Sold by: Check Point Software TechnologiesÂ
CloudGuard Code Security is a blazing-fast language-agnostic scanner for detecting secrets, CVEs, and compliance violations in code and IaC with CI/CD hardening features, which seamlessly integrates into everything from the IDE to git and build machine.
Overview
Check Point CloudGuard Code Security is a powerful language-agnostic code scanner able to: Detect hardcoded secrets, keys, and credentials in any programming language with dynamic detectors in repos and host file systems.
Detect and remove secrets from Jira and Confluence.
Identify compliance violations against industry standards and regulatory requirements, including various AWS frameworks for Infrastructure as Code (IaC) template configurations.
Seamlessly integrate with VS Code, GitHub, GitLab, and Bitbucket, as well as CI/CD tools like Jenkins, CircleCI, AWS CodePipeline, and many more, with pre-receive hooks for blocking risky commits to periodic repo scans using git bots.
No reliance on cloud services, meaning your source code never leaves your environment.
Harden CI/CD pipelines and limit source code access to mitigate code exfiltration risks and unauthorized access. Designed for developers but built for the CISO organization, CloudGuard Code Security is a DevSecOps/Shift-Left solution that ensures code security does not hinder development speed or burden developers with building intricate scanner rules and quality gates while empowering security practitioners with full visibility and control over rules and posture. It achieves this with: Blazing fast scan speed: approximately 10 MB in half a second.
Detailed remediation playbooks, providing developers with solutions rather than problems.
Dashboards designed to facilitate cooperation between developers and security practitioners from the VP R&D/CISO level down to the software engineer/SOC expert.
2,800 out-of-the-box detectors, allowing security experts to enforce rules without requiring coding/DevOps skills. From identifying risky code (e.g., open ports, dated protocols, etc.) to detecting hard-coded keys and credentials and IaC violations of security farmwork, nothing escapes our detectors.
Seamless integration with Check Point CloudGuard ecosystem, extending code security to runtime (including secrets, malware, and CVE detection in containers, VMs, and serverless).
Highlights
- No More Secrets: Regardless of programming language. Detect secrets like API keys and passwords in any programming language spanning your entire development pipeline from the IDE to the build machine, as well as Jira and Confluence.
- Blazing Fast Performance: 10 MB of code in half a second. Scan 10 MB of code in about half a second with over 2800 active detectors out of the box, providing high-speed security without disrupting development workflows and without sending your code for scanning in the cloud.
- Compliance Enforcement: From ISO, to NIST, CIS, PCI, and more. Identify compliance with various AWS frameworks for Infrastructure as Code (IaC) template configurations, ensuring your cloud infrastructure meets industry standards and best practices before configurations reach your cloud.
Details
Delivery method
Deployed on AWS
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Custom pricing options
Pricing is based on your specific requirements and eligibility. Request a private offer to receive a custom quote. Sign in to view any offers that have been extended to you.
Legal
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
CloudGuard Code Security Support Information
This offer includes Premium Support. For the full list of included support services visit: https://www.checkpoint.com/support-services/support-plans/Â
- To open a support ticket, please have your Check Point user center account information available. If you do not have a user center account, sign up for one here: https://accounts.checkpoint.com . Need support? Contact us at
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
CloudGuard Network Security All-In-One
By Check Point Software Technologies
Advanced threat prevention security for AWS and hybrid cloud environments, with Threat Extraction and Threat Emulation, and a built-in security management server
CloudGuard Network Security with Threat Prevention and SandBlast
By Check Point Software Technologies
Advanced threat prevention security for AWS and hybrid cloud environments, with Threat Extraction and Threat Emulation, and with GWLB (starting with R81.20)
**Please note: To ensure optimal operations, Check Point recommends a 4 vCores machine size. This provides balanced efficiency and smooth performance, which most customers find ideal for their needs.
CloudGuard Network Security with Threat Prevention & SandBlast BYOL
By Check Point Software Technologies
Advanced threat prevention security for AWS and hybrid cloud environments, with Threat Extraction and Threat Emulation.
**Please note: To ensure optimal operations, Check Point recommends a 4 vCores machine size. This provides balanced efficiency and smooth performance, which most customers find ideal for their needs.
Check Point CloudGuard Network Security
By Check Point Software Technologies
Check Point CloudGuard Network Security is a cloud-native security gateway that delivers automated, advanced threat prevention and multi-layered network security for assets that customers migrate to or store on AWS. Try it free for 30 days.
Customer reviews
0 ratings
0 AWS reviews
|
26 external reviews
Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.
Nikhil S.
A reliable solution for DevSecOps and cloud code security
Reviewed on Jun 19, 2025
Review provided by G2
What do you like best about the product?
