danilotrix86

danilotrix86 / ArchiteX

Public

Architecture firewall for Terraform PRs -- deterministic risk scoring, sticky comments, no SaaS.

danilotrix86.github.ioArchiteX aws azure devsecops github-actions golang
10
1
100% credibility
Found Apr 23, 2026 at 10 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
Go
AI Summary

ArchiteX is a free GitHub Action that scans Terraform pull requests for risky infrastructure changes and posts explainable scores, summaries, and diagrams as PR comments.

How It Works

1
🔍 Discover ArchiteX

You find this free tool that spots risky changes in your infrastructure updates right in your team's pull requests.

2
📥 Add it to your repo

Drop a simple setup file into your project folder, and it's ready to watch your changes.

3
🔄 Open a pull request

Make your infrastructure tweak as usual, and the tool jumps in automatically.

4
⚠️ See the smart review

A colorful comment appears with a risk score, easy explanation, and a diagram showing exactly what changed.

5
👀 Spot the issues

Focus on highlights like new public doors or risky connections that could cause problems.

Build safer infrastructure

Review confidently, fix risks fast, and merge knowing your setup stays secure and reliable.

Sign up to see the full architecture

4 more

Sign Up Free

Star Growth

See how this repo grew from 10 to 10 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is ArchiteX?

ArchiteX is a Go-based GitHub Action that acts as an architecture firewall for Terraform PRs, analyzing diffs to detect risky topology changes like new public entry points or widened access controls. It posts a sticky PR comment with a deterministic 0-10 risk score, plain-English summary, focused Mermaid delta diagram showing only changes plus context, and an optional CI gate. Everything runs locally on your runner—no SaaS, no telemetry—producing self-contained HTML audit bundles for air-gapped review.

Why is it gaining traction?

Unlike tfsec or Checkov, which flag line-level issues, ArchiteX surfaces architectural drift with delta diagrams and baseline anomaly detection, helping architects spot novel resource types or edge pairs early. Its byte-identical output across runs builds trust for automated reviews, and auto-detection of AWS or Azure providers means zero config for common setups. Sticky comments and configurable suppressions make it a seamless complement to existing scanners, following firewall architecture best practices without vendor lock-in.

Who should use this?

Terraform architects and SREs reviewing infra PRs in AWS or Azure environments, especially teams enforcing clean architecture github patterns or dual firewall architecture. It's ideal for module authors using library mode to handle conditional resources, or ops folks gating merges on high-risk changes like public S3 buckets or open NSGs. Developers exploring architecture decision records github or github architecture books will appreciate its focus on topology over syntax.

Verdict

Try ArchiteX if you're serious about Terraform PR hygiene—its deterministic audits and diagrams fill a real gap, despite just 10 stars and 1.0% credibility signaling early maturity. Solid docs and MIT license make it low-risk to test, but watch for broader provider support before production gates.

(198 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.