terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

APACHE-2.0 License

Stars
4.4K
Committers
85
View Code on GitHub Visit Website View on X
Ecosystems: Terraform, Kubernetes, Amazon Web Services

Bot releases are visible (Hide)

terrascan - v1.19.1 Latest Release

Published by github-actions[bot] 8 months ago

Changelog

  • 4422eb52 Resource type attribute changes and stability fixes for yaml parsing and other config changes APE-16695, APE-16692, APE-16734 (#1673)
terrascan - v1.18.12

Published by github-actions[bot] 8 months ago

Changelog

  • 2e75f8fd Display line numbers for cft violations (#1671)
terrascan - v1.18.11

Published by github-actions[bot] 10 months ago

Changelog

  • 3bf466dd Fix type mismatch error in json unmarshal for float to struct (#1660)
terrascan - v1.18.10

Published by github-actions[bot] 10 months ago

Changelog

  • 9ce8b180 Fix type mismatch error in json unmarshal for float to struct (#1659)
terrascan - v1.18.9

Published by github-actions[bot] 10 months ago

Changelog

  • 3aa1c57f Sanitize the cft template file for aws:: words as it causes parser to fail (#1656)
terrascan - v1.18.7

Published by github-actions[bot] 10 months ago

Changelog

  • 575d95bd Added feature to implement SSM parameters (#1653)
terrascan - v1.18.6

Published by github-actions[bot] 10 months ago

Changelog

  • 575d95bd Added feature to implement SSM parameters (#1653)
terrascan - v1.18.5

Published by nmoretenable 11 months ago

Changelog

  • 791983cd Bump up the binary version from the code (#1648)
terrascan - v1.18.4

Published by github-actions[bot] 11 months ago

Changelog

  • 9e99f08e 1061: generate multi-architecture (amd64, arm64) docker image (#1568)
  • 1461ae0e Bump golang.org/x/net from 0.7.0 to 0.17.0 (#1625)
  • 2efa8e52 Bump google.golang.org/grpc from 1.51.0 to 1.56.3 (#1631)
  • 20293211 CICD patch for appid (#1637)
  • 7efbb9d5 changes to make docker push internal (#1636)
  • 8bec6007 cicd deployment update (#1630)
  • 7a3779a9 fix for crash in lambda function cft yaml if code key is not present (#1644)
  • 5a4c44a0 removed image tag to remove error of docker push (#1646)
terrascan - v1.18.3

Published by github-actions[bot] about 1 year ago

Changelog

  • 659310cd release/v1.18.3 (#1598)
  • 597d9f75 update net deps to fix vuln (#1597)
terrascan - v1.18.2

Published by github-actions[bot] about 1 year ago

Changelog

  • 13c4c8c7 Increased timeout for webhook test (#1591)
  • f7acf0c5 Releaser fixes for archives. (#1595)
  • cae77e2d Spelling (#1496)
  • 79055c13 fix [email protected] library vulnerability (#1592)
  • e76ef83d only high vulns detected by docker scan fixed (#1588)
  • 94dfb5d7 release/v1.18.2 (#1594)
  • ce41093a remove k8s admission log UI (#1556)
terrascan - v1.18.1

Published by github-actions[bot] over 1 year ago

Changelog

  • 4f1e403b Bump github.com/docker/docker (#1552)
  • 77ba67b5 Snyk test (#1550)
  • ef2c91d6 added sonar-properties file to skip tests from sonar analysis (#1544)
  • 205e2b5c bugfix: provider version coming as 0.0.0 or empty (#1553)
  • 0432a133 release 1.18.1 (#1554)
terrascan - v1.18.0

Published by github-actions[bot] over 1 year ago

Changelog

  • 29f05143 Support one or more values.yaml file as an input to helm scan (#1501)
  • bf56754e Bump github.com/aws/aws-sdk-go from 1.43.16 to 1.44.193 (#1534)
  • 2e8c825a Bump google.golang.org/api from 0.103.0 to 0.109.0 (#1530)
  • 0e10c3c7 Consolidate spelling of severity levels to all uppercase LOW/MEDIUM/HIGH (#1516)
  • 9d58834b Fix description and version rule (#1523)
  • b463df51 Remove wrongly placed github_repository policy from gcp folder (#1515)
  • 69f403d2 error due to new attribute in terraform cause all other working module and resources to be ignored (#1517)
  • 32cbc36a release/v1.8.0 (#1536)
terrascan - v1.17.1