CloudGuard Code Security integrates seamlessly with our CI/CD pipelines (Jenkins and GitHub Actions). It provides real-time scanning of infrastructure as code (IaC) like Terraform and CloudFormation. I appreciate its detailed vulnerability reports, policy-as-code capabilities, and easy-to-use dashboards.
What do you dislike about the product?
The initial setup and configuration were a bit complex and required documentation referencing. Also, it can sometimes generate false positives in custom scripts. Improved documentation for multi-cloud deployment scenarios would be helpful.
What problems is the product solving and how is that benefiting you?
Check Point CloudGuard Code Security helps us identify security issues in Infrastructure as Code (IaC) and application code early in the development lifecycle. By integrating it into our CI/CD pipeline, we’re able to shift security left and catch misconfigurations, hardcoded secrets, and compliance violations before they reach production.
This not only improves the overall security posture of our cloud-native applications but also saves time and effort by reducing manual code reviews and post-deployment fixes. It ensures faster and more secure deployments while maintaining compliance with standards like CIS Benchmarks and industry best practices.
This not only improves the overall security posture of our cloud-native applications but also saves time and effort by reducing manual code reviews and post-deployment fixes. It ensures faster and more secure deployments while maintaining compliance with standards like CIS Benchmarks and industry best practices.
Prasad P.
Strong Cloud Security Tool with Seamless DevOps Integration
Reviewed on Jun 18, 2025
Review provided by G2
What do you like best about the product?
What I like most is how easily CloudGuard Code Security integrates into our CI/CD pipeline. It scans Infrastructure-as-Code (IaC) configurations in real time, offering detailed and actionable insights. Its support for multiple frameworks like Terraform and CloudFormation is a big plus. The tool is reliable and gives us confidence that we’re shipping secure code to the cloud
What do you dislike about the product?
The one area I think needs improvement is documentation. Some advanced configuration examples are not clearly explained, and we had to spend extra time experimenting. Also, the initial onboarding could be a bit more guided for first-time users
What problems is the product solving and how is that benefiting you?
Check Point CloudGuard Code Security helps us detect vulnerabilities and misconfigurations early in our Infrastructure-as-Code (IaC) pipeline. It automates secure code reviews, enforces compliance policies, and reduces the risk of deploying insecure cloud environments. This has significantly improved our cloud deployment hygiene, saved time in manual reviews, and helped maintain consistent security standards across teams. It also improves developer accountability by providing immediate, actionable feedback during code commits.
Prakhar A.
Code vulnerability saviour like a security guard
Reviewed on Jun 18, 2025
Review provided by G2
What do you like best about the product?
It fits seamlessly into our CI/CD pipelines without slowing down builds, and we don’t have to worry about data leaving our environment since everything runs locally. The in-depth detection of misconfigurations and hardcoded credentials is really commendable, and the ability to customize policies gives us flexibility to align with our internal security standards.
What do you dislike about the product?
the initial setup and policy customization take some time, the documentation is very helpful but for advanced usecase it becomes cubersome to implement
What problems is the product solving and how is that benefiting you?
It helps in catching early issues in development phase, like detecting hard coded secrets, vulnerable depedencies.
By integrating it directly in CI/CD pipelines, we are able to implement security policies without slowing down our development team work.
Also it saves our time through automation checks
By integrating it directly in CI/CD pipelines, we are able to implement security policies without slowing down our development team work.
Also it saves our time through automation checks
Amit D.
A must product to use in today's AI world
Reviewed on Jun 17, 2025
Review provided by G2
What do you like best about the product?
The best part was the comprehensive solution they provide in CloudGuard. I was working as contractor for a firm & they were using CloudGuard to maintain the cloud security. Since we were using multiple cloud like GCP, Azure etc. it really become crucial to consider cloud security on priority.
What do you dislike about the product?
There is no such downsides but it would have been really helpful if they could add a product tour.
What problems is the product solving and how is that benefiting you?
To maintain security.
Prajwal I.
Best of Best software for code security
Reviewed on Jan 10, 2025
Review provided by G2
What do you like best about the product?
Easy to integrate and deploy.
I can use cloud gaurd check point security code in my ci/cd pipeline building and it's helping to reduce and low the risk of code risk and vulnerabilities.
As a DevOps software engineer I have to do code review and code scanning.
Also secures scaning of source code.
I can use cloud gaurd check point security code in my ci/cd pipeline building and it's helping to reduce and low the risk of code risk and vulnerabilities.
As a DevOps software engineer I have to do code review and code scanning.
Also secures scaning of source code.
What do you dislike about the product?
As mentioned above easy to use easy to deploy.
No drawbacks I can point out or say.
No drawbacks I can point out or say.
What problems is the product solving and how is that benefiting you?
CI/ CD code security