Agentic AI Atlas

II.

LibraryProcess overview

lib-process:security-compliance--iac-security-review

Reference · live

iac-security-review overview

Infrastructure as Code Security Review - Comprehensive security analysis of IaC configurations including Terraform/CloudFormation scanning, policy as code validation (OPA, Sentinel), misconfiguration detection, compliance checks, secrets detection, and automated remediation recommendations for secure infrastructure deployment.

LibraryProcessOutgoing · 6Incoming · 0

Attributes

displayName

iac-security-review

description

libraryPath

library/specializations/security-compliance/iac-security-review.js

specialization

security-compliance

references

- OWASP IaC Security: https://owasp.org/www-project-infrastructure-as-code-security/ - CIS Benchmarks: https://www.cisecurity.org/cis-benchmarks/ - NIST Cybersecurity Framework: https://www.nist.gov/cyberframework - Terraform Security Best Practices: https://www.terraform.io/docs/cloud/guides/recommended-practices/ - AWS Security Best Practices: https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html - Open Policy Agent: https://www.openpolicyagent.org/ - Checkov: https://www.checkov.io/

example

const result = await orchestrate('specializations/security-compliance/iac-security-review', { projectName: 'Production Infrastructure', iacTool: 'terraform', iacPath: './infrastructure', cloudProvider: 'aws', complianceStandards: ['CIS', 'PCI-DSS', 'SOC2', 'HIPAA'], policyFramework: 'opa', scanDepth: 'comprehensive', autoRemediation: true, outputDir: 'security-review-output' });

usesAgents

iac-inventory-agent
network-security-scanner
iam-security-scanner
sensitive-data-scanner
policy-validator
compliance-assessor
encryption-reviewer
data-protection-reviewer
runtime-security-reviewer
remediation-planner
auto-remediator
security-report-generator

usesSkills

iac-security-scanner
secret-detection-scanner

Outgoing edges

lib_applies_to_domain1

domain:security·DomainSecurity

lib_belongs_to_specialization1

specialization:security-compliance·Specialization

lib_implements_workflow1

workflow:vulnerability-management·Workflow

lib_involves_role1

role:security-engineer·RoleSecurity Engineer

uses_skill2

lib-skill:security-compliance--iac-security-scanner·LibrarySkilliac-security-scanner
lib-skill:security-compliance--secret-detection-scanner·LibrarySkillsecret-detection-scanner

Incoming edges

None.

iac-security-review overview

LibraryProcessOutgoing · 6Incoming · 0

Attributes

displayName

iac-security-review

description

libraryPath

library/specializations/security-compliance/iac-security-review.js

specialization

security-compliance

references

- OWASP IaC Security: https://owasp.org/www-project-infrastructure-as-code-security/ - CIS Benchmarks: https://www.cisecurity.org/cis-benchmarks/ - NIST Cybersecurity Framework: https://www.nist.gov/cyberframework - Terraform Security Best Practices: https://www.terraform.io/docs/cloud/guides/recommended-practices/ - AWS Security Best Practices: https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html - Open Policy Agent: https://www.openpolicyagent.org/ - Checkov: https://www.checkov.io/

example

usesAgents

iac-inventory-agent
network-security-scanner
iam-security-scanner
sensitive-data-scanner
policy-validator
compliance-assessor
encryption-reviewer
data-protection-reviewer
runtime-security-reviewer
remediation-planner
auto-remediator
security-report-generator

usesSkills

iac-security-scanner
secret-detection-scanner

Outgoing edges

lib_applies_to_domain1

domain:security·DomainSecurity

lib_belongs_to_specialization1

specialization:security-compliance·Specialization

lib_implements_workflow1

workflow:vulnerability-management·Workflow

lib_involves_role1

role:security-engineer·RoleSecurity Engineer

uses_skill2

lib-skill:security-compliance--iac-security-scanner·LibrarySkilliac-security-scanner
lib-skill:security-compliance--secret-detection-scanner·LibrarySkillsecret-detection-scanner

Incoming edges

None.