FICHA · AUR

cfn-guard

Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/configurations against those rules.

  • cli-tool
  • CLI
  • SECURITY
  • Dev
  • Launchable
  • Runs in terminal
official+codex · reviewed · May 30, 2026 description in en

Description

Validates infrastructure configuration against policy-as-code rules for JSON and YAML documents. It is useful for teams checking CloudFormation templates, Kubernetes configuration, and Terraform JSON plans before deployment.

Policy checks reduce risk but do not prove a deployment is safe by themselves. Keep rules reviewed, versioned, and tested against real failure cases before using them as release gates.

How to run

cfn-guard

Commands: cfn-guard

Permissions

Permissions not analysed for this source yet.