English

Static Analysis of Infrastructure as Code: a Survey

Software Engineering 2022-06-22 v1

Abstract

The increasing use of Infrastructure as Code (IaC) in DevOps leads to benefits in speed and reliability of deployment operation, but extends to infrastructure challenges typical of software systems. IaC scripts can contain defects that result in security and reliability issues in the deployed infrastructure: techniques for detecting and preventing them are needed. We analyze and survey the current state of research in this respect by conducting a literature review on static analysis techniques for IaC. We describe analysis techniques, defect categories and platforms targeted by tools in the literature.

Keywords

Cite

@article{arxiv.2206.10344,
  title  = {Static Analysis of Infrastructure as Code: a Survey},
  author = {Michele Chiari and Michele De Pascalis and Matteo Pradella},
  journal= {arXiv preprint arXiv:2206.10344},
  year   = {2022}
}

Comments

8 pages

R2 v1 2026-06-24T11:58:27.746Z