{"id":106897,"date":"2025-04-30T10:17:22","date_gmt":"2025-04-30T05:47:22","guid":{"rendered":"https:\/\/nabfollower.com\/blog\/detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko\/"},"modified":"2025-04-30T10:17:22","modified_gmt":"2025-04-30T05:47:22","slug":"detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko","status":"publish","type":"post","link":"https:\/\/nabfollower.com\/blog\/detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko\/","title":{"rendered":"\u062a\u0634\u062e\u06cc\u0635 \u0646\u0627\u062f\u0631\u0633\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u0647\u0627 \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 Coguard: Sast for Terraform \u0648 IAC"},"content":{"rendered":"<div data-article-id=\"2447796\" id=\"article-body\">\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter-rtl ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">\u0641\u0647\u0631\u0633\u062a \u0645\u0637\u0627\u0644\u0628<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/nabfollower.com\/blog\/detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko\/#%D9%85%D9%82%D8%AF%D9%85%D9%87\" >\u0645\u0642\u062f\u0645\u0647<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/nabfollower.com\/blog\/detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko\/#Coguard_%DA%86%DB%8C%D8%B3%D8%AA%D8%9F\" >Coguard \u0686\u06cc\u0633\u062a\u061f<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/nabfollower.com\/blog\/detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko\/#%D9%88%DB%8C%DA%98%DA%AF%DB%8C_%D9%87%D8%A7%DB%8C_%DA%A9%D9%84%DB%8C%D8%AF%DB%8C\" >\u0648\u06cc\u0698\u06af\u06cc \u0647\u0627\u06cc \u06a9\u0644\u06cc\u062f\u06cc<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/nabfollower.com\/blog\/detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko\/#%D9%86%D8%B5%D8%A8_%D9%88_%D8%A7%D8%B3%DA%A9%D9%86_%D8%A7%D9%88%D9%84\" >\u0646\u0635\u0628 \u0648 \u0627\u0633\u06a9\u0646 \u0627\u0648\u0644<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/nabfollower.com\/blog\/detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko\/#%D9%85%D8%B1%D8%AD%D9%84%D9%87_1_%D8%AA%D8%B5%D9%88%DB%8C%D8%B1_Docker_%D8%B1%D8%A7_%D8%A8%DA%A9%D8%B4%DB%8C%D8%AF\" >\u0645\u0631\u062d\u0644\u0647 1: \u062a\u0635\u0648\u06cc\u0631 Docker \u0631\u0627 \u0628\u06a9\u0634\u06cc\u062f<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/nabfollower.com\/blog\/detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko\/#%D9%85%D8%B1%D8%AD%D9%84%D9%87_2_%D8%A7%D8%B3%DA%A9%D9%86_%D8%B1%D8%A7_%D8%AF%D8%B1_%D9%BE%D8%B1%D9%88%DA%98%D9%87_Terraform_%D8%AE%D9%88%D8%AF_%D8%A7%D8%AC%D8%B1%D8%A7_%DA%A9%D9%86%DB%8C%D8%AF\" >\u0645\u0631\u062d\u0644\u0647 2: \u0627\u0633\u06a9\u0646 \u0631\u0627 \u062f\u0631 \u067e\u0631\u0648\u0698\u0647 Terraform \u062e\u0648\u062f \u0627\u062c\u0631\u0627 \u06a9\u0646\u06cc\u062f<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/nabfollower.com\/blog\/detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko\/#%D9%85%D8%AB%D8%A7%D9%84_%DA%A9%D8%AF_Terraform_%D8%A2%D8%B3%DB%8C%D8%A8_%D9%BE%D8%B0%DB%8C%D8%B1\" >\u0645\u062b\u0627\u0644: \u06a9\u062f Terraform \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/nabfollower.com\/blog\/detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko\/#%D8%A2%D9%86%DA%86%D9%87_Coguard_%D8%AA%D8%B4%D8%AE%DB%8C%D8%B5_%D9%85%DB%8C_%D8%AF%D9%87%D8%AF\" >\u0622\u0646\u0686\u0647 Coguard \u062a\u0634\u062e\u06cc\u0635 \u0645\u06cc \u062f\u0647\u062f:<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/nabfollower.com\/blog\/detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko\/#%D8%A7%D8%AF%D8%BA%D8%A7%D9%85_CICD\" >\u0627\u062f\u063a\u0627\u0645 