Tfsec is now part of Trivy
Lightweight static analyzer for several programming languages
Cloud Security Operations Orchestrator
Offensive Terraform Website
Secure your Terraform state — Backup, encrypt, and restore .tfstate automatically.
Static + plan-time Terraform security analysis with attack-graph prioritisation, MITRE ATT&CK mapping, and one-click PR fix suggestions. 215 rules, 100% fix_hcl coverage.
Security-focused prompt library and Claude Code skill for automated IaC security reviews. Covers Terraform, Kubernetes, Docker, Ansible, CloudFormation, and CI/CD pipelines. Compliance mapping to CIS, NIST 800-53, PCI-DSS, SOC2, HIPAA, and GDPR.
enterprise-devsecops-platform
Scans Terraform and CloudFormation IaC for IAM privilege escalation risks on every pull request
Terraform module for the Just In Time implementation for Google Cloud.
Reusable Terraform CI/CD pipeline template for Azure DevOps with integrated IaC security checks (Checkov) and vulnerability scanning (Trivy).
Scan GitHub Actions logs for Trivy compromise evidence in workflow runs and flag compromised action refs and commit SHAs
Add a description, image, and links to the terraform-security topic page so that developers can more easily learn about it.
To associate your repository with the terraform-security topic, visit your repo's landing page and select "manage topics."