improved

FedRamp and PCI-DSS v.3.2.1 benchmarks 🏛️

Posted by Guy Eisenkot 24 days ago

Bridgecrew policies are natively mapped to industry benchmarks that translate into operational best practices and compliance requirements.

improved

Bitbucket code reviews 🪣

Posted by Guy Eisenkot 24 days ago

In December 2020 we launched Code Reviews, a new feature dedicated to enabling developers to analyze their infrastructure-as-code changes and fix errors using Bridgecrew platform.

added

VSCODE Extension 🧩

Posted by Guy Eisenkot 29 days ago

Visual Studio Code (VSCODE) is a free source-code editor made by Microsoft. Cloud-native developers have embraced VSCODE due to its extensible nature, enabling them to enrich their code authoring experience with community powered extensions and plugins.

added

Terraform drift-detection 🌬️

Posted by Guy Eisenkot about a month ago

In Terraform, a drift is when the real-world state of your infrastructure differs from the state defined in your configuration. Terraform helps detect and manage drift when pushing new configuration changes. Terraform will alert of any drifts as part of the provisioning process. For more info, read Detecting and Managing Drift with Terraform.

added

Network access analysis🌐

Posted by Guy Eisenkot about a month ago

The new network access analysis is a graph-based module that enables identifies when resources are potentially reachable from the public internet. The analysis is performed by combining AWS security group definitions with the Bridgecrew Resource Graph.

improved

Tag-based suppressions 🏷️

Posted by Guy Eisenkot about a month ago

All cloud providers and most popular configuration services now offer inline tagging as a means of standardizing resource inventories and applying consistent management policies across all resource types.

added

30d resources by status 📈

Posted by Guy Eisenkot 2 months ago

Our users requested a better way to visualize how their resources performed in the last 30 days. They are interested to see how the addition of resources or policies affected heir overall posture.

added

Resource Inventory 🧲

Posted by Guy Eisenkot 2 months ago

Operating a large scale cloud environment makes it practically impossible to keep track on every running resource. Gaining quick visibility to the latest configuration specs on running resources requires navigating through tedious cloud console pages or worse, inventory exports into spreadsheets.

added

Code Reviews 🛃

Posted by Guy Eisenkot 2 months ago

As a cloud infrastructure team your aren't only responsible for the deployed cloud resources in your environment, you need to constantly keep an eye on the new resources provisioned by developers from other teams.

added

IaC composition analysis #️⃣

Posted by Payton O'Neal 2 months ago

To enable more comprehensive coverage while scanning for misconfigurations based on external modules, Bridgecrew now supports external module scanning as well as full variable rendering. What this means is that whenever your Terraform files will rely on modules or variables, Bridgecrew will build a full dependency graph of those modules and variables, render the correct values and evaluate them against the baseline.