{"id":80567,"date":"2022-12-05T18:14:20","date_gmt":"2022-12-05T23:14:20","guid":{"rendered":"https:\/\/staging.checkmarx.com\/?p=80567"},"modified":"2025-06-09T12:34:16","modified_gmt":"2025-06-09T10:34:16","slug":"how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations","status":"publish","type":"post","link":"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/","title":{"rendered":"How to Use Infrastructure as Code Securely and Avoid Cloud Misconfigurations"},"content":{"rendered":"<p>Moving applications to the cloud delivers clear competitive advantages, but organizations must have the right strategies, access rights and policies in place to do this successfully. Cloud adoption was already expanding before it was super-charged by the pandemic and there are no signs of this trend abating. The consumption of cloud continues to expand across all industry verticals and disrupt the way in which IT teams provision, manage and orchestrate resources.<\/p>\n\n<p>But cloud adoption requires organizations to shift from provisioning and managing static infrastructure to deploying dynamic infrastructure across their environment.\u00a0The implementation of dynamic infrastructure means IT operations and security teams must now provision and manage an infinite volume and distribution of services, embrace ephemerality, and deploy onto multiple target environments.\u00a0<\/p>\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-1\">A challenging environment<\/h2>\n\n<p>This leads to many challenges, including appropriately managing access permissions, being able to identify and prioritize risks, and then proactively mitigating cloud misconfigurations and vulnerabilities. At the same time organizations must facilitate greater collaboration between security, DevOps, and engineering teams, because in a cloud environment, lines of responsibility are not so clearly drawn.<\/p>\n\n<p>In today\u2019s heightened cyber-attack landscape, organizations must also work out how to reduce their cloud attack surface, while simplifying compliance requirements, and find new ways to innovate and scale their business in a secure manner.<\/p>\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-2\">This is easier said than done<\/h2>\n\n<p>One of the great benefits of cloud is how easy it is to spin up resources. Lines of business don&#8217;t have to request IT to allocate resources, they just click a button to run any Infrastructure as Code (IaC) template and they have an application running in minutes. However, every cloud account has thousands of entitlements that need to be managed and maintained. Unfortunately, many have excessive permissions that put cloud assets, the data stored, or the whole cloud account at risk. Analyst organization, <a href=\"https:\/\/www.gartner.com\/en\/documents\/3986121\/managing-privileged-access-in-cloud-infrastructure\">Gartner, predicted<\/a>: &#8220;By 2023, 75% of security failures will result from inadequate management of identities, access and privileges, up from 50% in 2020.&#8221;<\/p>\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-3\">An increase an IAM solutions<\/h2>\n\n<p>This has prompted an increase in IAM (identity and access management) solutions purporting to solve the problem of managing identities in cloud environments. However, modern tools like CIEM and CSPM are based on heuristic rules which means they often advise and detect when it is too late, and don\u2019t offer a tailored solution based on the genuine risk to the application.<\/p>\n\n<p>As a result, CISOs, AppSec, and DevOps teams are overwhelmed with notifications; they need help in identifying which alerts to prioritize. For example, they might be alerted to a misconfigured AWS Lambda function which doesn\u2019t pose a serious threat to their application. They need accurate context to determine which risks to ignore and which to action. The reality is that they can\u2019t fix every misconfiguration, therefore they must focus on the most important business critical risks.\u00a0<\/p>\n\n<p>Alongside the problem of alert fatigue, there is often tension with Dev\/Ops teams who just want to move fast and use all their admin and access privileges. Additionally, organizations are not always aware of all their data and sensitive resources in the cloud and many security permissions are not always necessary and can cause account and data leakage.<\/p>\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-4\">One size fits all approach doesn&#8217;t work<\/h2>\n\n<p>One option is to manually analyze the infrastructure layer and the applications running on it. This might work for smaller organizations, but for larger organizations with a dynamic environment, where developers create new cloud accounts for every dev team, a manual approach is nigh on impossible to scale. Additionally, when it comes to audits, it is hard for the organization to keep track and prove compliance.