Terraform Plan Explainer

Risk scores are calculated based on several factors including the type of action (create, update, delete, replace), the resource type, and specific attribute changes. Destructive actions like delete or replace score higher risk, and critical resources like databases or security groups receive additional risk weighting.

The tool identifies common security issues such as overly permissive security group rules (like 0.0.0.0/0 access), publicly accessible resources, missing encryption settings, and SSH access from the internet. Each issue includes a severity rating and specific remediation recommendations.

Yes, you can export the analysis in two formats. JSON format is ideal for CI/CD integration and automated processing. Markdown format is better suited for pull request comments, documentation, and human-readable reports. Both exports include the full analysis with risk scores and security findings.

A replace action (shown as -/+ in Terraform output) means the resource will be destroyed and recreated. This happens when certain attributes are changed that cannot be updated in-place, such as changing an instance class that forces replacement. Replace actions carry higher risk because they cause temporary resource unavailability.

No, all analysis is performed entirely in your browser. Your Terraform plan data never leaves your device and is not transmitted to any servers. This makes the tool safe to use with sensitive infrastructure configurations without any data privacy concerns.