Developers can use ggshield, the GitGuardian CLI, to scan and resolve over 70 configuration vulnerabilities in their Terraform projects. Learn more at https://www.gitguardian.com/infrastructure-as-code.
How are you checking for misconfigurations in your Infrastructure as Code projects?
Manual reviews are slow and often error-prone. Static code analysis is a much faster,
more efficient, and scalable approach. That is why GitGuardian built IaC scanning into
GGshield, our open source command line interface. When building Terraform projects, for example, it can be easy to overlook security best
practices and leave yourself vulnerable. Running `ggshield iac scan` and pointing to the
appropriate directory will trigger GitGuardian to quickly scan for over 70 of the most common
misconfigurations, giving you immediate insight into any occurrences, even revealing the exact
line or lines of code that need to be addressed. You can do this before ever making any commits,
leaving your project history clean and secure. Combine IaC scanning with the secret scanning
ability of ggshield, and you are well on your way to delivering your projects safely
and passing security tests with ease!