Technology Radar
Published : Sep 27, 2023
NOT ON THE CURRENT EDITION
This blip is not on the current edition of the Radar. If it was on one of the last few editions, it is likely that it is still relevant. If the blip is older, it might no longer be relevant and our assessment might be different today. Unfortunately, we simply don't have the bandwidth to continuously review blips from previous editions of the Radar.
Understand more
Sep 2023
Trial
Checkov 是一个专门用于基础设施即代码(laC)的静态安全扫描器。它支持多种基础设施语言,包括 Kubernetes 清单、Helm 图表、CloudFormation 模板和 Terraform。它可在 CI/CD 管道中轻松部署,防止各种云基础设施配置中出现潜在的安全漏洞。它利用一套默认规则,识别常见的安全情景,并在其网站上提供详细的修改建议。Checkov 支持自定义规则,并使用 YAML 进行简单的准则定义,或使用 Python 制作更复杂的准则定义。我们的团队已成功使用 Checkov 在基础架构部署过程中增强安全性,并对其在部署前提供的潜在问题表示欣赏。
