Infrastructure Security Review Patterns Security checklists and grep patterns for reviewing IaC code. Use these patterns when verifying infrastructure security. Security Checklists State Backend Security | Check | Severity | Pattern | |-------|----------|---------| | S3 bucket without encryption | Critical | or missing | | Missing state locking | High | No DynamoDB table configured | | Public bucket policy | Critical | not all true | | Missing versioning | Medium | not enabled | Secret Exposure | Check | Severity | Pattern | |-------|----------|---------| | Hardcoded AWS keys | Critical | | |…