Prowler has introduced Infrastructure as Code (IaC) scanning capabilities in its Prowler Cloud platform, allowing users to detect and address security misconfigurations in code before they reach production, thereby saving time and reducing potential exploitation risks. Previously, Prowler's capabilities were limited to runtime environments, but with the integration of Trivy, it now supports scanning popular IaC files such as Docker, Kubernetes, Terraform, and CloudFormation. The platform offers unified visibility by presenting IaC findings in the same format as runtime findings, linking directly to the specific file and line of code where issues are detected. This advancement is part of Prowler's broader strategy to enhance security throughout the Software Development Life Cycle (SDLC) and is positioned as a tool for consolidating security management across both runtime and code environments.