Published by github-actions[bot] almost 2 years ago

Changelog

  • 84f0888c Add github-actions to dependabot (#1365)
  • 752d2a0d Add iac providers endpoint (#1307)
  • d9a7bf8f Bump github.com/hashicorp/go-getter from 1.5.11 to 1.6.2 (#1298)
  • 7cf9d3cf Include DirScanErrors info in SARIF file (#1398)
  • 6da2dca1 Mention pre-requirements in the README (#1375)
  • 08934f48 Policy IDs update (#1396)
  • e289cc65 Update RDS Policies (#1424)
  • da754a75 Update README.md (#1265)
  • 3b428a50 Update README.md (#1409)
  • b7719edf Update object.get first parameter (#1433)
  • d031a56f Update opa and cobra version (#1472)
  • 87cddb03 Update/release command (#1430)
  • 1a460703 added tar.gz archive for windows (#1474)
  • e4a4aec1 added terraform and provider version in resource config (#1469)
  • 8ae13452 adding PITR attribute mapping config for dyanmodb (#1340)
  • 849eef79 allow host policy update (#1400)
  • 7365ecf5 bump goformation from v6 to v7 (#1440)
  • a9f115a2 container funcs to return dev friendly warnings (#1319)
  • d2f87705 fix remote source url (#1437)
  • 48f78e34 fix vulns (#1486)
  • 313ccf31 fix: build/Dockerfile to reduce vulnerabilities (#1315)
  • baf1dfd1 fixed typo of the function name (#1373)
  • 94989ea9 ignored matching provider verson in tests (#1470)
  • fa11e0ee minor release 1.17.0 (#1459)
  • 0f53f055 refs resolution (#1445)
  • 944087f8 release/v1.16.0 (#1427)
  • cf348804 release/v1.17.1 (#1492)
  • 5a49729c update cft map for elb/s3 bucket (#1434)
  • af10a246 update libraries (#1385)
  • 730c83fd update rds instance cft map (#1422)
  • 5c9eaab3 updated deployment scripts (#1429)
  • 064c993c updated policy (#1288)
  • db3b7aef vuln tests (#1394)
terrascan - v1.17.0

Published by github-actions[bot] almost 2 years ago

Changelog

  • 84f0888c Add github-actions to dependabot (#1365)
  • 752d2a0d Add iac providers endpoint (#1307)
  • 7cf9d3cf Include DirScanErrors info in SARIF file (#1398)
  • 6da2dca1 Mention pre-requirements in the README (#1375)
  • 67bdf147 Merge branch 'master' into release/v1.17.0
  • 08934f48 Policy IDs update (#1396)
  • e289cc65 Update RDS Policies (#1424)
  • da754a75 Update README.md (#1265)
  • 3b428a50 Update README.md (#1409)
  • b7719edf Update object.get first parameter (#1433)
  • 87cddb03 Update/release command (#1430)
  • 8ae13452 adding PITR attribute mapping config for dyanmodb (#1340)
  • 849eef79 allow host policy update (#1400)
  • 7365ecf5 bump goformation from v6 to v7 (#1440)
  • a9f115a2 container funcs to return dev friendly warnings (#1319)
  • d2f87705 fix remote source url (#1437)
  • 313ccf31 fix: build/Dockerfile to reduce vulnerabilities (#1315)
  • baf1dfd1 fixed typo of the function name (#1373)
  • fee466b6 minor release 1.17.0
  • fa11e0ee minor release 1.17.0 (#1459)
  • 0f53f055 refs resolution (#1445)
  • 944087f8 release/v1.16.0 (#1427)
  • 5a49729c update cft map for elb/s3 bucket (#1434)
  • af10a246 update libraries (#1385)
  • 730c83fd update rds instance cft map (#1422)
  • 42d07eba update version for sarif golden files
  • 5c9eaab3 updated deployment scripts (#1429)
  • 064c993c updated policy (#1288)
  • db3b7aef vuln tests (#1394)
terrascan - v1.16.0

Published by github-actions[bot] almost 2 years ago

Changelog

  • 84f0888c Add github-actions to dependabot (#1365)
  • 752d2a0d Add iac providers endpoint (#1307)
  • 6da2dca1 Mention pre-requirements in the README (#1375)
  • 7c45879f Merge branch 'tenable:master' into master
  • 08934f48 Policy IDs update (#1396)
  • e289cc65 Update RDS Policies (#1424)
  • da754a75 Update README.md (#1265)
  • 3b428a50 Update README.md (#1409)
  • 8ae13452 adding PITR attribute mapping config for dyanmodb (#1340)
  • 849eef79 allow host policy update (#1400)
  • a9f115a2 container funcs to return dev friendly warnings (#1319)
  • 313ccf31 fix: build/Dockerfile to reduce vulnerabilities (#1315)
  • baf1dfd1 fixed typo of the function name (#1373)
  • 73c1d04b release/v1.16.0
  • 944087f8 release/v1.16.0 (#1427)
  • af10a246 update libraries (#1385)
  • 730c83fd update rds instance cft map (#1422)
  • 064c993c updated policy (#1288)
  • db3b7aef vuln tests (#1394)
terrascan - v1.15.2

