Join Slack
Powered by
This message was deleted.
# general
s
Slackbot
02/22/2023, 4:26 PM
This message was deleted.
g
George Fahmy
02/22/2023, 4:32 PM
what kind of IaC are you scanning? terraform? kubernetes manifests?
George Fahmy
02/22/2023, 4:33 PM
when do you run the scanning tools? pre-commit hooks? in a CI pipeline?
b
Bishwa
02/22/2023, 4:43 PM
Hey George, I'm scanning terraform and kubernetes manifests and I'm running it in a Jenkins pipeline.
g
George Fahmy
02/22/2023, 4:47 PM
You can try Terrascan
https://github.com/tenable/terrascan
George Fahmy
02/22/2023, 4:48 PM
if scanning is still slow, you can try shift-left by building secure re-usable modules, scan these modules and let developers consume them as hardened building blocks
69
Views
Open in Slack
Previous
Next