This message was deleted.
# general
s
This message was deleted.
g
what kind of IaC are you scanning? terraform? kubernetes manifests?
when do you run the scanning tools? pre-commit hooks? in a CI pipeline?
b
Hey George, I'm scanning terraform and kubernetes manifests and I'm running it in a Jenkins pipeline.
g
if scanning is still slow, you can try shift-left by building secure re-usable modules, scan these modules and let developers consume them as hardened building blocks