Products/Testing and QA software / Security software/CDK Insights

CDK Insights

Catch security issues in your AWS CDK before deployment

Testing and QA software / Security softwareFounded 2026Local-first: code never leaves your machineZero friction: no signup, no API keys, just npx cdk-insights scanFree forever: 100+ rules, 35+ AWS services, JSON/Table/Markdown outputAI explains why issues matter, not just what's wrongCI/CD ready: GitHub Action with PR commentsCross-stack analysis on roadmap
Visit CDK Insights

Our Take

Catching security holes in your CDK stack before it hits production is genuinely the move. Infrastructure-as-code scanning has been around for Terraform and CloudFormation, but CDK brings a different programming model that most traditional static analysis tools don't really understand— they just parse the synthesized CloudFormation. What I don't know is how deep the analysis goes or if it's catching real architectural flaws versus just surface-level checks, but for teams shipping CDK infrastructure at scale, this is the kind of gatekeeper you want in your pipeline.

CDK Insights scans your AWS CDK stacks for security misconfigurations, cost waste, and best practice violations using static analysis. It checks for issues like public S3 buckets, over-permissive IAM roles, unencrypted EBS volumes, Lambda environment variables with secrets, and more.

Problem It Solves
Infrastructure would be deployed, then days later security issues would be found - such as S3 buckets being public or IAM roles being over-permissive. Existing tools scan CloudFormation but don't really understand CDK.
Target Customer
AWS CDK developers and teams building cloud infrastructure
Use Cases
Catch security misconfigurations before deployment, Detect cost waste in CDK stacks, Identify best practice violations, CI/CD integration for automated reviews, Pre-deployment security checks
Pricing Details
25% off first month mentioned as launch promotion; static analysis is completely free with no trial, no limits
Free Tier
Complete static analysis with 100+ rules covering 35+ AWS services - no signup, no API keys required
Differentiator
CDK-native static analysis that understands CDK specifically (not just CloudFormation), local-first design, AI-powered explanations
Why Now
Growing adoption of CDK for infrastructure-as-code has created a need for CDK-specific security scanning, as existing tools don't understand CDK constructs
Traction
Notable Metrics: 76 upvotes, 63 followers, Day Rank #30, Launched 16 days ago

Key Facts

Category
Testing and QA software / Security software
Founded
2026
Pricing
Freemium - free static analysis tier + paid AI tier for deeper analysis
Discovered via
product-hunt

The people behind CDK Insights

L

Lee Priest

profile

Links

WebsiteSource: product-hunt

Want products like this in your inbox every morning?

Five products. Every morning. Written by someone who actually cares whether they're good or not. Free forever, unsubscribe whenever.