Top pick
Static analysis for Terraform, CloudFormation, Kubernetes, Docker, and more—hundreds of built-in policy checks.
iacterraformpolicydevsecopsci
Browse & filter
Filter by platform, license text, maturity, maintenance cadence, and editorial tags like privacy-focused or self-hosted. Search matches names, summaries, tags, and use cases.
4 tools match your filters
Also strong
IaC scanner detecting security issues across Terraform, Kubernetes, Helm, Docker, and cloud APIs via OPA/Rego policies.
iacregopolicykubernetesdevsecops
General-purpose policy engine with Rego: unify authorization and config decisions across K8s, APIs, Terraform plans, and CI.
policyregokubernetesauthorizationcncf
Top pick
Kubernetes-native policy engine using YAML (no Rego) for validate, mutate, generate, and image verification rules.
kubernetespolicyadmissioncncfdevsecops