IaC Testing

ControlMonkey

The IaC-native Cloud Governance Platform.

A platform for automating and governing Terraform at scale.

View tool details →

Kubescape

The first open-source tool for testing if Kubernetes is deployed securely.

An open-source Kubernetes security platform for risk analysis, security compliance, and misconfiguration scanning.

View tool details →

Infracost

Cloud cost estimates for Terraform in pull requests. See cost breakdowns and get visibility into how changes impact your monthly bill.

A tool that shows cloud cost estimates for Terraform projects.

View tool details →

Infracost

Cloud cost estimates for Terraform in pull requests. Shift FinOps Left!

A tool that shows cloud cost estimates for IaC changes, helping engineers understand the cost impact of their work.

View tool details →

Spacelift

The most flexible CI/CD for Infrastructure as Code.

A specialized CI/CD platform for IaC that provides policy-as-code, state management, and collaboration features.

View tool details →

Scalr

The Terraform Automation and Collaboration Platform.

A Terraform automation platform that provides a hierarchical structure for managing environments, credentials, and variables.

View tool details →

Infracost

Cloud cost estimates for Terraform in pull requests.

A tool that shows cloud cost estimates for infrastructure changes before they happen, integrating with CI/CD.

View tool details →

env0

The complete Infrastructure as Code Platform.

An automation platform for IaC that enables self-service, governance, and cost management for Terraform and Terragrunt.

View tool details →

env0

The complete Infrastructure as Code (IaC) platform to manage all your cloud environments.

An IaC platform for managing cloud environments with governance and cost control.

View tool details →

Open Policy Agent (OPA)

Policy-based control for cloud native environments.

An open-source, general-purpose policy engine that unifies policy enforcement across the stack.

View tool details →

env0

The complete infrastructure as code (IaC) platform to manage all your cloud environments.

An IaC automation platform that provides governance, cost management, and self-service capabilities for Terraform, Terragrunt, and other IaC tools.

View tool details →

Spacelift

The most flexible and sophisticated CI/CD for Infrastructure as Code.

A CI/CD platform for IaC that helps you manage and automate your infrastructure deployments.

View tool details →

Kubescape

The first tool for testing if Kubernetes is deployed securely according to multiple frameworks.

An open-source Kubernetes security posture management tool that scans for misconfigurations and vulnerabilities.

View tool details →

env0

Automate and manage your IaC deployments with governance and cost control.

An IaC platform for managing and governing cloud environments.

View tool details →

Datree

Prevent misconfigurations from reaching production.

A CLI tool for preventing misconfigurations in Kubernetes manifests by running automated checks.

View tool details →

Spacelift

The most flexible and compliant CI/CD for Infrastructure as Code.

A CI/CD platform for IaC with drift detection and policy as code.

View tool details →

Spacelift

The most flexible CI/CD for Infrastructure as Code.

A specialized CI/CD and management platform for Terraform, Pulumi, and other IaC tools, with a focus on policy and collaboration.

View tool details →

Datree

Prevent Kubernetes misconfigurations from reaching production.

A CLI tool that runs automated checks on Kubernetes configuration files to ensure they follow policies and best practices.

View tool details →

CloudQuery

The open-source cloud asset inventory powered by SQL.

An open-source tool to build a cloud asset inventory and query it with SQL.

View tool details →

Infracost

Cloud cost estimates for Terraform in pull requests.

A CLI tool and API that shows cloud cost estimates for Terraform projects, helping developers see the cost impact of their changes.

View tool details →

Kyverno

Kubernetes Native Policy Management.

A policy engine designed for Kubernetes that can validate, mutate, and generate configurations using policies.

View tool details →

Styra DAS

The Unified Authorization Platform, built on Open Policy Agent.

An enterprise management plane for Open Policy Agent (OPA) that helps operationalize policy as code.

View tool details →

env0

The complete infrastructure as code (IaC) platform to manage all of your cloud environments.

An automation platform for IaC that includes policy-as-code and cost management features.

View tool details →

Snyk IaC

Find and fix security issues in your Terraform, CloudFormation, Kubernetes, and Azure Resource Manager configurations.

An IaC security tool that finds and fixes misconfigurations in cloud native application infrastructure.

View tool details →

Scalr

The Terraform Automation & Collaboration Platform.

A Terraform automation and collaboration platform with built-in policy-as-code and governance features.

