Related Searches

Categories

Types

License

Pricing

Latest from our Blog

Welcoming Bearer as Our Sponsor: Simple Ruby and JavaScript App Security

Thu Apr 06 2023

As a developer, I have faced my fair share of security mishaps. I recall times when I accidentally exposed sensitive data in logs or sent a network request over a non-encrypted HTTP channel when HTTPS was available. I'm sure many of you can relate to these situations. We may not be security experts, but that doesn't mean we shouldn't take measures to protect our applications. This is where Bearer, a new security tool for Ruby and JavaScript apps (Java coming soon), comes into play.

Read more
Show all

You Can Contribute!

You can help to improve this list by voting for your favorite tools or adding new ones

Suggest a tool

Stay Informed

Sign up to our newsletter and always stay up to date with the latest tools and trends in development

The Best Terraform Static Analysis Tools (Linters/Formatters)

We rank 5 Terraform linters, code analyzers, formatters, and more. Find and compare tools like Mega-Linter, Semgrep, trunk, and more. Please rate and review tools that you've used. This helps others find the best tools for their projects.

1 Terraform Tools

shisho

A lightweight static code analyzer designed for developers and security teams. It allows you to analyze and transform source code with an intuitive DSL similar to sed, but for code.

  • MaintainedMaintained
  • MaintainedGo
  • MaintainedcliMaintainedservice
  • Maintainedlinter
  • 75% upvoted

4 Multi-Language Tools

Mega-Linter

Mega-Linter can handle any type of project thanks to its 70+ embedded Linters, its advanced reporting, runnable on any CI system or locally, with assisted installation and configuration, able to apply formatting and fixes

  • MaintainedMaintained
  • MaintainedMulti-Language
  • Maintainedcli
  • Maintainedlinter
  • 68% upvoted

Semgrep

Sponsor

A fast, open-source, static analysis tool for finding bugs and enforcing code standards at editor, commit, and CI time. Its rules look like the code you already write; no abstract syntax trees or regex wrestling. Supports 17+ languages.

  • MaintainedMaintained
  • MaintainedMulti-Language
  • MaintainedcliMaintainedservice
  • Maintainedlinter
  • 80% upvoted

trunk

Modern repositories include many technologies, each with its own set of linters. With 30+ linters and counting, Trunk makes it dead-simple to identify, install, configure, and run the right linters, static analyzers, and formatters for all your repos.

  • MaintainedMaintained
  • MaintainedMulti-Language
  • Maintainedcli
  • MaintainedlinterMaintainedformatter
  • 82% upvoted

kics

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations in your infrastructure-as-code. Supports Terraform, Kubernetes, Docker, AWS CloudFormation and Ansible

  • MaintainedMaintained
  • MaintainedMulti-Language
  • Maintainedcli
  • Maintainedlinter
  • 100% upvoted

Help make this list better
Suggest Tools

Frequently Asked Questions

What are Terraform tools?

What are the best Terraform static analysis tools and linters?

The most popular Terraform tools ranked by user votes are: Mega-Linter, Semgrep, trunk, kics, shisho.

Which Terraform tools are free to use?

Tools with a free plan include trunk. On top of that, there are also a number of open source like Mega-Linter, Semgrep, trunk, kics, shisho.

Related Tags

container

Container

cloudformation

Cloudformation

dockerfile

Dockerfile

kubernetes

Kubernetes

template

Template

wasm

Wasm

Our Sponsors

This website is completely open source. To fund our work, we fully rely on sponsors. Thanks to them, we can keep the site free for everybody. Please check out their offers below.

  • DeepCode
  • Bearer
  • CodeScene
  • semgrep
  • Codiga
  • Offensive 360