IaC Security Scanner Skills

Skill by ara.so — Security Skills collection.

AI-powered security assessment for Infrastructure-as-Code that provides deep, context-aware security analysis of Terraform and CloudFormation projects. Unlike traditional linters, this scanner identifies cross-domain attack chains, privilege escalation paths, and compliance gaps through multi-stage analysis orchestrated entirely by AI agents.

What It Does

The scanner runs a 3-step pipeline:

1. Analysis — Maps repository structure, resources, trust boundaries, and exposure points
2. Domain Scanning — Parallel security analysis across IAM, network, storage, secrets, logging, and serverless domains
3. Attack Chain Correlation — Identifies composite attack paths across domains and calculates minimum-cut fixes