Published by github-actions[bot] over 2 years ago

Changelog

  • 00664bcc Adding CFT support for new resources (#1293)
  • c729550e fixes: panic in case of zap logger init on windows os (#1283)
  • 3ee999ad release/v1.15.2 (#1292)
terrascan - v1.15.1

Published by github-actions[bot] over 2 years ago

Changelog

  • 01b7dffe Fix descriptions to install terrascan (#1254)
  • ec6cae94 Rebranding repository to Tenable brand (#1253)
  • 9ae26fc8 Rebranding to Tenable (#1246)
  • 5d968e3f Update README.md (#1245)
  • fb1bbcc0 fix: remove master ref check from release docker push step (#1244)
  • feb646ac nil pointer check to avoid panic (#1260)
  • 7126c48f release/v1.15.1 (#1267)
  • 48b63935 support reading terraformrc file from env var (#1264)
terrascan - v1.15.0

Published by github-actions[bot] over 2 years ago

Changelog

  • 2bf371dc Add dep scan (#1223)
  • 990dd2f2 Bump alpine from 3.14.6 to 3.15.4 in /build (#1237)
  • 5be816d4 Bump github.com/hashicorp/go-getter from 1.5.7 to 1.5.11 (#1233)
  • 67f3c9d2 Removing workflow file (#1236)
  • beca33cb Update Docker (#1242)
  • fc492880 Update alpine version (#1222)
  • eb1df81d Update mkdocs-material from 8.2.6 to 8.2.14 (#1240)
  • e3153a1f Use Docker buildx for multi-platform support (#1062)
  • 53457cd6 file out writer implementation (#1229)
  • 9baa8ef7 fix panic while scanning https://github.com/bridgecrewio/cfngoat (#1238)
  • 93a7c879 marks ecr e2e test pending till we find alternative (#1224)
  • dea27da1 release/v1.15.0 (#1243)
  • 471df8b2 support for new flag to define custom temp directory (#1217)
terrascan - v1.14.0

Published by github-actions[bot] over 2 years ago

Changelog

  • 50ad728d Bump go 1.17 (#1026)
  • 504aa1a3 Add backward compatible implementation of AC_AWS_0214 (#1173)
  • b34f65a4 Add security policy (#1189)
  • a59fc2be Adds: dir scan errors in human readable output format (#1196)
  • c005c1f3 Feature/best effort cft file load (#1168)
  • d818b60a Feature/endpoint policy download (#1200)
  • d2cf489d Update README.md (#1206)
  • 830e0792 Update mkdocs from 1.2.3 to 1.3.0 (#1203)
  • 13d2e45d Update mkdocs-material from 8.2.1 to 8.2.6 (#1195)
  • 664798df add CODEOWNERS (#1194)
  • 71648680 adds: git in container which is required for go build (#1193)
  • 2345a4a9 changes to honour custom temp dir path for downloading (#1214)
  • 173ec8f8 fix: reworded error to explain tests performed (#1164)
  • 655761a6 proceed to terraform static analysis when root is not nil (#1211)
  • 3dbcc4fa release/v1.14.0 (#1215)
  • cc59c890 remove source_code_hash mapping (#1197)
  • 8a630d80 remove undefined template variable (#1179)
  • 2225cffc run go mod tidy (#1184)
  • 119958ee skip building windows arm64 binary (#1216)
  • a6a6a372 skip policy download if used -p flag and skip docker login on non master branch (#1210)
  • 6a6510a7 skip vuln test for dependabot (#1185)
  • 5e50a2ed typo: Change "desitnation" to "destination". (#1192)
  • f8c03439 update lambda function mapper (#1199)
  • b9094603 updating s3 bucket policies for v4 aws provider (#1175)
Package Rankings
Top 4.06% on Proxy.golang.org
Badges
Extracted from project README
GitHub release License: Apache 2.0 PRs Welcome Quality Gate Status AUR package codecov Documentation Status Contributor Covenant Stargazers @tenable/terrascan Forkers @tenable/terrascan
Related Projects
terraform

The place to storing Terraform modules of many providers

23 Jan 2018 193
kubeclarity

KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...

10 Aug 2024 26
ansible-role-terrascan

Ansible role for 'terrascan'. Available on Ansible Galaxy.

08 Jun 2022 2
checkov

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as c...

27 Nov 2019 6,762