Source: medium.com
Security Smells in IaC ScriptsCategory: Security, Infrastructure, android, automation, ansible, puppet
Security smells are recurring coding patterns that are indicative of security weaknesses that can potentially lead to security breaches and hence require further inspection. Several definitions for DevOps exist, but one point is paramount,it is a core enabler of throughput and high production speed with automation.
Since IaC scripts are commonly used by organizations to provision on-premises and cloud-based infrastructure, it is imperative to investigate the availability of security smells. Research has been conducted to assess the presence of security smells in various configuration management scripts.
These conclusive works led to the development of two static analysis tools; Security Linter for IaC scripts (SLIC) and Security Linter for Ansible and Chef Scripts (SLAC) to aid in the detection of security smells in IaC scripts.
Since IaC scripts are commonly used by organizations to provision on-premises and cloud-based infrastructure, it is imperative to investigate the availability of security smells. Research has been conducted to assess the presence of security smells in various configuration management scripts.
These conclusive works led to the development of two static analysis tools; Security Linter for IaC scripts (SLIC) and Security Linter for Ansible and Chef Scripts (SLAC) to aid in the detection of security smells in IaC scripts.
Related Articles
Community Partners
DevOps Careers