Bridgecrew announces they’ve shifted their security scanning and fixing technology even further left with a new Visual Studio Code (VS Code) extension. For the first time, developers will be notified about infrastructure as code (IaC) misconfigurations and policy violations at the earliest possible moment within the DevOps lifecycle: while they are coding on their local workstation. The new VS Code extension combines hundreds of out-of-the-box policies from Bridgecrew’s open-source tool Chekov with in-line fixes enabled by the APIs.
Source: https://www.helpnetsecurity.com/2021/03/03/bridgecrew-vs-code/