Links

Scan infrastructure

Feature availability Snyk IaC+ is a new version of Snyk IaC that secures cloud configurations across the entire SDLC, from code to deployed cloud environments. IaC+ is currently in closed beta. Reach out to your account team if you would like access.
With Snyk, you can secure cloud infrastructure configurations before and after deployment. Snyk Infrastructure as Code (IaC) enables you to develop secure cloud infrastructure, and Snyk IaC+ helps you keep your cloud environment secure. Snyk supports the following actions:
  • Snyk IaC helps developers write secure configurations for HashiCorp Terraform, AWS CloudFormation, Kubernetes, and Azure Resource Manager (ARM).
  • IaC+ is a new version of Snyk IaC that has cloud context to secure cloud configurations across the entire SDLC, from code to deployed AWS, Azure, and Google Cloud environments. IaC+ has the Snyk cloud context interfaces, workflows, policy engine, and data model.
  • ​Fix Cloud issues directly in the IaC source code that was used to deploy the misconfigured cloud resources by linking a cloud issue to the underlying IaC template with an SCM source code link.
  • Receive fix advice so you can make changes directly to code, before applications reach production.
  • Suppress false positives in IaC tests by applying context from deployed infrastructure.
  • ​Detect drift and manually created resources in your cloud.
  • Inspect the configuration of every cloud resource at a given moment in time and see the attributes that caused an issue.
  • ​Filter issues to target the most mission-critical resources.
  • Review a report of issues for an entire Organization, organized by compliance standard.
For a list of supported IaC environments and cloud providers. See Supported IaC and cloud providers.