Help Center

Security

Improvement

Announcement

spacelift

👀 In Review

➡️ Planned

⚙️ In Progress

✅ Completed

❌ Rejected

⬆️ Gathering votes

🗑️ Archived

🔭 Discovery

Access Control

Ansible

Blueprints

CloudFormation

Contexts

UI/UX

Integrations

Stacks

Workers

IaC Workflows

Spaces

Policies

Resources

Filters

Spacectl

Pulumi

Kubernetes

Dashboard

Terraform registry

Terragrunt

Stack Dependencies

Logs

Drift Detection

Spacelift Provider

Notifications

OpenTofu

Helm

OIDC

Observability

Self-hosted

👨‍💻Solutions Eng Requests

👩🏻‍💻Support Requests

Feature Requests Roadmap

Got an idea for a feature request? Let us know! Share your ideas on improving existing features or suggest something new. Vote on ideas you find useful!Make sure to read our <a target="" rel="noopener noreferrer nofollow" class="link" href="https://docs.spacelift.io/product/feature-requests">guidelines</a> before posting 📖

Feature Requests

Hey {name|there}! 👋

We’d like to see native support in Spacelift for scanning Terraform code to ensure compliance with security policies. Specifically, this would help identify misconfigurations or potentially malicious modules before they are applied. While we currently use SonarCloud, its Terraform scanning capabilities are quite limited, and a more integrated solution in Spacelift would streamline our workflows and reduce risk exposure.

Terraform Scanning to Detect Risky or Sensitive Modules

hidden

Spacelift

Terraform Scanning to Detect Risky or Sensitive Modules

Subscribe to post

Subscribe to post