II.
Tool overview
Reference · livetool:checkov
Checkov overview
Static analysis tool for infrastructure-as-code that scans Terraform, CloudFormation, Kubernetes, Dockerfiles, and ARM templates for security misconfigurations and compliance violations. Supports hundreds of built-in policies and custom Rego or Python rules.
Attributes
displayName
Checkov
homepageUrl
kind
security
description
Static analysis tool for infrastructure-as-code that scans Terraform, CloudFormation, Kubernetes,
Dockerfiles, and ARM templates for security misconfigurations and compliance violations.
Supports hundreds of built-in policies and custom Rego or Python rules.
Outgoing edges
alternative_to3
- tool:tfsec·Tooltfsec
- tool:trivy·ToolTrivy
- tool:snyk·ToolSnyk
belongs_to_language1
- language:python·LanguagePython
tool_used_by2
- skill-area:iac-security·SkillAreaIaC Security
- skill-area:compliance-scanning·SkillAreaCompliance Scanning
used_for2
- skill-area:vulnerability-scanning·SkillAreaVulnerability Scanning
- skill-area:runtime-security·SkillAreaRuntime Security
Incoming edges
alternative_to3
- tool:snyk·ToolSnyk
- tool:trivy·ToolTrivy
- tool:tfsec·Tooltfsec
composed_of2
- stack-profile:terraform-landing-zone·StackProfileTerraform Landing Zone (Terraform, HCL, Vault, Go, OPA)
- stack-profile:container-registry-scanning·StackProfileContainer Registry & Scanning (Docker, Trivy, Kubernetes, Go, Snyk)
integrates_with1
- tool-server:mcp-checkov·ToolServerCheckov Security Scanner MCP Server
uses_tool1
- specialization:security-research·Specialization