Checkov is a static code analysis tool for infrastructure-as-code.

It scans cloud infrastructure provisioned using Terraform,
Cloudformation, Kubernetes, Serverless or ARM (Azure Resource
Manager) Templates and detects security and compliance misconfigurations.