View tool details →

Open Policy Agent (OPA)

Policy-based control for cloud native environments.

An open source, general-purpose policy engine that unifies policy enforcement across the stack.

View tool details →

Scalr

The Terraform Automation & Collaboration Software.

A Terraform automation and collaboration platform with a hierarchical model for policy and workspace management.

View tool details →

Open Policy Agent (OPA)

Policy-based control for cloud native environments.

An open-source, general-purpose policy engine that can be used to enforce policies on Terraform plans.

View tool details →

Scalr

The Terraform Automation & Collaboration Software.

A Terraform automation platform that provides an alternative to Terraform Cloud with features like hierarchical environments.

View tool details →

Checkov

Prevent cloud misconfigurations during build-time.

An open-source static analysis tool for scanning Infrastructure as Code (IaC) files for misconfigurations.

View tool details →

Firefly

The Cloud Asset Management Platform.

A platform for cloud asset management, IaC codification, and drift detection.

View tool details →

Wiz

The Cloud Security Platform.

A comprehensive cloud security platform that includes IaC scanning as part of its broader capabilities.

View tool details →

Wiz

The Cloud Security Platform.

A leading CNAPP that provides full-stack visibility and IaC scanning.

View tool details →

Open Policy Agent (OPA)

An open source, general-purpose policy engine that enables unified, context-aware policy enforcement across the entire stack.

An open-source, general-purpose policy engine that enables unified, context-aware policy enforcement across the entire stack.

View tool details →

Snyk IaC

Find and fix security issues in your Terraform, CloudFormation, Kubernetes & ARM templates.

A developer-focused security tool that scans IaC files for misconfigurations and provides context and remediation advice.

View tool details →

Trivy

A comprehensive and versatile security scanner.

A versatile security scanner that finds vulnerabilities, IaC misconfigurations, and secrets in various targets.

View tool details →

Orca Security

The Cloud Security Platform You Can Actually Use.

An agentless cloud security platform that includes shift-left capabilities like IaC security scanning.

View tool details →

Orca Security

The Cloud Security Platform You Can Actually Use.

A comprehensive cloud security platform with IaC scanning.

View tool details →

Datadog Cloud Security Management

Unify development, operations, and security in a single platform.

A cloud security solution from Datadog that includes IaC scanning.

View tool details →

Terraform Cloud

Automate your infrastructure on any cloud.

The official managed service from HashiCorp for running Terraform, providing collaboration, governance, and automation features.

View tool details →

Snyk Infrastructure as Code

Developer security that finds and fixes security vulnerabilities in your code, open source dependencies, containers, and IaC.

A developer-focused security platform that includes IaC scanning and drift detection.

View tool details →

Prisma Cloud (by Palo Alto Networks)

The industry’s most complete Cloud-Native Application Protection Platform (CNAPP).

A comprehensive CNAPP that includes IaC scanning, cloud security posture management, and workload protection.

View tool details →

Terraform Cloud

Provision, manage, and connect infrastructure as code.

HashiCorp's managed service for Terraform, providing state management, collaboration, and governance features.

View tool details →

Snyk IaC

Find and fix security issues in your Terraform, CloudFormation, Kubernetes, and Azure Resource Manager configurations.

A developer-first security platform that helps you find and fix misconfigurations in your IaC files.

View tool details →

Snyk IaC

Secure your infrastructure as code from commit to cloud.

Find and fix security issues in IaC files.

View tool details →

tfsec

A static analysis security scanner for your Terraform code.

An open-source static analysis tool for finding security misconfigurations in Terraform code.

View tool details →

tfsec

Security scanner for your Terraform code.

An open-source static analysis tool that checks Terraform code for security misconfigurations and compliance violations.

View tool details →

SonarQube

The essential tool for Code Quality and Code Security.

A leading static analysis platform that supports IaC scanning for Terraform, CloudFormation, Kubernetes, and more.

View tool details →

Checkov

Policy-as-code for everyone.

A static code analysis tool for infrastructure as code.

View tool details →

HashiCorp Sentinel

Policy as Code for Security, Compliance, and Operational Governance.

An embeddable policy-as-code framework that integrates with the HashiCorp Enterprise products.

View tool details →

Terraform Cloud

Automate your infrastructure with Terraform.

HashiCorp's managed service offering for using Terraform in production.

