added

Terraform Cloud ๐ŸŸฃ

Posted by Guy Eisenkot 4 days ago

If you are using Terraform Cloud to operate and manage your cloud provisioning lifecycle, you are probably aware if the benefits of predictable deployment outcomes. One important pillar of that process is ensuring security and compliance standards are met on every resource block.

improved

Configuration modification events ๐Ÿ“œ

Posted by Guy Eisenkot 18 days ago

There are endless options to provision and configure resources in the public cloud. While cloud provider consoles and SDKs register changes in standard logging solutions like AWS CloudTrail or Google's StackDriver, it's becoming increasingly difficult to use these logs to keep track of meaningful configuration changes. IaC introduces an additional layer of complexity by storing configuration changes in git logs and state files.

improved

Resource dependencies ๐Ÿ–‡๏ธ

Posted by Guy Eisenkot 18 days ago

Fixing misconfigured cloud resources isn't just about replacing configuration variables. Before changing existing configurations, we should make sure we know how those configurations are currently being used throughout our IaC dependencies.

improved

Filters upgraded ๐ŸŽ›๏ธ

Posted by Guy Eisenkot about a month ago

It's been a long time since we upgraded the experience of our native Incidents filters.

added

IAM Insights ๐Ÿง™

Posted by Guy Eisenkot about a month ago

Developing secure IAM requires iterative and ongoing effort. That's why we're adding continuous IAM right-sizing insights to Bridgecrew's core platform. With IAM Insights, Bridgecrew continuously collects permission entitlement configurations and evaluates them against actual activity telemetry. The result is actionable, codified recommendations on how to reduce the permission of existing IAM entities including users, roles, groups, and policy docs.

added

Resource explorer ๐Ÿงญ

Posted by Guy Eisenkot about a month ago

Investigating resource errors becomes a lot simpler with Bridgecrew's new UI and metadata around resources. By including a full array of metadata entities pulled from cloud provider APIs and related configurations defined using IaC, Bridgecrew hopes to make it easier to understand risk and be able to action errors faster.

added

README Badges ๐Ÿ…

Posted by Guy Eisenkot about a month ago

Show off your cloud security efforts with Bridgecrew's README badges!

improved

Suppressions types ๐Ÿšฆ

Posted by Guy Eisenkot about a month ago

Suppressions are used in Bridgecrew to flag either falsely detected errors and/or justify accepted risk. You can suppress a specific resource or a group of resources under a specific policy. As a result, these resources are no longer in error and are moved to a trackable "suppressed" state. They continue to appear in dashboards and compliance reports.

added

Notification Center ๐Ÿ””

Posted by Guy Eisenkot about a month ago

You'll now find all of your incoming Bridgecrew notifications in one placeโ€”the Notification Center.

added

GitHub code-scanning ๐Ÿ”Ž

Posted by Guy Eisenkot about a month ago

GitHubโ€™s security capabilities combine all the tooling necessary to foster collaboration between security and engineering in a unified space and an automated workflow. With GitHub code scanning, Bridgecrew now provides native IaC security scanning for any GitHub repository.