iac-security
CommunitySecure your IaC with automated security scans.
Authorhardw00t
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps development and operations teams identify security misconfigurations in Infrastructure as Code before deployment, reducing risk and remediation costs.
Core Features & Use Cases
- IaC security scanning across Terraform, CloudFormation, Kubernetes manifests, Helm charts, Pulumi, and ARM templates to detect misconfigurations and policy violations.
- CI/CD integration to automatically embed security checks into pull requests and deployment pipelines.
- Policy compliance checks against CIS benchmarks, Kubernetes security policies, and provider best practices to enforce secure infrastructure.
- Use Case: When reviewing a Terraform plan, run scans to surface misconfigurations, enforce least privilege, and generate a remediation report.
Quick Start
Install and run the scanners in your environment. For example:
- Run Checkov for Terraform, Kubernetes, and CloudFormation: checkov -d . --framework terraform,kubernetes,cloudformation
- Run tfsec for Terraform: tfsec . --format json > tfsec.json
- Run kubesec for Kubernetes manifests: kubesec scan deployment.yaml
- Integrate into CI/CD using a simple pipeline that triggers on pull requests
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: iac-security Download link: https://github.com/hardw00t/ai-security-arsenal/archive/main.zip#iac-security Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.