InfraScan – Audit cloud infrastructure before production deployment

Summary: InfraScan is an open-source tool that scans GitHub repositories for AWS cost antipatterns, infrastructure-as-code security issues, and container vulnerabilities without requiring cloud credentials. It identifies oversized resources, open ports, risky IAM policies, unencrypted storage, and misconfigurations to reduce costs and security risks early in development.

What it does

InfraScan analyzes GitHub repos to detect AWS cost inefficiencies and security flaws in IaC and containers by scanning code and configurations before deployment.

Who it's for

It is designed for development teams aiming to identify infrastructure problems prior to production release.

Why it matters

InfraScan helps prevent costly and insecure cloud infrastructure setups by catching issues early in the development lifecycle.