Version 1 Documentation

This is Version 1 documentation for the Cloud Posse Reference Architecture. To determine which version you're using, please see Version Identification. To understand why this version changed, please see the blog post.

Version: v1

Decide on Infrastructure & Software Static Analysis Tools

Infrastructure Considerations: (terraform, docker)

checkov (open source alternative by bridgecrew; works with github actions)
bridgecrew (managed service - acquired by Paloalto Networks)
tflint
tfsec
conftest

Software Static Analysis

Sonatype
Sonarqube
Snyk
WhiteSource
JFrog

Infrastructure Considerations: (terraform, docker)
Software Static Analysis

Infrastructure Considerations: (terraform, docker)​

Software Static Analysis​

Infrastructure Considerations: (terraform, docker)

Software Static Analysis