Checkov

A policy-as-code scanner for your infrastructure code.

Key Features

• Scans Dockerfiles and Kubernetes manifests for security and compliance issues
• Supports multiple frameworks (e.g., Docker, Kubernetes)
• Integrates with Prisma Cloud's publicly accessible guides for remediation
• Configurable through command-line flags or configuration files
• Quiet mode for automated runs without interactive output

Contribution

Contributions are welcomed! Start by reviewing the contribution guidelines. After that, take a look at a good first issue.

Disclaimer

checkov does not save, publish or share with anyone any identifiable customer information. No identifiable customer information is used to query Prisma Cloud's publicly accessible guides.

Support

Start with our Documentation for quick tutorials and examples.

Python Version Support

We follow the official support cycle of Python, and we use automated tests for supported versions of Python. This means we currently support Python 3.9 - 3.12, inclusive. Note that Python 3.8 reached EOL on October 2024 and Python 3.9 will reach EOL in October 2025. We are investigating support for 3.13. If you run into any issues with any non-EOL Python version, please open an Issue.

> Visit Checkov Website <