It reads the JSON output of a Terraform plan, applies a curated rule set to detect exposure and destructive changes, and reports findings in text, JSON, SARIF, or Markdown. The tool can optionally invoke a local AI CLI to provide plain‑English explanations for each finding. Designed for CI pipelines and developers, it inspects the plan diff (create/delete/replace) rather than just the final state, offering more precise safety checks. Its zero‑setup AI enrichment and interactive TUI set it apart from typical static scanners.
View on GitHub →gnana997/bumper