Plugin for JetBrains IDEs provides an easy and effective way to identify security issues (misconfigurations) and adhere to best practices for Infrastructure as Code (IaC) files.
- Dockerfile Analysis: Includes 23 inspections aimed at detecting vulnerabilities and optimizing Docker images.
- Quick Fixes: Includes quick fixes for faster resolving problems
- Extended support Dockerfile
- Docker Compose: Checking
docker-compose
configuration files to ensure security and efficiency. - Kubernetes Files: Analyzing Kubernetes YAML files to comply with best practices and security standards.
- and more: Expanding support for other IaC tools and formats to comprehensively protect and optimize your infrastructure configurations.
Detailed list of features are available on GitHub issues
- Trivy-checks for providing a good starting point by porting their Dockerfile rules.