{"id":13510452,"url":"https://github.com/prancer-io/prancer-compliance-test","last_synced_at":"2026-01-17T15:29:34.449Z","repository":{"id":37700749,"uuid":"264085623","full_name":"prancer-io/prancer-compliance-test","owner":"prancer-io","description":"This repository includes cloud security policies for IaC and live resources.","archived":false,"fork":false,"pushed_at":"2025-11-26T00:57:01.000Z","size":16192,"stargazers_count":40,"open_issues_count":8,"forks_count":12,"subscribers_count":7,"default_branch":"master","last_synced_at":"2025-11-29T02:28:47.767Z","etag":null,"topics":["devops","devsecops","iac","iac-security","opa","policy","rego"],"latest_commit_sha":null,"homepage":"https://www.prancer.io","language":"Open Policy Agent","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/prancer-io.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2020-05-15T03:23:07.000Z","updated_at":"2025-09-14T09:28:25.000Z","dependencies_parsed_at":"2023-02-16T20:45:52.444Z","dependency_job_id":"79d7244c-b6e2-4459-9377-96ab60b8b169","html_url":"https://github.com/prancer-io/prancer-compliance-test","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/prancer-io/prancer-compliance-test","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/prancer-io%2Fprancer-compliance-test","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/prancer-io%2Fprancer-compliance-test/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/prancer-io%2Fprancer-compliance-test/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/prancer-io%2Fprancer-compliance-test/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/prancer-io","download_url":"https://codeload.github.com/prancer-io/prancer-compliance-test/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/prancer-io%2Fprancer-compliance-test/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28511487,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-17T13:38:16.342Z","status":"ssl_error","status_checked_at":"2026-01-17T13:37:44.060Z","response_time":85,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["devops","devsecops","iac","iac-security","opa","policy","rego"],"created_at":"2024-08-01T02:01:39.618Z","updated_at":"2026-01-17T15:29:34.396Z","avatar_url":"https://github.com/prancer-io.png","language":"Open Policy Agent","funding_links":[],"categories":["Open Policy Agent","devops","Policy Libraries and Rulesets"],"sub_categories":["OPA/Rego Libraries"],"readme":"# Prancer Compliance test repository\n\n## Introduction\nPrancer is a pre-deployment and post-deployment multi-cloud security platform for your Infrastructure as Code (IaC) and live cloud environment. It shifts the security to the left and provides end-to-end security scanning based on the Policy as Code concept. DevOps engineers can use it for static code analysis on IaC to find security drifts and maintain their cloud security posture with continuous compliance features. you can get more information from our website at : https://www.prancer.io\n\n## How to use the repository\nThe easiest way to get up and running is to make sure you can run the scenario we are explaining in the [Hello World example](https://www.prancer.io/guidance/). after being able to run that simple scenario, you can use this repository to do more advanced security tests.\n\n## Repository structure\nThe repository consists of 4 high level folders representing each supported type:\n - AWS\n - Azure\n - Google\n - Kubernetes\n\nUnder each top level directory, we have `cloud`, `iac` and `terraform` folders which hold the `rego` files respectively.\n - `cloud` folder holds all the rego files related to post deployment tests. These tests contribute to have continuous compliance in the cloud\n - `iac` folder holds all the rego files related to IaC Security Scan. These tests contribute to shift security to left concept\n - `terraform` folder holds all the rego files related to Terraform Infrastructure as Code\n\n## Prerequisites\nMake sure you have the following prerequisites available:\n - Linux distribution\n - Python 3.6.8 / 3.8 / 3.9\n - Prancer Basic [How to install prancer basic](https://docs.prancer.io/installation/)\n - OPA [How to install OPA binary](https://www.openpolicyagent.org/docs/latest/#running-opa)\n \u003e Note: We recommend moving `opa` to a directory included in your system's `PATH` (i.e `/usr/local/bin/`)\n\n ## Sample scenario\n There are lots of use cases available for the [Prancer Platform](https://www.prancer.io/introduction/?section=use-case-scenarios). Here I will show you a sample scenario to IaC Scan Azure ARM template.\n\n \u003e The complete code is available in the [Hello World](https://github.com/prancer-io/prancer-hello-world) repository\n\nThe easiest way is to clone our [Hello World](https://github.com/prancer-io/prancer-hello-world) repository, change the parameters and run it.\n\n### step 1 - Clone the `Hello World` sample repo\n`git clone https://github.com/prancer-io/prancer-hello-world`\n`cd prancer-hello-world`\n\n### step 2 - Change the connector file to point to your IaC code repo\nYou can use the available connector and change the `gitProvider` attribute to point to your own repo. (https://github.com/prancer-io/prancer-hello-world/blob/master/gitConnectorArmRemoteStructure.json)\n\n`cat gitConnectorArmRemoteStructure.json`\n```\n{\n    \"fileType\": \"structure\",\n    \"type\": \"filesystem\",\n    \"companyName\": \"prancer\",\n    \"gitProvider\": \"https://github.com/prancer-io/prancer-armof.git\",\n    \"branchName\": \"master\",\n    \"private\": false\n}\n```\n\n### step 3 - Verify Master snapshot and Master test files\nThe next step is to verify master snapshot and master test files which are pointed to this repository. The complete code is already available in our `Hello World` sample repository and you don't need to change anything. You can find the sample codes here:\nhttps://github.com/prancer-io/prancer-hello-world/tree/master/validation/scenario-arm-remote\n\n`cat validation/scenario-arm-remote/master-snapshot.json`\n```\n{\n    \"$schema\": \"\",\n    \"contentVersion\": \"1.0.0.0\",\n    \"fileType\": \"masterSnapshot\",\n    \"connector\": \"gitConnectorRemote\",\n    \"remoteFile\": \"azure/iac/master-snapshot.json\",\n    \"connectorUsers\": [\n      {\n        \"id\": \"USER_1\",\n        \"testUser\": \"user1\",\n        \"source\": \"gitConnectorArmRemoteStructure\"\n      }\n    ]\n}\n```\n\n`cat validation/scenario-arm-remote/master-test.json`\n```\n{\n    \"contentVersion\": \"1.0.0.0\",\n    \"notification\": [],\n    \"masterSnapshot\": \"master-snapshot\",\n    \"fileType\": \"mastertest\",\n    \"connector\": \"gitConnectorRemote\",\n    \"remoteFile\": \"azure/iac/master-compliance-test.json\"\n}\n```\n\n### step 4 - running the IaC Scan\nrun the command `prancer --crawler scenario-arm-remote` to get all the files available in your repository. And then `prancer scenario-arm-remote` to complete the IaC security tests for Azure ARM templates.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fprancer-io%2Fprancer-compliance-test","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fprancer-io%2Fprancer-compliance-test","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fprancer-io%2Fprancer-compliance-test/lists"}