FICHA · AUR
cfn-guard
Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/configurations against those rules.
- cli-tool
- CLI
- SECURITY
- Dev
- Launchable
- Runs in terminal
· official+codex · reviewed · May 30, 2026 description in en
Validates infrastructure configuration against policy-as-code rules for JSON and YAML documents. It is useful for teams checking CloudFormation templates, Kubernetes configuration, and Terraform JSON plans before deployment.
Policy checks reduce risk but do not prove a deployment is safe by themselves. Keep rules reviewed, versioned, and tested against real failure cases before using them as release gates.
How to run
cfn-guard
Commands: cfn-guard
Permissions
Permissions not analysed for this source yet.