# cpeoples/ansible-security-scanner

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/cpeoples-ansible-security-scanner).**

4 stars · 0 forks · Python · Apache-2.0

## Links

- GitHub: https://github.com/cpeoples/ansible-security-scanner
- Homepage: https://cpeoples.github.io/ansible-security-scanner/
- awesome-repositories: https://awesome-repositories.com/repository/cpeoples-ansible-security-scanner.md

## Description

🛡️ Static security scanner (SAST) for Ansible playbooks, roles, and collections. 1,000+ rules across 30+ categories detecting malicious code, RCE, hardcoded credentials, and supply-chain risk. Outputs SARIF, CycloneDX SBOM, and GitLab SAST. SLSA Build Level 3, Sigstore-signed.

## Tags

### Part of an Awesome List

- [IaC Security](https://awesome-repositories.com/f/awesome-lists/devops/iac-security.md) — Static security scanner for Ansible playbooks and roles.