View tool details →

Snyk Infrastructure as Code

Find and fix security issues in your Terraform, CloudFormation, Kubernetes, and ARM templates.

A developer-focused tool for finding and fixing security misconfigurations in IaC files.

View tool details →

Terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk.

An open-source static code analyzer for IaC that helps detect security vulnerabilities and compliance violations.

View tool details →

TFLint

A Pluggable Terraform Linter.

A linter focused on finding possible errors, best practice deviations, and enforcing naming conventions in Terraform code.

View tool details →

Trivy

All-in-one, comprehensive security scanner.

A versatile security scanner that finds vulnerabilities, misconfigurations, secrets, and SBOMs in containers, IaC, and more.

View tool details →

Lacework

The data-driven cloud security platform.

A CNAPP that uses data and automation to secure cloud environments.

View tool details →

Azure Policy

Implement governance for consistency, compliance, and security.

A service in Azure that you use to create, assign, and manage policies for your Azure resources.

View tool details →

Prisma Cloud (Bridgecrew)

The industry’s most complete Cloud-Native Application Protection Platform (CNAPP).

A comprehensive cloud security platform that includes IaC scanning, drift detection, and compliance monitoring.

View tool details →

Checkov

Prevent cloud misconfigurations during build time.

An open-source static analysis tool for scanning infrastructure as code (IaC) files for misconfigurations.

View tool details →

Terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

An open-source static code analyzer that scans IaC for security vulnerabilities and compliance violations.

View tool details →

Lightlytics

Prevent critical business disruptions in the cloud.

A cloud security and operations platform that simulates changes and detects drift to prevent downtime and misconfigurations.

View tool details →

AccuKnox

The Cloud Native Application Protection Platform (CNAPP)

A comprehensive security platform for cloud-native applications and infrastructure.

View tool details →

JupiterOne

The Cyber Asset Attack Surface Management (CAASM) Platform.

A platform for cyber asset attack surface management.

View tool details →

Infracost

Cloud cost estimates for Terraform in your pull requests.

Shows cloud cost estimates for Terraform.

View tool details →

Styra Declarative Authorization Service (DAS)

The Decision Plane for Cloud-Native.

An enterprise management plane for Open Policy Agent (OPA).

View tool details →

Datree

The Git-native policy engine for Kubernetes.

A policy enforcement solution for Kubernetes that helps you prevent misconfigurations in your manifests.

View tool details →

Fugue

Cloud security and compliance for engineers.

A cloud security platform that helps you manage the entire lifecycle of your cloud infrastructure, from code to cloud.

View tool details →

Lightspin

Contextual Cloud Security Platform.

A cloud security platform that provides contextual risk analysis.

View tool details →

Wiz

The Cloud Security Platform.

A cloud security platform that provides visibility and risk context across the entire cloud stack.

View tool details →

Orca Security

The Cloud Security Platform You Can Actually Use.

An agentless cloud security platform for workload and data protection, CSPM, and more.

View tool details →

Fugue

Cloud security and compliance, now part of Snyk.

A cloud security posture management (CSPM) tool for ensuring continuous compliance.

View tool details →

Kion

The Cloud Enablement Solution

A cloud enablement platform for governance, automation, and financial management.

View tool details →

Conftest

Write tests against structured configuration data.

A utility to help you write tests against structured configuration data using the Rego language from Open Policy Agent.

View tool details →

Lacework

The data-driven cloud security platform.

A cloud security platform that uses data and automation to drive better security outcomes.

View tool details →

Brainboard

Visually build and manage your cloud infrastructure.

A visual cloud solution to design, deploy, and manage cloud infrastructures.

View tool details →

Snyk IaC

Find and fix security issues in your IaC files before deployment.

Find and fix security issues in your IaC configurations.

View tool details →

Datadog Cloud Security Management

Full-stack security, from development to production.

A security and compliance solution within the Datadog platform that includes IaC scanning.

View tool details →

Trivy

The comprehensive, streamlined security scanner.

A comprehensive security scanner that finds vulnerabilities, misconfigurations, secrets, and SBOMs in a wide range of targets.

View tool details →

Pulumi CrossGuard

Policy as Code for the Modern Cloud.

A policy-as-code framework for Pulumi that allows you to enforce policies on your infrastructure using familiar programming languages.

View tool details →

Bridgecrew

Automated cloud security for DevOps.

