Integrate Regula with Vulnetix. Check Terraform, CloudFormation, Kubernetes, and ARM templates against OPA Rego rules. Note: Regula was archived Sept 2024 — consider Trivy IaC or Checkov for new projects.
CLI toolSARIFJSON
Install & scan
$ # Homebrew (macOS/Linux) — last release v3.4.0 brew tap fugue/regula brew install regula # Binary download curl -L https://github.com/fugue/regula/releases/latest/download/regula_Linux_x86_64.tar.gz | tar xz sudo mv regula /usr/local/bin/ $ regula run . --format sarif > regula.sarif
Run Regula in CI
Scan on every push and upload the results to Vulnetix:
- name: Run Regula IaC scan
run: |
curl -L https://github.com/fugue/regula/releases/latest/download/regula_Linux_x86_64.tar.gz | tar xz
sudo mv regula /usr/local/bin/
regula run . --format sarif > regula.sarif
- name: Upload to Vulnetix
run: vulnetix upload --file regula.sarif
Centralise Regula results in Vulnetix
Upload Regula SARIF, JSON output to the Vulnetix platform to deduplicate findings, prioritise them with EPSS, CISA KEV and Coalition ESS exploit intelligence, and track remediation across every scanner in a single queue.