Skip to content
@bridgecrewio

PANW AppSec

Secure cloud native applications and infrastructure

Pinned Loading

  1. checkov Public

    Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

    Python 7.5k 1.2k

  2. yor Public

    Extensible auto-tagger for your IaC files. The ultimate way to link entities in the cloud back to the codified resource which created it.

    Go 867 123

  3. terragoat Public

    TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into product…

    HCL 1.2k 5.4k

  4. AirIAM Public

    Least privilege AWS IAM Terraformer

    Python 786 79

  5. bridgecrew-action Public

    This GitHub Action runs Bridgecrew against infrastructure-as-code, open source packages, container images, and CI/CD configurations to identify misconfigurations, vulnerabilities, and license compl…

    74 29

  6. bridgecrew-orb Public

    This CircleCI Orb Action runs Bridgecrew analysis of Infrastructure-as-Code repository. Bridgecrerw performs static security analysis of Terraform, CloudFormation and Kubernetes Infrastructure code…

    11 4

Repositories

Showing 10 of 99 repositories
  • checkov Public

    Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

    Python 7,460 Apache-2.0 1,177 103 (1 issue needs help) 61 Updated Mar 31, 2025
  • yor Public

    Extensible auto-tagger for your IaC files. The ultimate way to link entities in the cloud back to the codified resource which created it.

    Go 867 Apache-2.0 123 1 7 Updated Mar 31, 2025
  • whorf Public
    Python 11 2 3 3 Updated Mar 31, 2025
  • bridgecrew-py Public
    Shell 1 0 1 5 Updated Mar 31, 2025
  • checkov-action Public

    This GitHub Action runs Checkov against infrastructure-as-code, open source packages, container images, and CI/CD configurations to identify misconfigurations, vulnerabilities, and license compliance issues.

    HCL 263 Apache-2.0 106 32 (1 issue needs help) 2 Updated Mar 31, 2025
  • detect-secrets Public Forked from Yelp/detect-secrets

    An enterprise friendly way of detecting and preventing secrets in code.

    Python 5 Apache-2.0 507 1 11 Updated Mar 31, 2025
  • terragoat Public

    TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.

    HCL 1,189 Apache-2.0 5,379 3 44 Updated Mar 27, 2025
  • AirIAM Public

    Least privilege AWS IAM Terraformer

    Python 786 Apache-2.0 79 11 (2 issues need help) 23 Updated Mar 18, 2025
  • bridgecrew-action Public

    This GitHub Action runs Bridgecrew against infrastructure-as-code, open source packages, container images, and CI/CD configurations to identify misconfigurations, vulnerabilities, and license compliance issues.

    74 MIT 29 5 0 Updated Mar 18, 2025
  • redshirts Public
    TypeScript 21 MIT 7 6 7 Updated Mar 17, 2025
View all repositories

People

This organization has no public members. You must be a member to see who’s a part of this organization.

Developer Program Member