\u00a0<\/p>\n\n<p>In a bid to get around these issues, organizations are creating repositories of standard policies to use. But these are generic; they don\u2019t name the specific resource that every component needs to access. Some organizations use these same policies for all their cloud functions. Think about it, this is like using the same key to open every individual apartment door in an apartment block, how secure would that be?<\/p>\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-5\">How Checkmarx One can help<\/h2>\n\n<p>Reducing software risk and boosting developer and AppSec team productivity is central to Checkmarx\u2019s mission. Our\u00a0<a href=\"https:\/\/checkmarx.com\/product\/application-security-platform\/\" target=\"_blank\" rel=\"noreferrer noopener\">Checkmarx One\u2122 Application Security Platform<\/a>\u00a0identifies code vulnerabilities and integrates seamlessly into the tools developers already use. Our aim is to help organizations improve software security without compromising their ability to innovate\u2014making life easier for developers and application security teams at the same time.<\/p>\n\n<p>Our partner Solvo shares our vision of a world running on secure code and we are pleased to announce a new Solvo integration into the Checkmarx One platform that will help our customers overcome many of the IaC security challenges outlined above.\u00a0<\/p>\n\n<figure><img decoding=\"async\" src=\"https:\/\/lh5.googleusercontent.com\/uK3Qn2KfomH-CSqWPSs-BxNwsh6qKG_2S_25SABwhDaAzNzfrfG10OZed95WuJK48v3ESOpvT4R404v7Rrp2UgCsVFIc4wEkUHoZNz3bubuWMfdZYxYCTGUJCVxt4c8OVIW7QBE5eo0zU4mnzfb3Jw-hmzHYbfe7OlY5vp-e5XIA_eSBOuQwKmfQAqCW7oCx\" alt=\"\"><\/figure>\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-6\">Hitting the IaC security sweet spot<\/h2>\n\n<p>Solvo is incredibly easy to onboard, and the outputs are actionable meaning this application-aware cloud security platform helps R&amp;D, DevOps and security teams discover, monitor, and remediate misconfigurations.\u00a0\u00a0<\/p>\n\n<p>Solvo is an adaptive cloud infrastructure security platform that enables organizations to innovate at cloud speed and scale. Leveraging real-time monitoring and analysis across cloud infrastructure, applications, data and users, Solvo automatically creates customized, constantly updated least privileged access policies based on the level of risk associated with entities and data in the cloud.\u00a0<\/p>\n\n<p>The prioritized findings deliver the remediation organizations need, uniquely created for every component, which is highly complementary to Checkmarx AppSec capability. Checkmarx One finds the IaC misconfiguration, and Solvo informs organizations not only how to remediate, but also how to do this in the best possible way, by automating IAM on a least-privileged basis.<\/p>\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-7\">Helping developers deliver secure code<\/h2>\n\n<p>Today we see a lot of responsibility shifting to developers, where they are becoming the single stakeholder for all things cloud. Therefore, they simply don&#8217;t have the time or the knowledge to understand the complexities of all these environments. As a result, developers often adopt a trial-and-error approach which can cause issues in production. One simple change in a code file can have the ripple effect of blocking user access to resources and causing production downtime. Or worse still they are bombarded with so many misconfigurations that they simply ignore them, which opens the attack surface for hackers. And while security should be everyone\u2019s responsibility, unfortunately developers are measured on delivering the next feature, and not how secure the application is.\u00a0<\/p>\n\n<p>This is why our partnership with Solvo is so important, because Solvo provides customers with an Infrastructure-as-Code template meaning developers can use Solvo&#8217;s integration recommendations seamlessly via the Checkmarx One platform.\u00a0<\/p>\n\n<h2 class=\"wp-block-heading article-anchor\" id=\"article-anchor-8\">Learn more<\/h2>\n\n<p><strong>To find out more, view the recoding of our recent webinar with Solvo, <a href=\"https:\/\/info.checkmarx.com\/en\/wb\/cloud-infrastructure-security?utm_source=email&amp;utm_medium=email&amp;utm_campaign=SCA&amp;utm_search_query=cloud-infrastructure-security-pn-solvo\" target=\"_blank\" rel=\"noreferrer noopener\"><em>Teaming Up to Tackle Cloud Security Misconfigurations<\/em><\/a>.<\/strong><\/p>\n\n<p>\u00a0<\/p>","protected":false},"excerpt":{"rendered":"<p>Moving applications to the cloud delivers clear competitive advantages, but organizations must have the right strategies, access rights and policies in place to do this successfully. Cloud adoption was already expanding before it was super-charged by the pandemic and there are no signs of this trend abating. The consumption of cloud continues to expand across [&hellip;]<\/p>\n","protected":false},"author":11,"featured_media":80568,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[84,1295],"tags":[142,87,189,412,321,190],"class_list":["post-80567","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog","category-iac","tag-application-security-testing","tag-appsec","tag-article","tag-checkmarx-one","tag-checkmarx-partners","tag-english"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.1.1 