Platform
Infrastructure As Code
| Spot and fix dangerous IaC flaws across the cloud native application stack | |
| Reduce cloud security risks preventing misconfigurations from being deployed. | |
| Support for the main IaC frameworks |
Spot and fix dangerous IaC flaws across the cloud native application stack
IaC is a method to provision and manage IT/Cloud infrastructure through the use of source code (IaC templates) under version control, rather than through operating procedures and manual processes. Errors in IaC templates could lead to security issues across the cloud native application stack.
Xygeny enables you to identify all the attributes for which the proper settings are either missing or are incorrectly set. It scans templates, files, and modules and their variables against security policies.
Reduce cloud security risks preventing misconfigurations from being deployed
Tasks like application deployment, infrastructure and services provisioning, orchestrating the arrangement and coordination of systems, and configuration management are automated by tools which often take IaC templates as input. Any flaw in IaC could result in security issues ending in the production environment.
Detecting and fixing such flaws early (often termed ‘shift left’), even when changes in IaC templates are committed, highly reduce the risk of deploying insecure configurations.
Support for the main IaC frameworks
Xygeni supports IaC scanning for frameworks like Terraform, CloudFormation, Kubernetes, and more. A comprehensive library of detectors covers flaws from the simplest Dockerfile to the most complex Azure Resource Manager configuration.