CI\/CD<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/nabfollower.com\/blog\/detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko\/#%D8%B5%D8%A7%D8%AF%D8%B1_%DA%A9%D8%B1%D8%AF%D9%86_%DA%AF%D8%B2%D8%A7%D8%B1%D8%B4_%D9%87%D8%A7%DB%8C_Sarif\" >\u0635\u0627\u062f\u0631 \u06a9\u0631\u062f\u0646 \u06af\u0632\u0627\u0631\u0634 \u0647\u0627\u06cc Sarif<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/nabfollower.com\/blog\/detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko\/#%D9%86%D8%AA%D8%A7%DB%8C%D8%AC_%D9%88_%D8%AA%D9%81%D8%B3%DB%8C%D8%B1\" >\u0646\u062a\u0627\u06cc\u062c \u0648 \u062a\u0641\u0633\u06cc\u0631<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/nabfollower.com\/blog\/detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko\/#%D9%86%D8%AA%DB%8C%D8%AC%D9%87_%DA%AF%DB%8C%D8%B1%DB%8C\" >\u0646\u062a\u06cc\u062c\u0647 \u06af\u06cc\u0631\u06cc<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-13\" href=\"https:\/\/nabfollower.com\/blog\/detecting-infrastructure-misconfigurations-using-coguard-sast-for-terraform-and-iac-48ko\/#%D9%85%D9%86%D8%A7%D8%A8%D8%B9\" >\u0645\u0646\u0627\u0628\u0639<\/a><\/li><\/ul><\/nav><\/div>\n<h2><span class=\"ez-toc-section\" id=\"%D9%85%D9%82%D8%AF%D9%85%D9%87\"><\/span>\n<p>  \u0645\u0642\u062f\u0645\u0647<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>\u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u0647\u0627 \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u06a9\u062f (IAC) \u06cc\u06a9 \u0631\u0648\u06cc\u06a9\u0631\u062f \u0645\u062f\u0631\u0646 \u0628\u0631\u0627\u06cc \u062a\u0647\u06cc\u0647 \u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u0647\u0627\u06cc \u0627\u0628\u0631\u06cc \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0628\u0632\u0627\u0631\u06cc \u0645\u0627\u0646\u0646\u062f Terraform \u060c Pulumi \u06cc\u0627 Opentofu \u0627\u0633\u062a. \u0627\u06cc\u0646 \u0641\u0646 \u0622\u0648\u0631\u06cc \u0647\u0627 \u0645\u0642\u06cc\u0627\u0633 \u067e\u0630\u06cc\u0631\u06cc \u060c \u062a\u06a9\u0631\u0627\u0631\u067e\u0630\u06cc\u0631\u06cc \u0648 \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0631\u0627 \u0628\u0647\u0628\u0648\u062f \u0645\u06cc \u0628\u062e\u0634\u0646\u062f &#8211; \u0627\u0645\u0627 \u062f\u0631 \u0635\u0648\u0631\u062a \u0639\u062f\u0645 \u062a\u0646\u0638\u06cc\u0645 \u06a9\u062f \u0645\u06cc \u062a\u0648\u0627\u0646\u0646\u062f \u062e\u0637\u0631\u0627\u062a \u0627\u0645\u0646\u06cc\u062a\u06cc \u0631\u0627 \u0646\u06cc\u0632 \u0645\u0639\u0631\u0641\u06cc \u06a9\u0646\u0646\u062f. \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644 \u060c \u0642\u0631\u0627\u0631 \u062f\u0627\u062f\u0646 \u06cc\u06a9 \u0633\u0637\u0644 S3 \u062f\u0631 \u0645\u0639\u0631\u0636 \u062f\u06cc\u062f \u0639\u0645\u0648\u0645 \u06cc\u0627 \u063a\u06cc\u0631\u0641\u0639\u0627\u0644 \u06a9\u0631\u062f\u0646 \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0645\u0646\u062c\u0631 \u0628\u0647 \u0646\u0642\u0636 \u062c\u062f\u06cc \u062f\u0627\u062f\u0647 \u0634\u0648\u062f.<\/p>\n<p>\u062f\u0631 \u0627\u06cc\u0646 \u0645\u0642\u0627\u0644\u0647 \u0645\u0639\u0631\u0641\u06cc \u0634\u062f\u0647 \u0627\u0633\u062a <strong>\u0642\u0635\u0628\u0647<\/strong>\u060c \u06cc\u06a9 \u0627\u0628\u0632\u0627\u0631 \u062a\u0633\u062a \u0627\u0645\u0646\u06cc\u062a\u06cc \u06a9\u0627\u0631\u0628\u0631\u062f\u06cc \u0627\u0633\u062a\u0627\u062a\u06cc\u06a9 (SAST) \u06a9\u0647 \u0628\u0647 \u0637\u0648\u0631 \u062e\u0627\u0635 \u0628\u0631\u0627\u06cc \u062a\u062c\u0632\u06cc\u0647 \u0648 \u062a\u062d\u0644\u06cc\u0644 \u067e\u0631\u0648\u0646\u062f\u0647 \u0647\u0627\u06cc \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u0645\u0648\u0631\u062f \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u062f\u0631 \u06a9\u062f \u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u0637\u0631\u0627\u062d\u06cc \u0634\u062f\u0647 \u0627\u0633\u062a. \u0645\u0627 \u0646\u062d\u0648\u0647 \u0627\u0633\u06a9\u0646 \u06a9\u062f Terraform \u060c \u062a\u0641\u0633\u06cc\u0631 \u0646\u062a\u0627\u06cc\u062c \u0648 \u062e\u0648\u062f\u06a9\u0627\u0631 \u0633\u0627\u0632\u06cc \u0641\u0631\u0622\u06cc\u0646\u062f \u0627\u0633\u06a9\u0646 \u0631\u0627 \u062f\u0631 \u06cc\u06a9 \u06af\u0631\u062f\u0634 \u06a9\u0627\u0631 CI\/CD \u0646\u0634\u0627\u0646 \u0645\u06cc \u062f\u0647\u06cc\u0645.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Coguard_%DA%86%DB%8C%D8%B3%D8%AA%D8%9F\"><\/span>\n<p>  Coguard \u0686\u06cc\u0633\u062a\u061f<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><strong>\u0642\u0635\u0628\u0647<\/strong> \u06cc\u06a9 \u0627\u0628\u0632\u0627\u0631 \u062a\u062c\u0632\u06cc\u0647 \u0648 \u062a\u062d\u0644\u06cc\u0644 \u0627\u0633\u062a\u0627\u062a\u06cc\u06a9 \u062e\u0637 \u0641\u0631\u0645\u0627\u0646 \u0628\u0631\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u0627\u0633\u062a. \u0627\u06cc\u0646 \u067e\u06cc\u0634 \u0641\u0631\u0636 \u0647\u0627 \u0648 \u063a\u0644\u0637 \u0647\u0627\u06cc \u0646\u0627\u062f\u0631\u0633\u062a \u0631\u0627 \u0642\u0628\u0644 \u0627\u0632 \u0627\u0633\u062a\u0642\u0631\u0627\u0631 \u062a\u0634\u062e\u06cc\u0635 \u0645\u06cc \u062f\u0647\u062f \u0648 \u06cc\u0627\u0641\u062a\u0647 \u0647\u0627\u06cc \u062e\u0648\u062f \u0631\u0627 \u0628\u0627 \u0686\u0627\u0631\u0686\u0648\u0628 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u0627\u0646\u0646\u062f: \u062a\u0631\u0627\u0632 \u0645\u06cc \u06a9\u0646\u062f:<\/p>\n<ul>\n<li>\u0645\u0639\u06cc\u0627\u0631\u0647\u0627\u06cc CIS\n<\/li>\n<li>OWASP Cloud-Native 10 \u0628\u0631\u062a\u0631\n<\/li>\n<li>\u0633\u06cc\u0627\u0633\u062a \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u062f\u0627\u062e\u0644\u06cc<\/li>\n<\/ul>\n<p>\u0627\u06cc\u0646 \u0627\u0632 \u0627\u0646\u0648\u0627\u0639 \u0642\u0627\u0644\u0628 \u0647\u0627\u06cc IAC \u0648 \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u0633\u06cc\u0633\u062a\u0645 \u067e\u0634\u062a\u06cc\u0628\u0627\u0646\u06cc \u0645\u06cc \u06a9\u0646\u062f \u060c \u0627\u0632 \u062c\u0645\u0644\u0647:<\/p>\n<ul>\n<li>\u0634\u06a9\u0644\n<\/li>\n<li>kubernetes yaml\n<\/li>\n<li>\u062f\u06a9\u062a\u0631\u0647\u0627\u06cc\n<\/li>\n<li>\u0634\u06a9\u0644 \u0627\u0628\u0631\u06cc\n<\/li>\n<li>\u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u0647\u0627\u06cc Apache\/nginx\n<\/li>\n<li>postgresql \u060c mysql\n<\/li>\n<li>SSH \u060c \u062e\u062f\u0645\u0627\u062a \u0644\u06cc\u0646\u0648\u06a9\u0633<\/li>\n<\/ul>\n<p>\u0628\u0631 \u062e\u0644\u0627\u0641 \u0627\u0628\u0632\u0627\u0631\u0647\u0627\u06cc SAST \u0628\u0627 \u0647\u062f\u0641 \u06a9\u0644\u06cc \u06a9\u0647 \u06a9\u062f \u0645\u0646\u0628\u0639 \u0631\u0627 \u0628\u0631\u0627\u06cc \u0646\u0642\u0635 \u0647\u0627\u06cc \u0645\u0646\u0637\u0642\u06cc \u062a\u062c\u0632\u06cc\u0647 \u0648 \u062a\u062d\u0644\u06cc\u0644 \u0645\u06cc \u06a9\u0646\u0646\u062f \u060c Coguard \u0628\u0631 \u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u0647\u0627 \u0648 \u063a\u0644\u0637 \u0647\u0627\u06cc \u0646\u0627\u062f\u0631\u0633\u062a \u062f\u0631 \u0633\u0637\u062d \u0633\u06cc\u0633\u062a\u0645 \u060c \u0645\u0627\u0646\u0646\u062f ACL \u0647\u0627\u06cc \u0636\u0639\u06cc\u0641 \u060c \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc \u06af\u0645\u0634\u062f\u0647 \u0648 \u062f\u0631\u06af\u0627\u0647 \u0647\u0627\u06cc \u0634\u0628\u06a9\u0647 \u0628\u0627\u0632 \u062a\u0645\u0631\u06a9\u0632 \u062f\u0627\u0631\u062f.