# IaC Scanning

Infrastructure-as-Code (IaC) allows developers to define and manage infrastructure using code, but this can also introduce security risks. Misconfigurations, such as overly permissive access controls or unencrypted storage, can leave your infrastructure vulnerable to attacks.\\

AquilaX AI’s IaC Scanning helps identify these risks early by scanning IaC templates (e.g., Terraform, CloudFormation) for misconfigurations and vulnerabilities. By integrating IaC scanning into the development pipeline, organizations can ensure secure cloud infrastructure from the start, minimizing the risk of exposure.

**Why IaC Scanning Matters:**

• Prevent misconfigurations in cloud infrastructure.

• Secure infrastructure from the codebase level.

• Automate security in DevOps practices.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.aquilax.ai/user-manual/scanners/iac-scanning.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.