A cloud security platform that helps you find and fix security and compliance issues in your cloud infrastructure.

View tool details →

Snyk Infrastructure as Code

Developer-first security for your infrastructure configurations.

Finds and fixes misconfigurations in Terraform, CloudFormation, Kubernetes, and ARM templates.

View tool details →

tfsec

Security scanner for your Terraform code.

A static analysis tool for Terraform code to spot potential security issues.

View tool details →

Ansible security automation

Automate your security processes with Ansible.

Use Ansible to automate your security processes.

View tool details →

Lacework

The data-driven cloud security platform.

A cloud security platform that provides IaC security, CSPM, CWPP, and threat detection.

View tool details →

Checkov

Prevent cloud misconfigurations during build-time with Checkov, the static analysis tool for infrastructure as code.

An open-source static analysis tool for scanning infrastructure as code (IaC) files for misconfigurations.

View tool details →

Checkmarx IaC Security

Secure your infrastructure as code from the start.

A commercial IaC security solution from Checkmarx that includes the open-source KICS engine.

View tool details →

Pulumi

Create, deploy, and manage infrastructure on any cloud using your favorite language.

An IaC platform that lets you use familiar programming languages to provision and manage cloud infrastructure.

View tool details →

Terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

An open-source static code analysis tool for IaC.

View tool details →

tfsec

tfsec uses static analysis of your Terraform templates to spot potential misconfigurations.

A static analysis tool for finding security issues in Terraform code.

View tool details →

Chef InSpec

Turn your compliance, security, and other policy requirements into code.

An open-source testing framework for infrastructure with a human-readable language for specifying compliance, security, and policy requirements.

View tool details →

GitLab Ultimate

The One DevOps Platform.

A comprehensive DevOps platform with integrated IaC security scanning.

View tool details →

Prisma Cloud by Palo Alto Networks

The Comprehensive Cloud Native Application Protection Platform.

A comprehensive cloud security platform that includes IaC scanning, CSPM, CWPP, and more.

View tool details →

Chef InSpec

Turn your compliance, security, and other policy requirements into automated tests.

An open-source framework for testing and auditing your applications and infrastructure.

View tool details →

Checkov

Prevent cloud misconfigurations during build-time for Terraform, CloudFormation, Kubernetes, Serverless framework and other infrastructure-as-code-languages.

A static code analysis tool for infrastructure-as-code.

View tool details →

KubeLinter

A static analysis tool for Kubernetes YAML files and Helm charts.

A linter for Kubernetes that checks for best practices and security issues.

View tool details →

Prisma Cloud by Palo Alto Networks

The most complete Cloud-Native Application Protection Platform (CNAPP).

A comprehensive CNAPP that includes IaC scanning and drift detection.

View tool details →

Bridgecrew

Developer-first cloud security.

A cloud security platform that includes IaC scanning and drift detection, now part of Palo Alto Networks.

View tool details →

Accurics

Secure your cloud native infrastructure.

A cloud security platform that provides security and governance for the full cloud native stack.

View tool details →

AWS CloudFormation Drift Detection

Model and provision all your cloud infrastructure resources.

A native AWS service for detecting changes made to stack resources outside of CloudFormation.

View tool details →

KICS

Keeping Infrastructure as Code Secure.

An open-source IaC static analysis tool by Checkmarx that finds security vulnerabilities, compliance issues, and misconfigurations.

View tool details →

KICS

Keeping Infrastructure as Code Secure

An open-source static analysis tool from Checkmarx that scans IaC for security vulnerabilities, compliance issues, and misconfigurations.

View tool details →

Tenable.cs

Secure the entire cloud-native stack.

A cloud-native security platform for the entire software lifecycle.

View tool details →

Checkov

Prevent cloud misconfigurations during build-time with Checkov, the static analysis tool for infrastructure as code.

An open-source static analysis tool for infrastructure as code.

View tool details →

Terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning.

An open-source static code analyzer for IaC that helps detect security and compliance violations.

View tool details →

KICS

Keeping Infrastructure as Code Secure.

An open-source static analysis tool that finds security vulnerabilities, compliance issues, and misconfigurations in IaC.

View tool details →

Terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning.

A static code analysis tool for IaC that helps you detect security vulnerabilities and compliance violations.

View tool details →

Chef InSpec

Turn your compliance, security, and other policy requirements into code.

