Checkov Extension for Visual Studio Code
Checkov is a static code analysis tool for infrastrucutre-as-code.
The Checkov Extension for VSCODE enables developers to get real-time scan results, as well as inline fix suggestions as they develop cloud infrastructure.
The extension is currently available for download direcrtly from the Visual Studio Extension Marketplace and its source code is available in an Apache 2.0 licensed repository. Development of the extension is ongoing and it is available for pre-release usage 🚧 .
Activating the extension requires submission of one-time Bridgecrew API Token that can be obtained by creating a new Bridgecrew platform account. It uses open Bridgecrew Developer APIs to evaluate code and offer automated inline fixes. For more information about data shared with Bridgecrew see the Disclaimer section below).
Extension features include:
Open the Checkov Extension for Visual Studio Code in the Visual Studio Markeplace.
The Checkov extension will invoke the latest version of
To access checkov-vscode logs directory, open the VSCODE Command Palette
Docker file access permissions on MacOS
If you are getting failures and are running the Checkov extension via Docker, it's possible MacOS needs to give Docker permission to access the directory location of your code.
Symptoms of this issue can be found in the extension logs, you will see
Contribution is welcomed!
Looking to contribute new checks? Learn how to write a new check (AKA policy) here.
Bridgecrew builds and maintains Checkov to make policy-as-code simple and accessible.
Start with our Documentation for quick tutorials and examples.
If you need direct support you can contact us at firstname.lastname@example.org.