Description: A static code analysis tool for IaC. It scans Terraform, CloudFormation, and ARM templates during the PR process to prevent insecure resources from reaching production.
Subcategory: Infrastructure & Policy as Code
License: open-source
URL: Checkov