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"%D9%88%DB%8C%DA%98%DA%AF%DB%8C_%D9%87%D8%A7%DB%8C_%DA%A9%D9%84%DB%8C%D8%AF%DB%8C\"><\/span>\n<p>  \u0648\u06cc\u0698\u06af\u06cc \u0647\u0627\u06cc \u06a9\u0644\u06cc\u062f\u06cc<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<ul>\n<li>\u06a9\u0644 \u062f\u0627\u06cc\u0631\u06a9\u062a\u0648\u0631\u06cc \u0647\u0627 \u0631\u0627 \u0628\u0631\u0627\u06cc \u067e\u0631\u0648\u0646\u062f\u0647 \u0647\u0627\u06cc \u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u063a\u0644\u0637 \u062a\u0646\u0638\u06cc\u0645 \u0634\u062f\u0647 \u0627\u0633\u06a9\u0646 \u0645\u06cc \u06a9\u0646\u062f\n<\/li>\n<li>\u0645\u0633\u0627\u0626\u0644 \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0645\u06cc\u0632\u0627\u0646 \u0634\u062f\u062a \u0648 \u0645\u0634\u0627\u0648\u0631\u0647 \u0627\u0635\u0644\u0627\u062d \u0631\u0627 \u0628\u0631\u062c\u0633\u062a\u0647 \u0645\u06cc \u06a9\u0646\u062f\n<\/li>\n<li>\u06cc\u0627\u0641\u062a\u0647 \u0647\u0627\u06cc \u0646\u0642\u0634\u0647 \u0628\u0647 \u0627\u0633\u062a\u0627\u0646\u062f\u0627\u0631\u062f\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0634\u0646\u0627\u062e\u062a\u0647 \u0634\u062f\u0647 (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644 \u060c CIS \u060c OWASP)\n<\/li>\n<li>\u06af\u0632\u0627\u0631\u0634 \u0647\u0627\u06cc \u0645\u0641\u0635\u0644\u06cc \u0631\u0627 \u0628\u0627 \u0641\u0631\u0645\u062a \u062a\u0631\u0645\u06cc\u0646\u0627\u0644 \u06cc\u0627 SARIF \u062a\u0647\u06cc\u0647 \u0645\u06cc \u06a9\u0646\u062f\n<\/li>\n<li>\u0628\u0627 \u0627\u0628\u0632\u0627\u0631\u0647\u0627\u06cc CI\/CD \u0645\u0627\u0646\u0646\u062f \u0627\u0642\u062f\u0627\u0645\u0627\u062a GitHub \u06cc\u0627 Gitlab CI \u0627\u062f\u063a\u0627\u0645 \u0645\u06cc \u0634\u0648\u062f<\/li>\n<\/ul>\n<h2><span class=\"ez-toc-section\" id=\"%D9%86%D8%B5%D8%A8_%D9%88_%D8%A7%D8%B3%DA%A9%D9%86_%D8%A7%D9%88%D9%84\"><\/span>\n<p>  \u0646\u0635\u0628 \u0648 \u0627\u0633\u06a9\u0646 \u0627\u0648\u0644<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<h3><span class=\"ez-toc-section\" id=\"%D9%85%D8%B1%D8%AD%D9%84%D9%87_1_%D8%AA%D8%B5%D9%88%DB%8C%D8%B1_Docker_%D8%B1%D8%A7_%D8%A8%DA%A9%D8%B4%DB%8C%D8%AF\"><\/span>\n<p>  \u0645\u0631\u062d\u0644\u0647 1: \u062a\u0635\u0648\u06cc\u0631 Docker \u0631\u0627 \u0628\u06a9\u0634\u06cc\u062f<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight shell\"><code>docker pull coguard\/coguard-cli\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0631\u0627 \u0648\u0627\u0631\u062f \u06a9\u0646\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<h3><span class=\"ez-toc-section\" id=\"%D9%85%D8%B1%D8%AD%D9%84%D9%87_2_%D8%A7%D8%B3%DA%A9%D9%86_%D8%B1%D8%A7_%D8%AF%D8%B1_%D9%BE%D8%B1%D9%88%DA%98%D9%87_Terraform_%D8%AE%D9%88%D8%AF_%D8%A7%D8%AC%D8%B1%D8%A7_%DA%A9%D9%86%DB%8C%D8%AF\"><\/span>\n<p>  \u0645\u0631\u062d\u0644\u0647 2: \u0627\u0633\u06a9\u0646 \u0631\u0627 \u062f\u0631 \u067e\u0631\u0648\u0698\u0647 Terraform \u062e\u0648\u062f \u0627\u062c\u0631\u0627 \u06a9\u0646\u06cc\u062f<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>\u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u062d\u0627\u0635\u0644 \u06a9\u0646\u06cc\u062f \u06a9\u0647 \u062f\u0631 \u0641\u0647\u0631\u0633\u062a \u067e\u0631\u0648\u0698\u0647 Terraform \u062e\u0648\u062f \u0647\u0633\u062a\u06cc\u062f \u0648 \u0627\u062c\u0631\u0627 \u0645\u06cc \u06a9\u0646\u06cc\u062f:<\/p>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight shell\"><code>docker run <span class=\"nt\">--rm<\/span> <span class=\"nt\">-v<\/span> <span class=\"si\">$(<\/span><span class=\"nb\">pwd<\/span><span