Skip to main content

IaC Security Scanner Parameters

The parameters that will be defined for the IaC Security scanner will be applied to all the Projects running IaC Security scans.

The table below presents all the optional parameters and their optional values.

Parameter	Values	Notes
Folder/file filter	Allow users to select specific folders or files to include or exclude from the code-scanning process.	Including a file type - .java; .tf Excluding a file type - !.java; !.yaml Use “,” sign to chain file types, for example: .tf,.json for example: .java,.js The parameter also supports including/excluding folders. regex is not supported.
Platforms	Ansible Azure Blueprints AzureResourceManager Bicep Buildah CICD CloudFormation CDK Crossplane Docker Docker Compose Dockerfile Google Deployment Manager gRPC Helm Knative Kubernetes OpenAPI Pulumi SAM ServerlessFW Terraform	Notice Configure one or more platforms, separated by a comma. The parameter means you only want to run scans (queries) for those platforms. For example, Ansible, CloudFormation, Dockerfile Warning Any mistake in the platform characters will cause an error.
Preset ID	All the available IaC Security Presets that exist in the system	There are no Checkmarx Default Presets now. For more information on IaC presets, see here. Warning The preset ID for IaC Security must be a valid UUID. Once you create one, you can copy the PresetID from the IaC Presets page.

In this section:

Was this helpful?

Would you like to provide feedback? Just click here to suggest edits.