CodeSecDays 2024 - Join GitGuardian for a full-day exploration of cutting-edge DevSecOps solutions!

Save my spot!

CodeSecDays 2024 - Join GitGuardian for a full-day exploration of cutting-edge DevSecOps solutions!

Save my spot!

IaC Scanning with ggshield - GitGuardian CLI

Developers can use ggshield, the GitGuardian CLI, to scan and resolve over 70 configuration vulnerabilities in their Terraform projects. Learn more at https://www.gitguardian.com/infrastructure-as-code.

Video Transcript

How are you checking for misconfigurations in your Infrastructure as Code projects? Manual reviews are slow and often error-prone. Static code analysis is a much faster,  more efficient, and scalable approach. That is why GitGuardian built IaC scanning into  GGshield, our open source command line interface. When building Terraform projects, for example, it can be easy to overlook security best  practices and leave yourself vulnerable. Running `ggshield iac scan` and pointing to the  appropriate directory will trigger GitGuardian to quickly scan for over 70 of the most common  misconfigurations, giving you immediate insight into any occurrences, even revealing the exact  line or lines of code that need to be addressed. You can do this before ever making any commits,  leaving your project history clean and secure. Combine IaC scanning with the secret scanning  ability of ggshield, and you are well on your way to delivering your projects safely  and passing security tests with ease!