Using Terrascan for Static Code Analysis of Your Infrastructure Code (part 2)

You followed my advice and you configured terrascan as a pre-commit hook to scan your terraform code on your desktop before being committed into your repository. Unfortunately, not all of your co-workers have it installed and security issues have been committed to the repo. Luckily, terrascan can be used in your CI/CD pipeline to test your code before security weaknesses are merged into your main branch. Here's how.