Latest Documentation

This is the latest documentation for the Cloud Posse Reference Architecture. To determine which version you're currently using, please see Version Identification.

Version: v1

Decide on Infrastructure & Software Static Analysis Tools

Infrastructure Considerations: (terraform, docker)

checkov (open source alternative by bridgecrew; works with github actions)
bridgecrew (managed service - acquired by Paloalto Networks)
tflint
tfsec
conftest

Software Static Analysis

Sonatype
Sonarqube
Snyk
WhiteSource
JFrog

Infrastructure Considerations: (terraform, docker)
Software Static Analysis

Infrastructure Considerations: (terraform, docker)​

Software Static Analysis​

Infrastructure Considerations: (terraform, docker)

Software Static Analysis