tfsec | Security scanner for your Terraform code | Security library
kandi X-RAY | tfsec Summary
kandi X-RAY | tfsec Summary
tfsec uses static analysis of your terraform templates to spot potential security issues. Now with terraform CDK support.
Support
Quality
Security
License
Reuse
Top functions reviewed by kandi - BETA
Currently covering the most popular Java, JavaScript and Python libraries. See a Sample of tfsec
tfsec Key Features
tfsec Examples and Code Snippets
Community Discussions
Trending Discussions on tfsec
QUESTION
I have an issue when trying to execute this terraform file on GCP.
...
ANSWER
Answered 2022-Feb-02 at 19:27Granting this role "iam.serviceAccountTokenCreator" causes the warning.
That role allows users to use a service account for Privilege Escalation
QUESTION
I have the following policy that I wish to implement in my IaC code scan using tfsec:
Custom Check: GCP Firewall rule allows all traffic on Telnet port (23)
The below is my custom check in .json format:
...ANSWER
Answered 2021-Mar-18 at 19:07I think now looking at it formatted its clear that source_ranges
is a child of the google_compute_firewall
resource. The ports
attribute is a child of the allow
. Your check is assuming that ports
is a sibling of source_ranges
.
I think this check is achievable with the following - it does a predicate check that there is source_range as required AND there is a block called allow, with an attribute ports containing 23
QUESTION
My Azure pipeline is as below:
...ANSWER
Answered 2020-Dec-01 at 08:54Well it looks like you want to refer to task: TerraformTaskV1@0
(based on the syntax) and the you should use as this:
Community Discussions, Code Snippets contain sources that include Stack Exchange Network
Vulnerabilities
No vulnerabilities reported
Install tfsec
Support
Reuse Trending Solutions
Find, review, and download reusable Libraries, Code Snippets, Cloud APIs from over 650 million Knowledge Items
Find more librariesStay Updated
Subscribe to our newsletter for trending solutions and developer bootcamps
Share this Page