Channels
chaos
loc-france
loc-angola
loc-russia
platformscript
loc-seattle
test2
azure
loc-australia
envoyz
it-meetups-organizers
platform-coffee
team
platform-engineering-in-edge-computing
loc-japan
loc-norway
loc-singapore
idp-resources
idp-architectural-design
aws
loc-bulgaria
gcp
loc-netherlands
loc-boston
events
loc-hong-kong
loc-irvine
loc-ireland
loc-philadelphia-chapter
platform-blueprints
platform-impact
loc-usa-eastcoast-chapter
docker-at-platformcon23
ant-group-at-platformcon23
zeet-at-platformcon23
vmware-tanzu-at-platformcon23
rafay-at-platformcon23
stormforge-at-platformcon23
cortex-at-platformcon23
loc-portland
loc-oslo
azure
loc-uk
security
outages
winners
observability
courier-com-at-plarformcon23
loc-india
loc-austin
loc-southern-caifornia
loc-belgium
building-our-platform-engineering-team
loc-vietnam
documentation
platform-tech
kubernetes
back-end
metrics
platformcon-news
marketing
platform-data
loc-dallas
opslevel-at-platformcon23
olxautos-orion-at-platformcon23
yotascale-at-platformcon23
loc-finland
loc-chicago
loc-portugal
loc-sweden
atlassian-at-platformcon23
serverless
firefly-at-platformcon
gitops
loc-brazil
mychannel-
loc-italy
verisure-commonservice-datastax
loc-turkey
loc-sfbayarea
loc-dcmetro
platformk8sathome
entryleveldevops-jobs
loc-israel
loc-myanmar
loc-ukraine
loc-scotland
loc-atlanta
loc-canada
platform-leadership
loc-bangalore
support
qualityassurance
product_management
devex
testrsetserfsdf
loc-korea
loc-germany
loc-switzerland
loc-poland
envoys
loc-china
platform-design
platform-stories
platform-culture
terraform
product-management
general
intros
jobs
Title
b
Bishwa
02/22/2023, 4:26 PMHi All!! I'm running an open source IAC scanning tool called checkov (written in Python). At the moment, I'm looking to make my IAC scans faster. I've already tried running checkov on pypy(JIT) and I don't see much improvement in speed. Can anyone recommend alternatives? Thanks in advance.
g
George Fahmy
02/22/2023, 4:32 PMwhat kind of IaC are you scanning? terraform? kubernetes manifests?
when do you run the scanning tools? pre-commit hooks? in a CI pipeline?
b
Bishwa
02/22/2023, 4:43 PMHey George, I'm scanning terraform and kubernetes manifests and I'm running it in a Jenkins pipeline.
g
George Fahmy
02/22/2023, 4:47 PMYou can try Terrascan https://github.com/tenable/terrascan
if scanning is still slow, you can try shift-left by building secure re-usable modules, scan these modules and let developers consume them as hardened building blocks