class=\"si\">)<\/span>:\/mnt coguard\/coguard-cli scan \/mnt\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0631\u0627 \u0648\u0627\u0631\u062f \u06a9\u0646\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<p>\u0627\u06cc\u0646 \u062f\u0633\u062a\u0648\u0631 \u067e\u0631\u0648\u0698\u0647 \u0645\u062d\u0644\u06cc \u0634\u0645\u0627 \u0631\u0627 \u0646\u0635\u0628 \u0645\u06cc \u06a9\u0646\u062f \u0648 \u062a\u0645\u0627\u0645 \u067e\u0631\u0648\u0646\u062f\u0647 \u0647\u0627\u06cc \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u0631\u0627 \u062f\u0631 \u062f\u0627\u062e\u0644 \u0622\u0646 \u0627\u0633\u06a9\u0646 \u0645\u06cc \u06a9\u0646\u062f. Coguard \u06af\u0632\u0627\u0631\u0634\u06cc \u0631\u0627 \u0646\u0634\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f \u06a9\u0647 \u0646\u0634\u0627\u0646 \u062f\u0647\u0646\u062f\u0647 \u0647\u0631\u06af\u0648\u0646\u0647 \u0633\u0648\u0621 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u060c \u0634\u062f\u062a \u0622\u0646\u0647\u0627 \u0648 \u062a\u0648\u0635\u06cc\u0647 \u0647\u0627\u06cc \u0627\u0635\u0644\u0627\u062d \u0627\u0633\u062a.<\/p>\n<blockquote>\n<p>\u0627\u06af\u0631 \u06cc\u06a9 \u0631\u0627\u0628\u0637 \u06a9\u0627\u0631\u0628\u0631\u06cc \u06af\u0631\u0627\u0641\u06cc\u06a9\u06cc \u0631\u0627 \u062a\u0631\u062c\u06cc\u062d \u0645\u06cc \u062f\u0647\u06cc\u062f \u060c \u0645\u06cc \u062a\u0648\u0627\u0646\u06cc\u062f \u0628\u0631\u0627\u06cc \u0628\u0627\u0631\u06af\u0630\u0627\u0631\u06cc \u0648 \u062a\u062c\u0632\u06cc\u0647 \u0648 \u062a\u062d\u0644\u06cc\u0644 \u067e\u0631\u0648\u0646\u062f\u0647 \u0647\u0627\u06cc \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u0646\u06cc\u0632 \u0627\u0632 \u067e\u0644\u062a \u0641\u0631\u0645 \u0648\u0628 Coguard \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f.<\/p>\n<\/blockquote>\n<h2><span class=\"ez-toc-section\" id=\"%D9%85%D8%AB%D8%A7%D9%84_%DA%A9%D8%AF_Terraform_%D8%A2%D8%B3%DB%8C%D8%A8_%D9%BE%D8%B0%DB%8C%D8%B1\"><\/span>\n<p>  \u0645\u062b\u0627\u0644: \u06a9\u062f Terraform \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>\u062f\u0631 \u0627\u06cc\u0646\u062c\u0627 \u06cc\u06a9 \u0639\u0645\u062f\u0627\u064b \u0646\u0627\u0627\u0645\u0646 \u0627\u0633\u062a <code>main.tf<\/code> \u067e\u0631\u0648\u0646\u062f\u0647:<\/p>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight hcl\"><code><span class=\"nx\">resource<\/span> <span class=\"s2\">\"aws_s3_bucket\"<\/span> <span class=\"s2\">\"example\"<\/span> <span class=\"p\">{<\/span>\n  <span class=\"nx\">bucket<\/span> <span class=\"p\">=<\/span> <span class=\"s2\">\"open-bucket\"<\/span>\n  <span class=\"nx\">acl<\/span>    <span class=\"p\">=<\/span> <span class=\"s2\">\"public-read\"<\/span>\n<span class=\"p\">}<\/span>\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0631\u0627 \u0648\u0627\u0631\u062f \u06a9\u0646\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<h3><span class=\"ez-toc-section\" id=\"%D8%A2%D9%86%DA%86%D9%87_Coguard_%D8%AA%D8%B4%D8%AE%DB%8C%D8%B5_%D9%85%DB%8C_%D8%AF%D9%87%D8%AF\"><\/span>\n<p>  \u0622\u0646\u0686\u0647 Coguard \u062a\u0634\u062e\u06cc\u0635 \u0645\u06cc \u062f\u0647\u062f:<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<ul>\n<li>\n<strong>\u062f\u0633\u062a\u0631\u0633\u06cc \u0639\u0645\u0648\u0645\u06cc<\/strong>: ACL <code>public-read<\/code> \u0633\u0637\u0644 \u0631\u0627 \u062f\u0631 \u062f\u0633\u062a\u0631\u0633 \u0647\u0631 \u06a9\u0633\u06cc \u0642\u0631\u0627\u0631 \u0645\u06cc \u062f\u0647\u062f.