Skills
.Work. You
Rest

checkov-security-scan

Community

Audit IaC security at scale.

Software Engineering#security#compliance#infrastructure#iac#scanning#checkov
Authoralxayo
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Identify and remediate Infrastructure as Code (IaC) security misconfigurations and compliance violations before they reach production, reducing risk and speeding remediation.

Core Features & Use Cases

  • Cross-framework IaC scanning across Terraform, CloudFormation, Kubernetes manifests, Dockerfiles, Helm charts, ARM/Bicep templates, GitHub Actions, GitLab CI, and CI/CD pipelines to detect misconfigurations and conformance gaps.
  • Comprehensive checks for cloud misconfigurations, exposed secrets, overly permissive IAM policies, unencrypted storage, publicly accessible resources, container security issues, and insecure CI/CD configurations.
  • CI/CD integration guidance and pre-deployment validation to enforce security gates, with multi-format outputs (CLI, JSON, SARIF) and framework-specific workflows.

Quick Start

Run a full scan of your project to identify misconfigurations across supported IaC frameworks.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: checkov-security-scan
Download link: https://github.com/alxayo/sec-check/archive/main.zip#checkov-security-scan

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.