Tools, strategies, and ideas to secure your AWS cloud environment.

Using Terrascan for Static Code Analysis of Your Infrastructure Code (part 2)
Infrastructure as Code Cesar Rodriguez Infrastructure as Code Cesar Rodriguez

Using Terrascan for Static Code Analysis of Your Infrastructure Code (part 2)

You followed my advice and you configured terrascan as a pre-commit hook to scan your terraform code on your desktop before being committed into your repository. Unfortunately, not all of your co-workers have it installed and security issues have been committed to the repo. Luckily, terrascan can be used in your CI/CD pipeline to test your code before security weaknesses are merged into your main branch. Here's how.

Read More
Using Terrascan for Static Code Analysis of Your Infrastructure Code (part 1)
Infrastructure as Code Cesar Rodriguez Infrastructure as Code Cesar Rodriguez

Using Terrascan for Static Code Analysis of Your Infrastructure Code (part 1)

You’ve been working hard on a project trying to get it to production ASAP. You even spent nights and weekends working extra hard on terraform code to provision your infrastructure. It’s Friday night and you’re ready to go home after a long week. Just when you’re about to leave, your security team calls you. One of your S3 buckets was made public. Here's how to scan your code and prevent this from happening.

Read More