Integrating Infrastructure as Code Scanning in CI/CD
TABLE OF CONTENTS
Introduction
Aqua IaC scanning is designed for easy integration with existing CI/CD deployment processes through the use of a simple REST API. We recommend integrating IaC scanning into your deployment pipelines to help catch infrastructure vulnerabilities prior to their deployment into live environments.
Obtaining API Access
Using the IaC scanning API requires an Aqua API key and secret. You can generate these from the API Keys page.
We strongly recommend limiting this API key's access to just IaC code scanning endpoints by using API key permissions. Read more about Controlling API Key Permissions.
Sample Code
Because the Aqua API is RESTful, you can easily integrate with any programming language. Aqua has several sample code scripts you can use.
Did you find it helpful? Yes No
Send feedbackSorry we couldn't be helpful. Help us improve this article with your feedback.