If you have your Code repositories deployed behind the firewall, you can use Accurics On-premises Bots to connect to the repository. The Accurics Bot Scans the Repository within the firewall-bound network and sends processed data to Accurics Services for reporting on Accurics Cloud Console.
What data is sent from the on-premises Bot to Accurics Cloud?
Accurics collects the metadata on cloud & IAC resources and normalizes it into native format before sending to the cloud. Optionally, Accurics sends the state file if it’s location is provided during Repository Configuration. The content of the state file is only used for improving the accuracy of the mapping algorithm between IAC & Cloud. When Accurics is analyzing the IAC or Cloud resources, secrets that are embedded in the configurations are ‘redacted’ before storing into the Accurics platform. In terms of roles inside terraform files, those secrets will stay on the on-premises bot since the code never leaves the customer boundary.
You can deploy an on-premises Bot on: