Skip to content

aws-samples/aws-sec-checkov-terraform

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits

alb

alb

 
 

ecs

ecs

 
 

security-groups

security-groups

 
 

vpc

vpc

 
 

.gitignore

.gitignore

 
 

CODE_OF_CONDUCT.md

CODE_OF_CONDUCT.md

 
 

CONTRIBUTING.MD

CONTRIBUTING.MD

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

buildspec.yml

buildspec.yml

 
 

buildspec_checkov.yml

buildspec_checkov.yml

 
 

dev1.tfvars

dev1.tfvars

 
 

main.tf

main.tf

 
 

variable.tf

variable.tf

 
 

Repository files navigation

Terraform example code to be analysed by Checkov

The objective is to create a pipeline to automate the security analysis and execution of infrastructure as code (terraform). The terraform code is just a sample that can be used to perform Checkov analysis.

Checkov

Checkov is a tool that perform security analysis on terraform code. Using it before environment creation can bring helpfull insites

Teraform code for ECS/Fargate

The terraform code used to demostrate Checkov creates an ECS/Fargate cluster and all the necessary associated resources (e.g. networking, policies)

AWS CodePipeline

This demo is used in a pipeline that runs automaticaly every time there is a code commit in the git repository (AWS CodeCommit). The pipeline uses Checkov to analise terraform code and requests a validation of the security team to continue with environment creation/change

Security

See CONTRIBUTING for more information.

License

This library is licensed under the MIT-0 License. See the LICENSE file.

About

No description, website, or topics provided.

Resources

Readme

License

MIT-0 license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

4 stars

Watchers

7 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages