TerraSecure Security Scanner

Version updated for https://github.com/JashwanthMU/TerraSecure to version v2.0.0.

• This action is used across all versions by ? repositories.

Action Type

This is a Composite action.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

TerraSecure is an AI-powered security scanner designed to detect misconfigurations in Terraform and Infrastructure-as-Code (IaC) with high accuracy (92%) and low false positives (<11%). It automates security analysis by leveraging machine learning to identify vulnerabilities, provide business impact insights, and suggest remediation steps. Key capabilities include fast scanning of large infrastructures, offline functionality, multi-format reporting (e.g., SARIF for GitHub Security), and integration with CI/CD pipelines via GitHub Actions or Docker.

Release notes

TerraSecure v2.0.0 - production release

ML-Powered Security Scanner for Terraform & IaC

what’s new:

TerraSecure combines machine learning with AI-enhanced analysis to detect infrastructure security issues before they become breaches.

key features:

• ML-Powered Detection - 92.45% accuracy with pre-trained XGBoost model
• AI Analysis - Business impact, attack scenarios, step-by-step fixes
• Real Breach Training - Patterns from Capital One, Uber, Tesla, MongoDB
• 50+ Security Patterns - S3, IAM, Security Groups, RDS, and more
• SARIF 2.1.0 Output - Native GitHub Security integration
• Docker Ready - Pre-built container image
• GitHub Action - One-line CI/CD integration

Cost optimization:

• Fallback Mode: $0
• Bedrock Mode: ~$2-5/month

Documentation:

• Quick Start Guide
• Docker Guide
• GitHub Action Guide

Updates soon!

• v2.1.0: AWS Bedrock integration (dynamic AI responses)
• v2.2.0: Compliance framework mappings (NIST, CIS, PCI-DSS)
• v2.3.0: Multi-cloud support (Azure, GCP)

Trained on breach data from public security reports and CVE database.

• JashwanthMU
• GitHub Actions