Feature/lab6

[Vlad1mirZhidkov]

Goal

Add Lab 6 solution — Infrastructure-as-Code (IaC) security scanning using tfsec, Checkov, Terrascan, and KICS against vulnerable Terraform, Pulumi, and Ansible configurations.

Changes

• Added scan results and analysis reports for Terraform (tfsec, Checkov, Terrascan) and Pulumi/Ansible (KICS) in labs/lab6/analysis/
• Added labs/submission6.md with documented findings, tool comparison, and remediation notes
• Included prior lab submissions (submission1–5.md) and their artifacts (lab2 Threagile models, lab4 SBOM/vulnerability scans, lab5 DAST scripts and analysis)
• Added lab1 screenshots (PR-template.png, Security.png, juice-shop.png)

Testing

• Not run (explain why)
• Manual — all scanners run via Docker against labs/lab6/vulnerable-iac/; outputs verified against JSON and plaintext report files in labs/lab6/analysis/
• Automated (name)

Artifacts & Screenshots

• labs/lab6/analysis/tfsec-report.txt
• labs/lab6/analysis/checkov-terraform-report.txt
• labs/lab6/analysis/terrascan-report.txt
• labs/lab6/analysis/kics-ansible-report.txt
• labs/lab6/analysis/tool-comparison.txt
• labs/submission6.md

Checklist

• Clear, scoped title
• Docs updated if needed
• No secrets or large temp files