Why Resourcely

What is Resourcely?

Resourcely is a cloud guardrails platform for preventing and remediating misconfiguration. Security teams define Terraform policy-as-code that integrates into CI, and powers guided remediation that fixes existing infrastructure policy violations.

Why companies adopt Resourcely

Compliance and governance

CISOs and other security leaders are liable to maintain compliance with security frameworks their company is compliant with. Enforcing compliance can be challenging: infrastructure policies and remediation help companies eliminate compliance-related vulnerabilities and violations.

Explore our to learn more!

Faster and easier policy-as-code

With thousands of pre-built policies and a flexible, easy-to-read policy language, Resourcely Guardrails help companies take control of their cloud without getting hung up on writing Rego or Sentinel.

Here's an example of a Resourcely Guardrail against a Rego policy

GUARDRAIL "Require private acl"
  WHEN aws_s3_bucket
    REQUIRE acl = "private"

package terraform

import input.tfplan as tfplan

allowed_acls = ["private"]
allowed_sse_algorithms = ["aws:kms", "AES256"]

s3_buckets[r] {
    r := tfplan.resource_changes[_]
    r.type == "aws_s3_bucket"
}

array_contains(arr, elem) {
  arr[_] = elem
}

# Rule to restrict S3 bucket ACLs
deny[reason] {
    r := s3_buckets[_]
    not array_contains(allowed_acls, r.change.after.acl)
    reason := sprintf(
        "%s: ACL %q is not allowed",
        [r.address, r.change.after.acl]
    )
}

Less work for security teams

Implementing Resourcely results in an 80% reduction in code reviews on average, as violations are evaluated and routed appropriately.

Paved roads for developers

Fast-moving organizations use Resourcely to unblock their developers, building paved roads with secure-by-default templates (Blueprints) and Terraform policies (Guardrails) shifted left.