Scan the Infrastructure-as-Code templates from your repository using Qualys CloudView (Cloud Security Assessment)
Description
The Qualys IaC extension provides a quick yet reliable way to assess your Infrastructure-as-a-Code templates and uncover potential vulnerable situations. The Qualys IaC extension provides you an interface to interact with Qualys IaC module in a simple way.
Installation
Prerequisite
You need to fulfill the following requirements to use this extension.
Visual Studio Code version 1.64.0 or greater
Windows 10, 11 (32-bit and 64-bit)
A valid Qualys subscription with access to
CloudView (Cloud Security Assessment)
The Qualys API
Getting Started
To get started with the Qualys IaC Security Visual Studio Code extension, first make sure you've A valid Qualys subscription with access to CloudView (Cloud Security Assessment) and the Qualys API.
Search for Qualys IaC Security in the Visual Studio Code Marketplace and install it to your workspace.
Reload your workspace if instructed.
Open Visual Studio Code to your desired terraform project.
Open the command palette with Ctrl + Shift + P, and type Qualys to see all available Qualys commands.
Select Qualys IaC configuration to bring up the settings page.
Fill in Qualys Platform URL, Username, Password, Scan Name and tags.
In case of scan output should contain failed results only then check failed results only checkbox.
Open the context menu by clicking right click on terraform file, and select Qualys IaC Scan to run an assessment on your infrastructure as code.
Running A Scan
To run a simple static scan, choose the Qualys IaC Scan option from context menu or use shortcut key(Ctrl + Shift + Q).
Available Commands
The following commands are available from the command palette.
Qualys IaC Scan
Performs a scan on terraform file opened on visual studio code editor
Qualys IaC configuration
Adjust Qualys IaC configuration for a particular project
Release Notes
v0.0.7 - First version of the Qualys IaC Security.