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>How to Use Infrastructure as Code Securely and Avoid Cloud Misconfigurations - Checkmarx.com<\/title>\n<meta name=\"description\" content=\"Hear from Solvo and Checkmarx to learn how to use Infrastructure as Code securely and avoid cloud misconfigurations\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How to Use Infrastructure as Code Securely and Avoid Cloud Misconfigurations\" \/>\n<meta property=\"og:description\" content=\"Learn more about how our partner, Solvo, provides customers with an Infrastructure-as-Code template so developers can use Solvo&#039;s integration recommendations seamlessly via the Checkmarx One platform\" \/>\n<meta property=\"og:url\" content=\"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/\" \/>\n<meta property=\"og:site_name\" content=\"Checkmarx\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis\" \/>\n<meta property=\"article:published_time\" content=\"2022-12-05T23:14:20+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-06-09T10:34:16+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2022\/12\/Checkmarx_Solvo_Blog_1000x450_V1.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"800\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Checkmarx Team\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:title\" content=\"How to Use Infrastructure as Code Securely and Avoid Cloud Misconfigurations\" \/>\n<meta name=\"twitter:description\" content=\"Learn more about how our partner, Solvo, provides customers with an Infrastructure-as-Code template so developers can use Solvo&#039;s integration recommendations seamlessly via the Checkmarx One platform\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2022\/12\/Checkmarx_Solvo_Blog_1000x450_V1.jpg\" \/>\n<meta name=\"twitter:creator\" content=\"@checkmarx\" \/>\n<meta name=\"twitter:site\" content=\"@checkmarx\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Checkmarx Team\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/\"},\"author\":{\"name\":\"Checkmarx Team\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/25482b0b490209da942049e2c8b0d3aa\"},\"headline\":\"How to Use Infrastructure as Code Securely and Avoid Cloud Misconfigurations\",\"datePublished\":\"2022-12-05T23:14:20+00:00\",\"dateModified\":\"2025-06-09T10:34:16+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/\"},\"wordCount\":1118,\"publisher\":{\"@id\":\"https:\/\/checkmarx.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2022\/12\/Checkmarx_Solvo_Blog_1000x450_V1.jpg\",\"keywords\":[\"Application Security Testing\",\"AppSec\",\"Article\",\"checkmarx one\",\"Checkmarx Partners\",\"English\"],\"articleSection\":[\"Blog\",\"IaC\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/\",\"url\":\"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/\",\"name\":\"How to Use Infrastructure as Code Securely and Avoid Cloud Misconfigurations - Checkmarx.com\",\"isPartOf\":{\"@id\":\"https:\/\/checkmarx.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2022\/12\/Checkmarx_Solvo_Blog_1000x450_V1.jpg\",\"datePublished\":\"2022-12-05T23:14:20+00:00\",\"dateModified\":\"2025-06-09T10:34:16+00:00\",\"description\":\"Hear from Solvo and Checkmarx to learn how to use Infrastructure as Code securely and avoid cloud misconfigurations\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/#primaryimage\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2022\/12\/Checkmarx_Solvo_Blog_1000x450_V1.jpg\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2022\/12\/Checkmarx_Solvo_Blog_1000x450_V1.jpg\",\"width\":1600,\"height\":800},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/checkmarx.com\/#website\",\"url\":\"https:\/\/checkmarx.com\/\",\"name\":\"Checkmarx\",\"description\":\"The world runs on code. We secure it.\",\"publisher\":{\"@id\":\"https:\/\/checkmarx.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/checkmarx.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/checkmarx.com\/#organization\",\"name\":\"Checkmarx\",\"url\":\"https:\/\/checkmarx.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg\",\"width\":1,\"height\":1,\"caption\":\"Checkmarx\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis\",\"https:\/\/x.com\/checkmarx\",\"https:\/\/www.youtube.com\/user\/CheckmarxResearchLab\",\"https:\/\/www.linkedin.com\/company\/checkmarx\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/25482b0b490209da942049e2c8b0d3aa\",\"name\":\"Checkmarx Team\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/cropped-cx_favicon-150x150.webp\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/cropped-cx_favicon-150x150.webp\",\"caption\":\"Checkmarx Team\"},\"url\":\"https:\/\/checkmarx.com\/author\/checkmarx-team\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"How to Use Infrastructure as Code Securely and Avoid Cloud Misconfigurations - Checkmarx.com","description":"Hear from Solvo and Checkmarx to learn how to use Infrastructure as Code securely and avoid cloud misconfigurations","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/","og_locale":"en_US","og_type":"article","og_title":"How to Use Infrastructure as Code