iac-security-scanner

Community

Automate infrastructure security scanning for Terraform, Kubernetes, CloudFormation, ARM templates, and Dockerfiles.

Authorethanolivertroy
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill automates the scanning of infrastructure code for security misconfigurations, helping users identify potential risks before deployment.

Core Features & Use Cases

  • Infrastructure Code Scanning: Scan Terraform, Kubernetes, CloudFormation, ARM templates, and Dockerfiles for security misconfigurations.
  • Compliance Mapping: Map security issues to NIST 800-53 controls for compliance posture.
  • Quick Audit: Run a quick scan of staged files to fail on HIGH severity issues.
  • Compliance Audit: Scan with NIST control mapping, grouping findings by control family.
  • Use Case: Before deploying infrastructure to AWS, Azure, GCP, or Kubernetes, use this Skill to scan the code and ensure it meets security best practices.

Quick Start

Use the iac-security-scanner skill to scan your Terraform code for security misconfigurations.

Dependency Matrix

Required Modules

python-hcl2

Components

scriptsreferences

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: iac-security-scanner
Download link: https://github.com/ethanolivertroy/my-agent-stuff/archive/main.zip#iac-security-scanner

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.