Security News > 2020 > January > Fugue open sources Regula to evaluate Terraform for security misconfigurations and compliance violations
Fugue has open sourced Regula, a tool that evaluates Terraform infrastructure-as-code for security misconfigurations and compliance violations prior to deployment.
Regula rules are written in Rego, the open source policy language employed by the Open Policy Agent project and can be integrated into CI/CD pipelines to prevent cloud infrastructure deployments that may violate security and compliance best practices.
Regula works independently of Fugue, but can be integrated with Fugue for end-to-end cloud infrastructure security and compliance.
Both Regula and Fugue utilize the open-source Rego policy language, and developers can easily create their own rules for Regula and Fugue using a similar syntax.
In addition to Fugue Enterprise, Fugue offers Developer, a free tier available to individual engineers who need to ensure continuous security and compliance of their cloud infrastructure environments.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/sAMzmcAIFxM/
Related news
- Open source maintainers: Key to software health and security (source)
- 7 Security and Compliance Tips From ISC2 Security Congress (source)
- Osmedeus: Open-source workflow engine for offensive security (source)
- AWS security essentials for managing compliance, data protection, and threat detection (source)
- Am I Isolated: Open-source container security benchmark (source)
- CISOs in 2025: Balancing security, compliance, and accountability (source)
- ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps (source)
- Navigating the compliance labyrinth: A CSO’s guide to scaling security (source)
- Debunking myths about open-source security (source)
- AxoSyslog: Open-source scalable security data processor (source)