10 Infrastructure-as-Code (IaC) Scanning

Infrastructure-as-Code (IaC) scanning is the process of creating the code and configuration files that are used to manage and provision infrastructure resources, such as virtual machines, networks, and storage, in a cloud environment. IaC is a method of managing and provisioning computer data centers through machine-readable definition files, rather than physical hardware configuration or interactive configuration tools.

IaC should go through security checks and there are IaC security scanning tools that are designed to identify security vulnerabilities and misconfigurations in the infrastructure code, potentially exposing the environment to security threats. The scanning process is typically automated ...

Get Implementing DevSecOps Practices now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Implementing DevSecOps Practices by Vandana Verma Sehgal

10

Infrastructure-as-Code (IaC) Scanning

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly