Hi All I m running an open source IAC scanning tool called c

Question

Hi All I m running an open source IAC scanning tool called checkov written in Python At the moment I m looking to make my IAC scans faster I ve already tried running checkov on pypy JIT and I don t see much improvement in speed Can anyone recommend alternatives Thanks in advance

George Fahmy · Answer

what kind of IaC are you scanning terraform kubernetes manifests

George Fahmy · Answer

when do you run the scanning tools pre commit hooks in a CI pipeline

Bishwa · Answer

Hey George I m scanning terraform and kubernetes manifests and I m running it in a Jenkins pipeline

George Fahmy · Answer

You can try Terrascan <https github com tenable terrascan>

George Fahmy · Answer

if scanning is still slow you can try shift left by building secure re usable modules scan these modules and let developers consume them as hardened building blocks