Infrastructure-as-Code (IaC)

Infrastructure-as-Code (IaC) - Aqua https://www.aquasec.com/tag/infrastructure-as-code-iac/ Cloud Native Security, Container Security & Serverless Security Mon, 15 Jul 2024 09:05:51 +0000 en-US hourly 1 https://wordpress.org/?v=6.5.5 Should You Use SLSA or CIS Software Supply Chain Security Guidelines? https://www.aquasec.com/blog/slsa-or-cis-software-supply-chain-security-guidelines/ Thu, 12 Jan 2023 13:43:14 +0000 https://www.aquasec.com/?p=14492

Should You Use SLSA or CIS Software Supply Chain Security Guidelines?

With recent software supply chain attacks on the rise, CISOs being held personally liable, and the United States government requiring minimum security software standards for any products and services they procure, the development industry is refocusing on software development strategies that make security a priority. But with so many reputable sources creating guidance, which is …]]> Aqua and HashiCorp Enable Cloud Native Security, Zero-Trust Approaches https://www.aquasec.com/blog/aqua-and-hashicorp-in-partnership-enabling-cloud-native-security-and-zero-trust-approaches/ Wed, 28 Sep 2022 18:52:09 +0000 https://www.aquasec.com/?p=14612

Aqua and HashiCorp Enable Cloud Native Security, Zero-Trust Approaches

We’re delighted to announce our recent achievement of Premier tier status in HashiCorp’s partner ecosystem – a significant milestone in helping our mutual customers automate security and compliance as part of the cloud journey, and more effectively manage risk by shifting security left, securing the software supply chain and adopting zero trust architectures: This categorization …]]> Scan IaC Code in Dev with Trivy’s Extensions for VS Code and JetBrains https://www.aquasec.com/blog/iac-security-with-trivy/ Tue, 22 Mar 2022 10:30:00 +0000 https://www.aquasec.com/?p=14932

Scan IaC Code in Dev with Trivy’s Extensions for VS Code and JetBrains

When developing new software, a key element of improving security is providing security feedback as early and seamlessly as possible. One way to do this is embed security tools directly into the development environment. Recently, Aqua’s open source scanner Trivy has added this functionality, integrating with popular developer tools Visual Studio Code and JetBrains to …]]> Shifting Left: Infrastructure as Code security with Trivy https://www.aquasec.com/blog/infrastructure-as-code-security-scanning/ Tue, 27 Jul 2021 14:42:57 +0000 https://www.aquasec.com/?p=15200

Shifting Left: Infrastructure as Code security with Trivy

One of the great security benefits of the move to cloud native development is the increased use of Infrastructure as Code (IaC) to describe computing environments. Once things are described as code, we can shift left and secure our environments before they’re deployed. As a major new feature, the latest version of Trivy, Aqua’s open …]]> Taking IaC Security to the Next Level: Why TFsec Joined Aqua https://www.aquasec.com/blog/tfsec-acquisition-by-aqua/ Mon, 12 Jul 2021 10:52:28 +0000 https://www.aquasec.com/?p=15213