Tools
Practical
By Samson Tanimawo, PhD
Published Nov 30, 2025
4 min read
checkov for IaC Security
checkov scans IaC for security issues.
Live workflow · 3 working · 1 queuedLive
Signal · gather Working
Decide · pick action Working
Apply · with verify Working
Learn · update playbook Queued
Usage
checkov -d . scans for hundreds of security checks.
Multi-tool: TF, K8s, ARM, Cloud Formation.
CI
Run as PR gate.
Suppress false positives explicitly with comments.
Complement
checkov + tfsec for breadth.
Each has unique checks.