Overview
Learn how to perform SAST scanning for security vulnerabilities in infrastructure as code through this 42-minute conference talk from LASCON. Discover techniques for implementing security scanning in Terraform deployments using Checkov OSS, while gaining insights applicable to other infrastructure as code tools. Explore the commercial capabilities of Bridgecrew for enhanced security scanning and understand how Hashicorp Sentinel enables advanced security policy as code implementation specifically for Terraform environments. Master the essential practices for identifying and mitigating security risks in infrastructure code before deployment.
Syllabus
Neal Brown - Scan your infrastructure as code like Code!
Taught by
LASCON