TfSec : TFSec is a static analysis security scanner for your Terraform code. TFSec is a developer-first security scanner for Terraform templates. It uses static analysis and deep integration with the official HCL parser to ensure security issues can be detected before your infrastructure changes take effect.
Checkov: Checkov scans cloud infrastructure provisioned using Terraform, Cloudformation, Kubernetes, Dockerfile, Serverless or ARM Templates and detects security and compliance misconfigurations using graph-based scanning.
Synk: Snyk IaC scans cloud infrastructure provisioned using Terraform and detects deprecated syntax and unused declarations. It enforces best practices and naming conventions.
.jpeg){kind=spacer}