Skip to main content

Tools for deployment

Recommended tools to use during deployment

snyk containerSnyk container analyzes and fixes vulnerabilities in container imagesContainer
clairSAST-tool (Static Code Analysis) for containereContainer
dockleAnalyzes Docker files and checks for best practice, as well as SAST (Static Code Analysis)Container
docker-bench-securityA tool used to uncover weaknesses and vulnerabilities on the Docker host, configuration as well as images and in runtimes. Container,Docker
snyk IaCSnyk IaC is used to analyze security in Infrastructure as Code (IaC) projectsIaC
checkovDiscover misconfigurations and vulnerabilities in IaC, container images, and dependenciesIaC,Container
terrascanA tool used to find weaknesses and vulnerabilities in Docker-configurations (Docker Engine) and containersIaC,Container