# Infrastructure as Code (IaC)

> Infrastructure as Code scanning checks Terraform, CloudFormation, Kubernetes, and Dockerfiles for misconfigurations before deploy.

Source: https://fmcybersecurity.com/en/products/aikido/iac-scanning/
Locale: English
Other locale: https://fmcybersecurity.com/products/aikido/iac-scanning/

Infrastructure as Code (IaC) scanning reviews the files that define cloud infrastructure. It looks for misconfigurations before that infrastructure is deployed.

## What it is

Infrastructure as Code means defining servers, networks, and services in configuration files. A small mistake in those files can open a security hole once deployed. This module checks the files ahead of time so problems are caught early.

## Key capabilities

- Scans Terraform files.
- Scans CloudFormation templates.
- Scans Kubernetes manifests.
- Scans Dockerfiles.
- Flags misconfigurations before deploy.

## Who it's for

It fits teams that manage cloud infrastructure through code. It helps platform and DevOps engineers avoid risky settings. It suits any project that provisions infrastructure from configuration files.

---

For the full documentation index, see https://fmcybersecurity.com/llms.txt
For the complete corpus as a single document, see https://fmcybersecurity.com/llms-full.txt