Securely and Avoid Cloud Misconfigurations","og_description":"Learn more about how our partner, Solvo, provides customers with an Infrastructure-as-Code template so developers can use Solvo's integration recommendations seamlessly via the Checkmarx One platform","og_url":"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/","og_site_name":"Checkmarx","article_publisher":"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis","article_published_time":"2022-12-05T23:14:20+00:00","article_modified_time":"2025-06-09T10:34:16+00:00","og_image":[{"width":1600,"height":800,"url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2022\/12\/Checkmarx_Solvo_Blog_1000x450_V1.jpg","type":"image\/jpeg"}],"author":"Checkmarx Team","twitter_card":"summary_large_image","twitter_title":"How to Use Infrastructure as Code Securely and Avoid Cloud Misconfigurations","twitter_description":"Learn more about how our partner, Solvo, provides customers with an Infrastructure-as-Code template so developers can use Solvo's integration recommendations seamlessly via the Checkmarx One platform","twitter_image":"https:\/\/checkmarx.com\/wp-content\/uploads\/2022\/12\/Checkmarx_Solvo_Blog_1000x450_V1.jpg","twitter_creator":"@checkmarx","twitter_site":"@checkmarx","twitter_misc":{"Written by":"Checkmarx Team","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/#article","isPartOf":{"@id":"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/"},"author":{"name":"Checkmarx Team","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/25482b0b490209da942049e2c8b0d3aa"},"headline":"How to Use Infrastructure as Code Securely and Avoid Cloud Misconfigurations","datePublished":"2022-12-05T23:14:20+00:00","dateModified":"2025-06-09T10:34:16+00:00","mainEntityOfPage":{"@id":"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/"},"wordCount":1118,"publisher":{"@id":"https:\/\/checkmarx.com\/#organization"},"image":{"@id":"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/#primaryimage"},"thumbnailUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2022\/12\/Checkmarx_Solvo_Blog_1000x450_V1.jpg","keywords":["Application Security Testing","AppSec","Article","checkmarx one","Checkmarx Partners","English"],"articleSection":["Blog","IaC"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/","url":"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/","name":"How to Use Infrastructure as Code Securely and Avoid Cloud Misconfigurations - Checkmarx.com","isPartOf":{"@id":"https:\/\/checkmarx.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/#primaryimage"},"image":{"@id":"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/#primaryimage"},"thumbnailUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2022\/12\/Checkmarx_Solvo_Blog_1000x450_V1.jpg","datePublished":"2022-12-05T23:14:20+00:00","dateModified":"2025-06-09T10:34:16+00:00","description":"Hear from Solvo and Checkmarx to learn how to use Infrastructure as Code securely and avoid cloud misconfigurations","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/blog\/how-to-use-infrastructure-as-code-securely-and-avoid-cloud-misconfigurations\/#primaryimage","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2022\/12\/Checkmarx_Solvo_Blog_1000x450_V1.jpg","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2022\/12\/Checkmarx_Solvo_Blog_1000x450_V1.jpg","width":1600,"height":800},{"@type":"WebSite","@id":"https:\/\/checkmarx.com\/#website","url":"https:\/\/checkmarx.com\/","name":"Checkmarx","description":"The world runs on code. We secure it.","publisher":{"@id":"https:\/\/checkmarx.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/checkmarx.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/checkmarx.com\/#organization","name":"Checkmarx","url":"https:\/\/checkmarx.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg","width":1,"height":1,"caption":"Checkmarx"},"image":{"@id":"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis","https:\/\/x.com\/checkmarx","https:\/\/www.youtube.com\/user\/CheckmarxResearchLab","https:\/\/www.linkedin.com\/company\/checkmarx"]},{"@type":"Person","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/25482b0b490209da942049e2c8b0d3aa","name":"Checkmarx Team","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/image\/","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/cropped-cx_favicon-150x150.webp","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/cropped-cx_favicon-150x150.webp","caption":"Checkmarx Team"},"url":"https:\/\/checkmarx.com\/author\/checkmarx-team\/"}]}},"_links":{"self":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/posts\/80567","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/comments?post=80567"}],"version-history":[{"count":0,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/posts\/80567\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/media\/80568"}],"wp:attachment":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/media?parent=80567"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/categories?post=80567"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/tags?post=80567"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}