terrascan
« Back to VersTracker
Description:
Detect compliance and security violations across Infrastructure as Code
Type: Formula  |  Tracked Since: Dec 28, 2025
Links: Homepage  |  @terrascan_io  |  formulae.brew.sh
Category: Security
Tags: security devops iac compliance terraform devsecops
Install: brew install terrascan
About:
Terrascan is a static code analysis tool for Infrastructure as Code (IaC). It scans Terraform, Kubernetes, and other IaC configurations to detect security vulnerabilities, compliance violations, and misconfigurations before deployment. The tool helps teams enforce security best practices and maintain compliance with industry standards.
Key Features:
  • Supports multiple IaC providers including Terraform, Kubernetes, and CloudFormation
  • Built-in compliance policies for CIS, NIST, and other security standards
  • Integration with CI/CD pipelines for automated scanning
  • Custom policy creation and management
  • Detailed remediation guidance for detected issues
Use Cases:
  • Pre-deployment security scanning in CI/CD pipelines
  • Compliance auditing for infrastructure code
  • DevSecOps workflow integration
  • Security policy enforcement across teams
Alternatives:
  • tfsec – Similar IaC scanning capabilities with different policy sets
  • checkov – Broader cloud security focus with extensive framework support
  • opa – General policy engine requiring custom policy writing
Version History
Detected Version Rev Change Commit
Sep 12, 2025 4:28am 0 VERSION_BUMP 99f0791b
Dec 5, 2024 12:02am 0 VERSION_BUMP 07d12ae0
Nov 10, 2024 3:04pm 0 VERSION_BUMP adb8e557
Sep 18, 2024 1:14pm 0 VERSION_BUMP fba6f6d1
« Back to VersTracker  |  Browse Packages  |  About