# Infrastructure as Code

## Scanner
Trivy scans Infrastructure as Code (IaC) files for 

- [Misconfigurations][misconf]
- [Secrets][secret]

## Supported configurations

| Config type                         | File patterns                                       |
|-------------------------------------|-----------------------------------------------------|
| [Kubernetes](kubernetes.md)         | \*.yml, \*.yaml, \*.json                            |
| [Docker](docker.md)                 | Dockerfile, Containerfile                           |
| [Terraform](terraform.md)           | \*.tf, \*.tf.json, \*.tfvars                        |
| [Terraform Plan](terraform.md)      | tfplan, \*.tfplan, \*.json                          |
| [CloudFormation](cloudformation.md) | \*.yml, \*.yaml, \*.json                            |
| [Azure ARM Template](azure-arm.md)  | \*.json                                             |
| [Helm](helm.md)                     | \*.yml, \*.yaml, \*.tpl, \*.tar.gz, etc.            |
| [YAML][json-and-yaml]               | \*.yaml, \*.yml                                     |
| [JSON][json-and-yaml]               | \*.json                                             |
| [Ansible](ansible.md)               | \*.yml, \*.yaml, \*.json, \*.ini, without extension |

[misconf]: ../../scanner/misconfiguration/index.md
[secret]: ../../scanner/secret.md
[json-and-yaml]: ../../scanner/misconfiguration/config/config.md#scan-arbitrary-json-and-yaml-configurations