← all formulae

checkov

brew install checkov v3.3.0 Apache-2.0

Python static analyzer for cloud infrastructure-as-code security misconfigurations.

Why you might care

Scans Terraform, CloudFormation, Kubernetes, Docker, and other IaC formats to catch security & compliance violations before deployment. Runs in CI/CD pipelines and locally; integrates with Git hooks. Faster scanning than manual review and vendor-agnostic across AWS, Azure, GCP.

Categories

security scanner linter

Alternatives

tfsec terrascan trivy kics

4.1k

30-day installs · #689

11.5k

90-day · #758

33.8k

365-day · #832

Runtime dependencies

certifi cffi libyaml numpy pydantic python@3.14 rpds-py

Build dependencies

cmake maturin rust

Links

https://www.checkov.io/
Brew formula source: Formula/c/checkov.rb

Blurb generated by claude-haiku-4-5 on today.

Raw metadata

{
  "aliases": [],
  "alternatives": [
    "tfsec",
    "terrascan",
    "trivy",
    "kics"
  ],
  "build_dependencies": [
    "cmake",
    "maturin",
    "rust"
  ],
  "categories": [
    "security",
    "scanner",
    "linter"
  ],
  "caveats": null,
  "conflicts_with": [],
  "dependencies": [
    "certifi",
    "cffi",
    "libyaml",
    "numpy",
    "pydantic",
    "python@3.14",
    "rpds-py"
  ],
  "deprecated": 0,
  "deprecation_reason": null,
  "desc": "Prevent cloud misconfigurations during build-time for IaC tools",
  "disable_reason": null,
  "disabled": 0,
  "enrichment_fetched_at": "2026-06-20T23:36:20+00:00",
  "first_seen": "2026-06-20T23:34:18+00:00",
  "full_name": "checkov",
  "github_default_branch": null,
  "github_last_commit_at": null,
  "github_readme_excerpt": null,
  "github_repo": null,
  "github_stars": null,
  "github_topics": [],
  "homepage": "https://www.checkov.io/",
  "homepage_og_description": null,
  "homepage_og_image": null,
  "homepage_title": "checkov",
  "installs_30d": 4145,
  "installs_365d": 33760,
  "installs_90d": 11523,
  "keg_only": 0,
  "keg_only_reason": null,
  "last_seen": "2026-06-20T23:34:18+00:00",
  "license": "Apache-2.0",
  "llm_generated_at": "2026-06-20T23:46:25+00:00",
  "llm_model": "claude-haiku-4-5",
  "name": "checkov",
  "oldnames": [],
  "one_liner": "Python static analyzer for cloud infrastructure-as-code security misconfigurations.",
  "optional_dependencies": [],
  "rank_30d": 689,
  "rank_365d": 832,
  "rank_90d": 758,
  "raw_hash": "f0bd5d5db9ba9636",
  "recommended_dependencies": [],
  "revision": 0,
  "ruby_source_path": "Formula/c/checkov.rb",
  "tap": "homebrew/core",
  "test_dependencies": [],
  "uses_from_macos": [
    "libffi"
  ],
  "version_head": null,
  "version_stable": "3.3.0",
  "versioned_formulae": [],
  "why_use_this": "Scans Terraform, CloudFormation, Kubernetes, Docker, and other IaC formats to catch security \u0026 compliance violations before deployment. Runs in CI/CD pipelines and locally; integrates with Git hooks. Faster scanning than manual review and vendor-agnostic across AWS, Azure, GCP."
}