Mesh Config Analyzer

Table of Contents

What It Does
#

Paste your service mesh config (YAML or JSON), pick the mesh type, and get a security assessment with findings mapped to NIST 800-53 controls.

ethanolivertroy/mesh-config-analyzer

JavaScript

Supports:

Istio - mTLS, peer auth, authorization policies, proxy security, RBAC
Consul - ACLs, gossip encryption, TLS, CA settings, FedRAMP checks
Linkerd - TLS enforcement, cipher suites, trust anchors, default-deny policies

Why
#

Service mesh misconfigs are easy to miss and can blow holes in your zero trust posture. This gives you a quick way to sanity check configs before deploying or during audits.

Features
#

Auto-detects mesh type from config
Severity ratings (Critical/High/Medium/Low)
NIST 800-53 control mappings for compliance folks
Runs locally or deploy via Docker/Vercel

⚡ Prowler

1 January 2024·Updated: 25 November 2025·2 mins

Security Tools Open Source AWS Azure GCP Kubernetes M365 Multi-Cloud FedRAMP NIST PCI-DSS GDPR HIPAA SOC2 Python Open-Source

Open-source cloud security platform for AWS, Azure, GCP, Kubernetes, and M365 - performs security assessments, compliance audits, and continuous monitoring with 900+ built-in checks across 38+ frameworks

What It Does#

Why#

Features#

Related

What It Does
#

Why
#

Features
#