\n<\/li>\n<li>\n<strong>\u0628\u062f\u0648\u0646 \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc<\/strong>: \u0647\u06cc\u0686 \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc \u0628\u0631\u0627\u06cc \u062f\u0627\u062f\u0647 \u0647\u0627 \u062f\u0631 \u062d\u0627\u0644\u062a \u0627\u0633\u062a\u0631\u0627\u062d\u062a \u0648\u062c\u0648\u062f \u0646\u062f\u0627\u0631\u062f.\n<\/li>\n<li>\n<strong>\u0646\u0633\u062e\u0647 \u0627\u0632 \u062f\u0633\u062a \u0631\u0641\u062a\u0647<\/strong>: \u0647\u06cc\u0686 \u062e\u0637 \u0645\u0634\u06cc \u0646\u0633\u062e\u0647 \u0627\u06cc \u0641\u0639\u0627\u0644 \u0646\u06cc\u0633\u062a.<\/li>\n<\/ul>\n<p>\u0627\u06cc\u0646 \u0645\u0633\u0627\u0626\u0644 \u0628\u0627 \u0634\u062f\u062a \u0622\u0646\u0647\u0627 \u06af\u0632\u0627\u0631\u0634 \u0634\u062f\u0647 \u0648 \u0645\u0637\u0627\u0628\u0642 \u0628\u0627 \u0627\u0633\u062a\u0627\u0646\u062f\u0627\u0631\u062f\u0647\u0627\u06cc\u06cc \u0645\u0627\u0646\u0646\u062f <strong>\u0645\u0639\u06cc\u0627\u0631 \u0628\u0646\u06cc\u0627\u062f\u0647\u0627\u06cc CIS AWS V1.4<\/strong> \u0648\u062a <strong>\u0628\u0631\u0646\u0627\u0645\u0647 OWASP Cloud-Native Security 10 \u0628\u0631\u062a\u0631<\/strong>\u0628\u0634\u0631<\/p>\n<h2><span class=\"ez-toc-section\" id=\"%D8%A7%D8%AF%D8%BA%D8%A7%D9%85_CICD\"><\/span>\n<p>  \u0627\u062f\u063a\u0627\u0645 CI\/CD<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>\u0634\u0645\u0627 \u0645\u06cc \u062a\u0648\u0627\u0646\u06cc\u062f Coguard \u0631\u0627 \u062f\u0631 \u06af\u0631\u062f\u0634 \u06a9\u0627\u0631 \u0627\u0633\u062a\u0642\u0631\u0627\u0631 \u062e\u0648\u062f \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0642\u062f\u0627\u0645\u0627\u062a GitHub \u0627\u062f\u063a\u0627\u0645 \u06a9\u0646\u06cc\u062f:<\/p>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight yaml\"><code><span class=\"na\">name<\/span><span class=\"pi\">:<\/span> <span class=\"s\">CoGuard Terraform Scan<\/span>\n\n<span class=\"na\">on<\/span><span class=\"pi\">:<\/span>\n  <span class=\"na\">push<\/span><span class=\"pi\">:<\/span>\n    <span class=\"na\">branches<\/span><span class=\"pi\">:<\/span> <span class=\"pi\">[<\/span> <span class=\"s2\">\"<\/span><span class=\"s\">main\"<\/span> <span class=\"pi\">]<\/span>\n\n<span class=\"na\">jobs<\/span><span class=\"pi\">:<\/span>\n  <span class=\"na\">coguard-scan<\/span><span class=\"pi\">:<\/span>\n    <span class=\"na\">runs-on<\/span><span class=\"pi\">:<\/span> <span class=\"s\">ubuntu-latest<\/span>\n    <span class=\"na\">steps<\/span><span class=\"pi\">:<\/span>\n      <span class=\"pi\">-<\/span> <span class=\"na\">name<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Checkout repository<\/span>\n        <span class=\"na\">uses<\/span><span class=\"pi\">:<\/span> <span class=\"s\">actions\/checkout@v3<\/span>\n\n      <span class=\"pi\">-<\/span> <span class=\"na\">name<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Run CoGuard<\/span>\n        <span class=\"na\">run<\/span><span class=\"pi\">:<\/span> <span class=\"pi\">|<\/span>\n          <span class=\"s\">docker pull coguard\/coguard-cli<\/span>\n          <span class=\"s\">docker run --rm -v ${{ github.workspace }}:\/mnt coguard\/coguard-cli scan \/mnt<\/span>\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0631\u0627 \u0648\u0627\u0631\u062f \u06a9\u0646\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<h3><span class=\"ez-toc-section\" id=\"%D8%B5%D8%A7%D8%AF%D8%B1_%DA%A9%D8%B1%D8%AF%D9%86_%DA%AF%D8%B2%D8%A7%D8%B1%D8%B4_%D9%87%D8%A7%DB%8C_Sarif\"><\/span>\n<p>  \u0635\u0627\u062f\u0631 \u06a9\u0631\u062f\u0646 \u06af\u0632\u0627\u0631\u0634 \u0647\u0627\u06cc Sarif<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>\u0628\u0631\u0627\u06cc \u0627\u062f\u063a\u0627\u0645 \u0628\u0627 \u062f\u0627\u0634\u0628\u0648\u0631\u062f \u0627\u0645\u0646\u06cc\u062a\u06cc