Cloudrail Visual Studio Code Extension
Cloudrail is an infrastructure as code scanning tool that scans your terraform code for security vulnerabilities and best practices.
To get started with the Cloudrail Visual Studio Code extension, first make sure you've set up your Cloudrail account. It's a quick and free process, with instructions found here on how to do it.
Once your account has been setup, follow these instructions:
Running A Scan
To run a simple static scan, choose the
Using A Custom Policy
To apply custom rules with a custom policy, add the policy ID to the Cloudrail Settings tab.
The following commands are available from the command palette.
Determining Scan Directory
The Cloudrail extension will attempt to determine the correct directory to scan based on the current file open in your editor. If you have
Cloudrail in a Nutshell
Discover, Detect, and Control
Your cloud infrastructure is built, managed, and deployed using automation. Your security framework should discover potentially new infrastructure, detect security issues, and allow you to control what gets deployed.
Your policy requirements should not be stuck in spreadsheets. Empower your team with continuous security attestation.
Cloud Security the DevOps Way
Fixing cloud security after deployment is time consuming and requires a lot of effort. Detect cloud security issues early in the development process. Treat security violations as simple code fixes.
Have feedback? Send us an email at email@example.com