Build your own custom rules
This feature is currently in beta. We would appreciate any feedback you might have.
Initial instructions to get you started with the Snyk Infrastructure as Code (IaC) SDK:


Snyk IaC includes a comprehensive list of security rules, covering AWS, Azure, GCP & Kubernetes. These rules are based on security research, best practices and recognised standards and benchmarks. They are actively maintained by Snyk’s security engineering team and new rules are released on a regular basis.
These rules aim to meet the majority of your needs on your first scan, but you may need to enforce additional security rules for your system, such as tagging standards.

Creating additional rules

The IaC SDK helps security teams define their own rules, to be run by the Snyk CLI giving feedback to developers.
Using this SDK, you can add your own custom rules to Snyk IaC, to run alongside the standard provided rules, giving comprehensive security feedback to your development teams in one place.
Ready to get started with Snyk? Sign up for free!
Last modified 24d ago
Export as PDF
Copy link