An open-source testing framework for infrastructure with a human-readable language for specifying compliance and security rules.

View tool details →

KICS

Keeping Infrastructure as Code Secure.

An open-source static analysis tool that finds security vulnerabilities, compliance issues, and infrastructure misconfigurations in IaC.

View tool details →

KICS

Keeping Infrastructure as Code Secure

An open-source static analysis tool for IaC security.

View tool details →

Datadog Cloud Security Platform

Modern security and monitoring.

A unified platform for security and observability, including IaC scanning.

View tool details →

Puppet Comply

Continuous compliance for your hybrid infrastructure.

A tool for assessing and remediating compliance issues.

View tool details →

Datadog Cloud Security Posture Management

Continuously monitor your cloud environment for misconfigurations.

A CSPM tool that detects misconfigurations, identifies threats, and helps manage compliance.

View tool details →

New Relic

The All-in-One Observability Platform.

An observability platform that includes infrastructure monitoring and security features.

View tool details →

tfsec

Security scanner for your Terraform code.

An open-source static analysis tool for finding security misconfigurations in Terraform.

View tool details →

New Relic Infrastructure

Monitor your entire infrastructure in one place.

An infrastructure monitoring platform with configuration change tracking.

View tool details →

Datadog Cloud Security Platform

Unified security and observability for cloud-native environments.

A security platform that combines observability and security for cloud environments.

View tool details →

Ansible-lint

Checks playbooks for practices and behavior that could potentially be improved.

A command-line tool for linting Ansible playbooks, roles, and collections.

View tool details →

KubeLinter

A static analysis tool that checks Kubernetes YAML files and Helm charts for production readiness and security best practices.

An open-source static analysis tool for Kubernetes manifests and Helm charts, checking for best practices.

View tool details →

cfn-lint

Validate CloudFormation templates against the AWS CloudFormation Resource Specification.

An AWS-supported open-source tool for linting and validating AWS CloudFormation templates.

View tool details →

Regula

A tool that evaluates infrastructure as code for security misconfigurations and compliance violations.

An open-source tool that checks Terraform and CloudFormation templates for compliance with controls from frameworks like CIS.

View tool details →

Open Policy Agent (OPA)

Policy-based control for cloud native environments.

An open-source, general-purpose policy engine that can be used to enforce policies on IaC.

View tool details →

OPA Gatekeeper

Policy Controller for Kubernetes.

A Kubernetes admission controller that enforces policies created with Open Policy Agent (OPA).

View tool details →

Terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

An open-source static code analysis tool for IaC.

View tool details →

tfsec

Security scanner for your Terraform code.

An open-source static analysis tool that scans Terraform templates for security misconfigurations.

View tool details →

KICS

Keeping Infrastructure as Code Secure.

An open-source solution for static analysis of IaC, finding security vulnerabilities, compliance issues, and misconfigurations.

View tool details →

Steampipe

Query cloud APIs in real time using SQL.

An open-source tool that maps cloud APIs to a PostgreSQL database, allowing for live SQL queries to detect drift.

View tool details →

Terragrunt

A thin wrapper for Terraform that provides extra tools for keeping your configurations DRY, working with multiple Terraform modules, and managing remote state.

A CLI tool that provides extra helpers for keeping Terraform code DRY and managing multiple environments.

View tool details →

driftctl

The open-source tool for infrastructure drift detection.

An open-source CLI that tracks, alerts, and remedies infrastructure drift.

View tool details →

Yor

Automated IaC tagging for traceability.

An open-source tool that automatically adds tags to IaC files, enriching them with context like git repository and commit details.

View tool details →

Terratag

A CLI tool to manage tags on Terraform resources.

An open-source CLI tool from env0 that helps manage and apply tags to all resources within a Terraform project.

View tool details →

Atlantis

Terraform Automation By Pull Request.

An open-source tool for automating Terraform collaboration via pull requests, with drift detection capabilities.

View tool details →

Terratest

Test your infrastructure code.

A Go library that provides patterns and helper functions for testing infrastructure, with first-class support for Terraform.

View tool details →

kitchen-terraform

Test Kitchen plugins for testing Terraform configurations.

A set of plugins for the Test Kitchen framework that enables integration and acceptance testing of Terraform code.

View tool details →

Digger

Open Source CI/CD for Terraform and OpenTofu.

