Show HN: Bumper – block a destructive Terraform apply or a malicious dependency

Category: devtools

Tags: terraform, infrastructure-as-code, supply-chain-security, terraform-plan, dependency-scanning, github-action

Score: 7.0/10 (Innovation: 7, Technical: 7, Documentation: 8, Utility: 6)

Bumper is a deterministic safety gate that blocks destructive Terraform applies and malicious dependency installations before they happen. It uniquely reads the Terraform plan diff to catch destructive changes like database deletions and also scans lockfiles for known vulnerabilities and malware, making it a powerful guardrail for both traditional CI/CD and AI agent workflows.

Target audience: devops, platform engineers, security engineers, backend devs

Repository: https://github.com/gnana997/bumper · Go · Apache-2.0 · 1 stars

View on Hacker News