile, and GitHub
  • Integrates with docker image vulnerability scanning for AWS, Azure, GCP container registries.

Latest Comments

enmanuelmoreira commented on 2021-08-27 02:42 (UTC) (edited on 2021-08-27 20:37 (UTC) by enmanuelmoreira)

Terrascan is a static code analyzer for Infrastructure as Code. Terrascan allows you to:

  • Seamlessly scan infrastructure as code for misconfigurations.
  • Monitor provisioned cloud infrastructure for configuration changes that introduce posture drift, and enables reverting to a secure posture.
  • Detect security vulnerabilities and compliance violations.
  • Mitigate risks before provisioning cloud native infrastructure.
  • Offers flexibility to run locally or integrate with your CI/CD.

Resources

To learn more about Terrascan's features and capabilities, see the documentation portal: https://runterrascan.io

Join The Terrascan Community on Discord : https://discord.gg/DFwXEfbjzt

Key features

  • 500+ Policies for security best practices
  • Scanning of Terraform (HCL2)
  • Scanning of Kubernetes (JSON/YAML), Helm v3, and Kustomize
  • Scanning of Dockerfiles
  • Support for AWS, Azure, GCP, Kubernetes, Dockerfile, and GitHub
  • Integrates with docker image vulnerability scanning for AWS, Azure, GCP container registries.