{"library":"checkov","type":"library","category":null,"description":"Checkov is an open-source static code analysis tool that performs security and compliance scanning for Infrastructure as Code (IaC) and Software Composition Analysis (SCA). It identifies misconfigurations and vulnerabilities in various IaC frameworks (e.g., Terraform, CloudFormation, Kubernetes, Dockerfiles, Bicep, Serverless) and scans container images and open-source packages for Common Vulnerabilities and Exposures (CVEs). Actively maintained by Prisma Cloud, Checkov has a frequent release cadence, often with multiple patch versions released monthly.","language":"python","status":"active","version":"3.2.513","tags":["security","iac","static-analysis","cli","devsecops","cloud-security","terraform","kubernetes","cloudformation","docker"],"last_verified":"Tue Jun 09","install":[{"cmd":"pip install checkov","imports":["from checkov.common.models.enums import CheckResult","from checkov.common.models.enums import CheckCategories","from checkov.terraform.checks.resource.base_resource_check import BaseResourceCheck"]}],"homepage":"https://checkov.io","github":"https://github.com/bridgecrewio/checkov","docs":null,"changelog":null,"pypi":"https://pypi.org/project/checkov/","npm":null,"openapi_spec":null,"status_page":null,"smithery":null,"compatibility":{"summary":{"python_range":"3.10–3.9","success_rate":80,"avg_install_s":22.7,"avg_import_s":0.03,"wheel_type":"wheel"},"url":"https://checklist.day/v1/registry/checkov/compatibility"}}