December 9, 2022 By Benoit Jaunin 2 min read

The DevSecOps Continuous Integration Toolchain is now able to validate Infrastructure as Code sources (such as Terraform definitions).

Infrastructure as Code (IaC) is used heavily to define infrastructure and tailor environments from development, testing and quality assurance to production environments.

This specialized code should be subject to the same cautious management as application source code to prevent the risk of incorporating vulnerabilities into the target infrastructure.

DevSecOps Continuous Integration for IaC can help

The DevSecOps Continuous Delivery service provides a new DevSecOps toolchain that is specialized to account for Infrastructure as Code, such as Terraform definitions source.

It includes all the expected DevSecOps best practices, including evidence collection, quality gates, artifact signing, automated tests, static code scans, vulnerability checks and more.

A new template is available in the toolchain catalog to create a Continuous Integration toolchain to develop your infrastructure code:

This template provides a default sample that illustrates the simple use-case of creating an IBM Key Protect for IBM Cloud service instance and implementing a unit-test using Terratest and an acceptance test using Jest.
The DevSecOps Continuous Integration for Infrastructure as Code (IaC) pipeline comes with predefined stages implemented using default scripts. For example:

See the docs for more details:

Note: Selected stages can be customized to fit your need.

Get started

You can create your first DevSecOps Continuous Integration for Infrastructure as Code toolchain directly from the toolchain catalog or by following this link and this tutorial

IBM Cloud has already made available a complete set of DevSecOps toolchain templates for your cloud-native application development. Learn more about it here.

Report a problem or look for help

Get help directly from the IBM Cloud development teams by joining us on Slack.

More from

Protecting revenue and keeping applications online through intelligent routing

3 min read - IBM Build Partner GlobalDots helps some of the world’s leading brands keep their revenue-generating services running optimally at all times. Francesco Altomare of GlobalDots explains how embedding IBM technologies into the company’s Super content delivery network (CDN) offering helps address the biggest availability and performance challenges for customers. Intelligent network steering to protect revenue When the availability and performance of online applications and websites are truly critical, organizations typically use one or more CDNs to route web traffic intelligently. CDNs…

How a company transformed employee HR experience with an AI assistant

3 min read - IBM Build Partner Inspire for Solutions Development is a regional consulting firm that provides enterprise IT solutions across the Middle East. Jad Haddad, Head of AI at Inspire for Solutions Development has embraced the IBM watsonx™ AI and data platform to enhance the HR experience for its 450 employees. Next-gen HR for a next-gen workforce As a new generation of digital natives enters the workforce, we are seeing new expectations around the employee experience. Gen Z employees prefer an HR…

Fantasy Football trades: How IBM Granite foundation models drive personalized explainability for millions

4 min read - With almost 1,700 players in 272 games, the amount of data generated during the NFL football season is enormous. Fantasy football team owners are faced with complex decisions and an ocean of information. Deciding who to start, who to bench and who to trade each week can be a daunting task. It can also be a lot of fun—and that’s why the ESPN Fantasy app engages 12 million fantasy football users each year.  For the last 8 years, IBM has…

IBM Newsletters

Get our newsletters and topic updates that deliver the latest thought leadership and insights on emerging trends.
Subscribe now More newsletters