GitHub \u0645\u06cc \u062a\u0648\u0627\u0646\u06cc\u062f \u0646\u062a\u0627\u06cc\u062c SARIF \u0631\u0627 \u0635\u0627\u062f\u0631 \u06a9\u0646\u06cc\u062f:<\/p>\n<div class=\"highlight js-code-highlight\">\n<pre class=\"highlight shell\"><code>docker run <span class=\"nt\">--rm<\/span> <span class=\"nt\">-v<\/span> <span class=\"si\">$(<\/span><span class=\"nb\">pwd<\/span><span class=\"si\">)<\/span>:\/mnt coguard\/coguard-cli scan \/mnt <span class=\"nt\">--output-format<\/span> sarif <span class=\"o\">&gt;<\/span> report.sarif\n<\/code><\/pre>\n<div class=\"highlight__panel js-actions-panel\">\n<div class=\"highlight__panel-action js-fullscreen-code-action\">\n    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-on\"><title>\u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0631\u0627 \u0648\u0627\u0631\u062f \u06a9\u0646\u06cc\u062f<\/title>\n    <path d=\"M16 3h6v6h-2V5h-4V3zM2 3h6v2H4v4H2V3zm18 16v-4h2v6h-6v-2h4zM4 19h4v2H2v-6h2v4z\"\/>\n<\/svg><\/p>\n<p>    <svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" class=\"highlight-action crayons-icon highlight-action--fullscreen-off\"><title>\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    <path d=\"M18 7h4v2h-6V3h2v4zM8 9H2V7h4V3h2v6zm10 8v4h-2v-6h6v2h-4zM8 15v6H6v-4H2v-2h6z\"\/>\n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n<h2><span class=\"ez-toc-section\" id=\"%D9%86%D8%AA%D8%A7%DB%8C%D8%AC_%D9%88_%D8%AA%D9%81%D8%B3%DB%8C%D8%B1\"><\/span>\n<p>  \u0646\u062a\u0627\u06cc\u062c \u0648 \u062a\u0641\u0633\u06cc\u0631<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>\u062f\u0631 \u06cc\u06a9 \u0627\u0633\u06a9\u0646 \u0646\u0645\u0648\u0646\u0647 \u060c Coguard \u062a\u0634\u062e\u06cc\u0635 \u062f\u0627\u062f:<\/p>\n<ul>\n<li>3 \u0645\u0648\u0636\u0648\u0639 \u0628\u0627 \u062c\u062f\u0627\u06cc\u06cc \u0628\u0627\u0644\u0627 (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644 \u060c \u0633\u0637\u0644 S3 \u0639\u0645\u0648\u0645\u06cc \u060c \u0630\u062e\u06cc\u0631\u0647 \u0628\u062f\u0648\u0646 \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc)\n<\/li>\n<li>2 \u0645\u0633\u0626\u0644\u0647 \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0627\u0641\u0632\u0627\u06cc\u0634 \u0645\u062a\u0648\u0633\u0637 \u200b\u200b(\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644 \u060c \u0648\u0631\u0648\u062f \u0628\u0647 \u0633\u06cc\u0633\u062a\u0645 \u0627\u0632 \u062f\u0633\u062a \u0631\u0641\u062a\u0647)\n<\/li>\n<li>1 \u0645\u0633\u0626\u0644\u0647 \u06a9\u0645 \u0633\u0646 \u0648 \u0633\u0627\u0644 (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644 \u060c \u0628\u0631\u0686\u0633\u0628 \u0647\u0627\u06cc \u0627\u0628\u0631\u062f\u0627\u062f\u0647 \u0627\u0632 \u062f\u0633\u062a \u0631\u0641\u062a\u0647)<\/li>\n<\/ul>\n<p>\u0647\u0631 \u0646\u062a\u06cc\u062c\u0647 \u0634\u0627\u0645\u0644 \u0646\u0627\u0645 \u067e\u0631\u0648\u0646\u062f\u0647 \u060c \u0634\u0645\u0627\u0631\u0647 \u062e\u0637 \u0648 \u0631\u0627\u0647\u0646\u0645\u0627\u06cc\u06cc \u0627\u0635\u0644\u0627\u062d \u0631\u0648\u0634\u0646\u06cc \u0627\u0633\u062a.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"%D9%86%D8%AA%DB%8C%D8%AC%D9%87_%DA%AF%DB%8C%D8%B1%DB%8C\"><\/span>\n<p>  \u0646\u062a\u06cc\u062c\u0647 \u06af\u06cc\u0631\u06cc<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Coguard \u0627\u0628\u0632\u0627\u0631\u06cc \u0642\u0627\u0628\u0644 \u0627\u0639\u062a\u0645\u0627\u062f SAST \u0627\u0633\u062a \u06a9\u0647 \u0628\u0631\u0627\u06cc \u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u0647\u0627 \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u06a9\u062f \u0645\u062a\u0646\u0627\u0633\u0628 \u0627\u0633\u062a. \u0646\u0642\u0627\u0637 \u0642\u0648\u062a \u0622\u0646 \u0639\u0628\u0627\u0631\u062a\u0646\u062f \u0627\u0632:<\/p>\n<ul>\n<li>\u062a\u0634\u062e\u06cc\u0635 \u0632\u0648\u062f\u0647\u0646\u06af\u0627\u0645 \u0627\u0632 \u0633\u0648\u0621 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0628\u0631\n<\/li>\n<li>\u062a\u0631\u0627\u0632 \u06a9\u0631\u062f\u0646 \u0628\u0627 \u0645\u0639\u06cc\u0627\u0631\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0645\u0627\u0646\u0646\u062f CIS \u0648 OWASP\n<\/li>\n<li>\u062a\u0646\u0638\u06cc\u0645 \u0622\u0633\u0627\u0646 \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 Docker\n<\/li>\n<li>\u0627\u062f\u063a\u0627\u0645 CI\/CD \u0628\u062f\u0648\u0646 \u062f\u0631\u0632\n<\/li>\n<li>\u06af\u0632\u0627\u0631\u0634 \u062a\u0648\u0644\u06cc\u062f \u0628\u0631\u0627\u06cc \u0645\u0645\u06cc\u0632\u06cc \u0648 \u062f\u0627\u0634\u0628\u0648\u0631\u062f\n<\/li>\n<\/ul>\n<p>\u0628\u0627 \u0627\u062f\u063a\u0627\u0645 Coguard \u060c \u062a\u06cc\u0645 \u0647\u0627 \u0645\u06cc \u062a\u0648\u0627\u0646\u0646\u062f \u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u0647\u0627\u06cc \u0627\u06cc\u0645\u0646 \u0648 \u0633\u0627\u0632\u06af\u0627\u0631 \u0631\u0627 \u062d\u062a\u06cc \u0642\u0628\u0644 \u0627\u0632 \u0627\u0633\u062a\u0642\u0631\u0627\u0631 \u062a\u0636\u0645\u06cc\u0646 \u06a9\u0646\u0646\u062f.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"%D9%85%D9%86%D8%A7%D8%A8%D8%B9\"><\/span>\n<p>  \u0645\u0646\u0627\u0628\u0639<br \/>\n<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>\u0645\u0642\u062f\u0645\u0647 \u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u0647\u0627 \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u06a9\u062f (IAC) \u06cc\u06a9 \u0631\u0648\u06cc\u06a9\u0631\u062f \u0645\u062f\u0631\u0646 \u0628\u0631\u0627\u06cc \u062a\u0647\u06cc\u0647 \u0632\u06cc\u0631\u0633\u0627\u062e\u062a \u0647\u0627\u06cc \u0627\u0628\u0631\u06cc \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0628\u0632\u0627\u0631\u06cc \u0645\u0627\u0646\u0646\u062f Terraform \u060c Pulumi \u06cc\u0627 Opentofu \u0627\u0633\u062a. \u0627\u06cc\u0646 \u0641\u0646 \u0622\u0648\u0631\u06cc \u0647\u0627 \u0645\u0642\u06cc\u0627\u0633 \u067e\u0630\u06cc\u0631\u06cc \u060c \u062a\u06a9\u0631\u0627\u0631\u067e\u0630\u06cc\u0631\u06cc \u0648 \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0631\u0627 \u0628\u0647\u0628\u0648\u062f \u0645\u06cc \u0628\u062e\u0634\u0646\u062f &#8211; \u0627\u0645\u0627 \u062f\u0631 \u0635\u0648\u0631\u062a \u0639\u062f\u0645 \u062a\u0646\u0638\u06cc\u0645 \u06a9\u062f \u0645\u06cc \u062a\u0648\u0627\u0646\u0646\u062f \u062e\u0637\u0631\u0627\u062a \u0627\u0645\u0646\u06cc\u062a\u06cc \u0631\u0627 \u0646\u06cc\u0632 \u0645\u0639\u0631\u0641\u06cc \u06a9\u0646\u0646\u062f. &hellip;<\/p>\n","protected":false},"author":2,"featured_media":106898,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"","fifu_image_alt":"","footnotes":""},"categories":[339],"tags":[],"class_list":["post-106897","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-dev"],"_links":{"self":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/posts\/106897","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/comments?post=106897"}],"version-history":[{"count":0,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/posts\/106897\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/media\/106898"}],"wp:attachment":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/media?parent=106897"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/categories?post=106897"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/tags?post=106897"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}