An open-source tool that runs Terraform/OpenTofu natively in your existing CI/CD system, enabling drift detection.

View tool details →

Resoto

Your cloud, structured.

An open-source tool for cloud asset inventory and search that can be used for drift detection.

View tool details →

conftest

Write tests against structured configuration data.

A utility that uses the Rego language from Open Policy Agent to write tests against configuration files, including Terraform.

View tool details →

Regula

Check infrastructure as code for security and compliance.

An open-source tool that evaluates Terraform and CloudFormation for security misconfigurations and compliance with standards like CIS.

View tool details →

Terratest

A Go library that provides patterns and helper functions for testing infrastructure, with first-class support for Terraform, Packer, Docker, and more.

A Go library for writing automated tests for Infrastructure as Code, not a linter but a testing framework.

View tool details →

tflint

A Pluggable Terraform Linter.

A linter for Terraform that focuses on checking for potential errors, best practices, and enforcing conventions.

View tool details →

Terradrift

A tool to detect drifts in terraform IaC.

A simple open-source tool that runs `terraform plan` across multiple directories to detect drift.

View tool details →

CloudQuery

The open-source cloud asset inventory powered by SQL.

An open-source tool that extracts, transforms, and loads cloud asset data into databases for analysis.

View tool details →

KubeDiff

A tool for Kubernetes to show differences between running state and version controlled configuration.

An open-source CLI to detect differences between Kubernetes manifests and the running cluster state.

View tool details →

Terragrunt

A thin wrapper for Terraform that provides extra tools for keeping your configurations DRY, working with multiple Terraform modules, and managing remote state.

A CLI tool that acts as a thin wrapper on Terraform to help manage complex projects by keeping code DRY and managing remote state.

View tool details →

Terragrunt

A thin wrapper for Terraform that provides extra tools for keeping your configurations DRY, working with multiple Terraform modules, and managing remote state.

A tool to keep Terraform code DRY (Don't Repeat Yourself) by managing remote state and locking configurations.

View tool details →

Puppet-lint

Check your Puppet manifests for style guide conformity.

A tool that validates Puppet code against the official Puppet language style guide.

View tool details →

driftctl

The open-source tool for infrastructure drift detection.

A CLI tool that scans cloud environments, compares them to your IaC state, and reports any unmanaged resources or drift.

View tool details →

Atlantis

Terraform Automation By Pull Request

An open-source, self-hosted application for automating Terraform via pull requests, enabling a GitOps workflow.

View tool details →

Cloud-Sploit

Cloud Security Posture Management (CSPM)

An open-source tool for scanning cloud environments for security risks.

View tool details →

Prowler

The most-used open-source tool for AWS security.

An open-source security tool for AWS, Azure, and GCP.

View tool details →

Scout Suite

Multi-Cloud Security Auditing Tool

An open-source tool for auditing the security of multi-cloud environments.

View tool details →

Pacu

The AWS exploitation framework.

An open-source exploitation framework for AWS.

View tool details →

Ansible Lint

Checks playbooks for practices and behavior that could potentially be improved.

A command-line tool for linting Ansible playbooks, roles, and collections.

View tool details →

InSpec

A fast, readable, open source language for infrastructure testing and compliance.

An open-source testing framework for infrastructure with a human-readable language for specifying compliance, security, and policy requirements.

View tool details →

AWS CloudFormation Guard

A set of tools to check AWS CloudFormation templates for policy compliance.

A tool for checking CloudFormation templates for policy compliance.

View tool details →

Kitchen-Terraform

A set of Test Kitchen plugins for testing Terraform configurations.

A Test Kitchen plugin for testing Terraform code.

View tool details →

Ansible Molecule

Testing framework for Ansible roles.

A framework for testing Ansible roles.

View tool details →

Steampipe

Query your cloud, code, and more with SQL.

An open-source tool that lets you query cloud APIs using SQL.

View tool details →

CloudQuery

The open source high performance data integration platform built for developers.

An open-source tool for extracting, transforming, and loading cloud infrastructure data into a database for analysis.

View tool details →

Regula

A tool that evaluates infrastructure as code for security and compliance.

An open-source tool that evaluates infrastructure as code for security and compliance.

View tool details →

Regula

A tool that evaluates infrastructure as code for security and compliance.

An open-source tool for checking IaC against security and compliance policies.

View tool details →

TFLint

A Pluggable Terraform Linter.

A linter for Terraform that checks for possible errors, best practices, and naming conventions.

View tool details →

OpenTofu

The open source infrastructure as code tool.

An open-source fork of Terraform that is community-driven and managed by the Linux Foundation.

View tool details →

Terragrunt

A thin wrapper for Terraform that provides extra tools for keeping your configurations DRY, working with multiple Terraform modules, and managing remote state.

A thin wrapper for Terraform that provides extra tools for keeping configurations DRY, working with multiple modules, and managing remote state.

View tool details →

TFLint

A Pluggable Terraform Linter.

A static analysis tool for finding errors in Terraform code.

View tool details →

Terratest

The ultimate Go library for testing your infrastructure code.

A Go library for writing automated tests for your infrastructure code.

View tool details →

AWS CloudFormation Guard

A command-line interface (CLI) that provides a policy-as-code language to define rules that can check for both required and prohibited resource configurations.

An open-source policy as code tool for checking compliance of AWS CloudFormation templates and other structured data.

View tool details →

Ansible Lint

Checks playbooks for practices and behavior that could potentially be improved.

A command-line tool for linting Ansible playbooks, roles, and collections.

View tool details →

cfn-lint

Validate CloudFormation yaml/json templates against the CloudFormation spec and additional checks.

A linter for AWS CloudFormation templates.

View tool details →

Terratest

The ultimate Go library for testing your infrastructure code.

A Go library that provides patterns and helper functions for testing infrastructure.

View tool details →

Kubeval

Validate your Kubernetes configuration files.

A tool for validating Kubernetes configuration files against the official Kubernetes OpenAPI schemas.

View tool details →

Ansible Lint

Checks playbooks for practices and behavior that could potentially be improved.

A command-line tool for linting Ansible playbooks, roles, and collections.

View tool details →

KICS by Checkmarx

Keeping Infrastructure as Code Secure.

An open source static analysis tool for IaC.

View tool details →

Conftest

Write tests against structured configuration data.

A utility to help you write tests against structured configuration files using the Rego language.

View tool details →

OPA Gatekeeper

Policy Controller for Kubernetes.

A customizable admission webhook for Kubernetes that enforces policies executed by the Open Policy Agent (OPA).

View tool details →

CloudFormation Guard

A policy-as-code tool for CloudFormation.

An open-source tool for validating CloudFormation templates.

View tool details →

Prowler

Cloud security assessments, audits, incident response, continuous monitoring, hardening and forensics readiness.

A security tool for AWS, Azure, and GCP.

View tool details →

Cloud Custodian

Rules engine for cloud security, cost optimization, and governance.

An open-source tool that allows you to manage your cloud resources by defining policies in YAML.

View tool details →

Kube-score

A tool that performs static code analysis of your Kubernetes object definitions.

A static analysis tool for Kubernetes that checks manifests for reliability and security best practices.

View tool details →

cfn-lint

Validate CloudFormation templates against the AWS CloudFormation resource specification.

An open-source linter from AWS for validating CloudFormation templates.

View tool details →

Terragrunt

A thin wrapper for Terraform that provides extra tools for keeping your configurations DRY, working with multiple Terraform modules, and managing remote state.

A wrapper for Terraform that helps manage complex infrastructure by keeping code DRY and managing remote state.

View tool details →

Regula

Policy-as-Code for Terraform, CloudFormation, and Kubernetes.

A tool that evaluates IaC for security misconfigurations and compliance violations, powered by Open Policy Agent.

View tool details →

Terragrunt

A thin wrapper for Terraform that provides extra tools for keeping your configurations DRY, working with multiple Terraform modules, and managing remote state.

A tool that helps you write more maintainable and reusable Terraform code.

View tool details →

Terratest

The ultimate testing library for infrastructure code.

A Go library that provides patterns and helper functions for writing automated tests for infrastructure code.

View tool details →

Kyverno

Kubernetes Native Policy Management.

A policy engine designed specifically for Kubernetes, allowing you to manage and validate configurations as policies.

View tool details →

TFLint

A Pluggable Terraform Linter.

A linter for Terraform that focuses on best practices, style conventions, and detecting potential errors.

View tool details →

Atlantis

Terraform Pull Request Automation.

Automates Terraform via pull requests.

View tool details →