This repository contains the slide deck, demos, and resources for the "Securely Deploying Terraform" talk by Chris Ayers, Senior Customer Engineer at Microsoft. The talk provides an in-depth look at security tooling, best practices, and how to implement them when using Terraform with Azure.
You can access the slides for the talk at the following link:
The repository includes a variety of demos and resources to demonstrate the use of security tooling with Terraform in different scenarios. These demos and resources can help you understand how to implement security best practices effectively and take advantage of the available tools.
For a more detailed understanding of the topics covered in this talk and the related demos, you can read the following blog posts:
- Secure Terraform Part 1: Introduction to tfsec
- Secure Terraform Part 2: tfsec Customization
- Secure Terraform Part 3: Introduction to Terrascan
- Secure Terraform Part 4: Introduction to Checkov
- Secure Terraform Part 5: Terraform State
For more information on Terraform, security tooling, and Infrastructure as Code (IaC), you can refer to the following resources:
Feel free to connect with Chris Ayers on social media and visit his blog for more information on Terraform, security, and other topics:
- Twitter: @Chris_L_Ayers
- Mastodon: @[email protected]
- LinkedIn: chris-l-ayers
- Blog: https://chris-ayers.com/
- GitHub: Codebytes
This project is licensed under the MIT License. See the LICENSE file for more information.