From 4760f23ea4230571c365d9022d307eb9cf90805c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Mariusz=20G=C4=99bala?= <gebalamariusz@gmail.com>
Date: Fri, 20 Mar 2026 09:34:43 +0100
Subject: [PATCH] Add cloud-audit - AWS security scanner with Terraform
 remediation

---
 data/tools/cloud-audit.yml | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)
 create mode 100644 data/tools/cloud-audit.yml

diff --git a/data/tools/cloud-audit.yml b/data/tools/cloud-audit.yml
new file mode 100644
index 0000000000..aa6f41deb1
--- /dev/null
+++ b/data/tools/cloud-audit.yml
@@ -0,0 +1,16 @@
+name: cloud-audit
+categories:
+  - linter
+tags:
+  - cloud
+  - terraform
+  - configmanagement
+license: MIT
+types:
+  - cli
+source: 'https://github.com/gebalamariusz/cloud-audit'
+homepage: 'https://haitmg.pl'
+description: >-
+  Opinionated AWS security scanner with 47 curated checks covering IAM,
+  S3, EC2, RDS, Lambda, and more. Each finding includes Terraform remediation
+  code. Features attack chain detection and a diff command for CI/CD gating.