Terraform - IaC Supported Resources

InsightCloudSec IaC Security for Terraform

IaC Security supports Terraform and resources from AWS, Azure, and GCP. Review the lists below for specifications for each Cloud Service Provider.

📘

Terraform Cloud and Enterprise Support

As of version 22.9.28, InsightCloudSec supports Terraform Cloud/Enterprise via run tasks. See Integrate with Terraform Cloud/Enterprise (TFC/E) for more information.

Amazon Web Services (AWS) Supported Resources

AMI (Private)
API Gateway
API Gateway Domain
API Gateway Key
API Gateway Policy
API Gateway Stage
AppSync API
Athena Workgroup
Autoscaling Group
- Launch Configurations
Backup Vault
CloudFront
CloudTrail
CodeBuild Project
Container Registry (ECR)
DataSync Task
DMS Replication Instance
DynamoDB
EBS Volume
EC2 Instance
EFS/FSx
EKS/ECS/Fargate Cluster
ElastiCache
Elasticsearch
Elastic Block Store (EBS) Snapshot
Elastic IP
Elastic Network Interface (ENI)
Flow Log (VPC)
Glacier
Glue Data Catalog
IAM Group
IAM Policy (Customer Managed)
IAM Role
IAM User
IAM/ACM SSL Certificate
Kinesis
Kinesis Data Firehose
KMS
Lambda
Load Balancer (ELB/ALB/NLB/Gateway)
MQ
MSK Instance
NACL/Security Group
NACL/Security Group Rules
NAT Gateway (VPC)
RDS Aurora, Neptune, DocumentDB
RDS Database, Neptune, DocumentDB
Redshift
Route53 DNS Zone
S3 Bucket
Sagemaker Notebook
Secret
SFTP Server
Simple Queue Service (SQS)
SNS Subscription
SNS Topic
Systems Manager (SSM) Parameter Store (Parameter)
VPC
VPC Peer
VPC Subnet
Workspace Instances

Microsoft Azure Supported Resources

Scanning Terraform plans containing supported Azure resources that were generated with a AzureRM provider version prior to v3.x.x may produce unexpected results. We recommend using the latest 3.x version of the AzureRM provider.

Azure Cosmos DB
Azure Firewall Rule
Blob Storage Container
Container Registry
Data Factory
Dedicated Host
Diagnostic Settings
Disk
Front Door
Key Vault
Kubernetes Service
Log Analytics Workspace
Network Interface
Network Security Group
Network Security Group (NSG) Flow Logs
Public IP Address
Redis Cache
Resource Group
Search Service
Security Rules
SQL Server, Azure Database for PostgreSQL/MySQL/MariaDB
Storage Account
Subnet
Virtual Machine
Virtual Network

Google Cloud Platform (GCP) Supported Resources

Scanning Terraform plans containing supported Google resources that were generated with a Google provider version prior to v4.x.x may produce unexpected results. We recommend using the latest 4.x version of the Google provider.

Bigtable Instance
Cloud Bigquery Dataset
Cloud DNS (Zone)
Cloud Functions
Cloud Key Management Service (Key, Key ring)
Cloud Memorystore
Cloud ML Notebook Instances
Cloud NAT
Cloud SQL
Cloud Storage
Compute Address
Compute Private Image
Compute Snapshot
Credentials (API Keys)
Dataflow Job
Filestore Instance
GKE
IAM (Service Account, Service Account Key) 
Instance
Network Firewall
Network Peer
Persistent Disk
Pub/Sub Subscription
Pub/Sub Topic
Role Permission Set
Subnet
VPC