Posts tagged "security"

50 articles

October 20, 2025

Terraform Security Scanning in CI | tfsec vs Checkov for GitHub Actions

Learn how to run tfsec and Checkov in GitHub Actions to block insecure Terraform changes, interpret findings, and customize rules for your org.

terraformsecurityci-cdgithub-actionsinfrastructure-as-code
Read More
October 18, 2025

We charge for people, not machines

Infrastructure automation is about collaboration through pull requests, not CPU cycles. That's why we charge per user instead of per runner, making security best practices free instead of premium features.

pricingphilosophysecuritygitopsinfrastructure
Read More
August 20, 2025

Announcing CODEOWNERS Enforcement

Integrate with your repo's CODEOWNERS file to ensure the right teams approve infrastructure changes

terrateaminfrastructureterraformgovernancesecurity
Read More
August 1, 2025

Announcing Gatekeeper - Manual Approval Gates

Add manual approval gates for failed checks, enabling human judgment when automated validations flag issues

terrateaminfrastructureterraformsecuritycompliance
Read More
July 28, 2025

Using LLMs to Generate Terraform Code - 2025 Update

An in-depth analysis using Claude, ChatGPT, and Mistral

terraforminfrastructureiacsecurityllmgithubopen-source
Read More
July 18, 2025

Building Secure and Maintainable Terraform Modules

Learn how to structure Terraform modules for long-term maintainability, apply security best practices, and handle updates without breaking production. Covers versioning strategies, the moved block, migration patterns, and secure secret management.

terraforminfrastructure-as-codemodulessecuritydevopsbest-practices
Read More
June 11, 2025

Shifting Left: Embedding Security in Your Infrastructure as Code Pipeline

A hands-on guide to embedding security checks, secret scanning, and policy-as-code into your Terraform and GitOps workflows using tools like OPA, Conftest, and GitLeaks.

terraformgitopssecurityinfrastructureci-cdpolicysecrets
Read More
June 5, 2025

GitOps Beyond Kubernetes: Applying GitOps Principles to Infrastructure as Code

A technical guide for DevOps and platform teams looking to extend GitOps practices to Terraform-based infrastructure workflows, including CI/CD setup, policy enforcement, and tool comparisons.

terraforminfrastructuregitopssecuritykubernetespolicy
Read More
May 23, 2025

Secrets as Code, Not Secrets in Code: Terraform GitOps with Infisical

A Terraform-first guide to secure GitOps secrets management using Infisical, OIDC, and Terrateam. Learn how to manage ephemeral secrets without storing them in Git.

terraformterrateaminfrastructuregitopssecuritygithub
Read More
May 18, 2025

Managing Terraform Modules at Scale

Learn how to design, version, and automate Terraform modules for long-term maintainability. Covers module organization, lifecycle management, security patterns, and migration strategies for production infrastructure.

terraforminfrastructure-as-codemodulesdevopsautomationsecurity
Read More