Projects in Awesome Lists tagged with iac-security

https://github.com/GitGuardian/ggshield

Find and fix 400+ types of hardcoded secrets and 70+ types of infrastructure-as-code misconfigurations.

apikey code credentials devsecops iac iac-security infrastructure-as-code key leak precommit scanning secrets-detection secrets-management security

Last synced: 24 Mar 2025

https://github.com/prancer-io/prancer-compliance-test

This repository includes cloud security policies for IaC and live resources.

devops devsecops iac iac-security opa policy rego

Last synced: 17 Jan 2026

https://github.com/filipi86/drogonsec

High-performance open-source security scanner combining SAST, SCA, Secret Detection, and IaC analysis, built for developers and CI/CD pipelines.

application-security cicd-security cloud-security code-scanning dependency-scanning devsecops iac-security open-source-security sast sca secret-detection security-scanner shift-left-security static-analysis vulnerability-scanner

Last synced: 17 Apr 2026

https://github.com/huntridge-labs/argus

Argus brings “a hundred eyes” to your project, combining leading open source security tools into a scalable, automated, continuous security pipeline.

container-security dast devsecops fedramp hardening iac-security malware-detection sast secret-detection security-automation security-scanning security-tools vulnerability-scanning

Last synced: 01 Apr 2026

https://github.com/cpeoples/ansible-security-scanner

🛡️ Static security scanner for Ansible playbooks. 1,090+ rules across 30+ categories covering malicious code, supply-chain risk, IaC misconfiguration, secrets, RCE, and lateral movement. Outputs SARIF, GitLab SAST, and SBOM. CI-native with autofix support.

ansible ansible-playbook ci-cd code-scanning devsecops github-actions gitlab-sast iac-security infrastructure-as-code python sarif sast secrets-detection security security-scanner security-tools static-analysis supply-chain-security vulnerability-scanner yaml

Last synced: 27 May 2026

https://github.com/jenkinsci/xygeni-sensor-plugin

Jenkins plugin for Xygeni - End to end software development and delivery security

ci-cd-security iac-security secrets-scan security software-attestation software-supply-chain-security

Last synced: 11 Apr 2025

https://github.com/peachycloudsecurity/iac-security-scanner

Free Browser Based Infrastructure as Code security scanner - Scan Terraform, Kubernetes, Docker, CloudFormation files for vulnerabilities in your browser. 200+ security rules, GitHub repo scanning, PDF reports. Privacy-first, no uploads.

browser-based cloud-security docker-security iac-security kubernetes-security security-analysis terraform-scanner

Last synced: 18 Feb 2026

https://github.com/tmatens/compose-lint

Security-focused linter for Docker Compose files. Catches dangerous misconfigurations before they reach production. Grounded in OWASP and CIS Docker Benchmark.

cis-benchmark code-quality compose container-security devops devsecops docker docker-compose github-actions hardening iac-security linter owasp pre-commit python security security-scanner security-tools static-analysis yaml

Last synced: 26 Apr 2026

https://github.com/uttej-badwane/secure-cloud-prompt-engineering

Security-focused prompt library and Claude Code skill for automated IaC security reviews. Covers Terraform, Kubernetes, Docker, Ansible, CloudFormation, and CI/CD pipelines. Compliance mapping to CIS, NIST 800-53, PCI-DSS, SOC2, HIPAA, and GDPR.

agent-skills claude-code claude-skills cloud-security devsecops iac-security infrastructure-as-code kubernetes-security security-automation terraform-security