Run Terrascan in terminal. Read about flags and command line arguments.
For steps to install locally, or run Terrascan from docker, see this section.
Terrascan is a Go binary that you can build locally. This is useful if you want to be on the latest version, or when modding Terrascan.
$ git clone firstname.lastname@example.org:tenable/terrascan.git $ cd terrascan $ make build $ ./bin/terrascan
This section provides an overview of the different ways you can use Terrascan:
- Command line mode provides list of Terrascan commands with descriptions.
- Server mode using Terrascan as API server
See Configuring Terrascan to learn more about Terrascan’s configuration file.
See In-File Instrumentation to learn how to granularly customize your scan based on particular resources and rules. For example, by skipping certain rules or resources.
Terrascan can be integrated into various platforms and configured to validate policies to provide run time security. Currently Terrascan supports the following integrations:
Run Terrascan as an API server
Terrascan can be instrumented using special commands inside your IaC files (Terraform, K8s and dockerfile)
Configure Terrascan via it’s configuration file.
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.