Skip to content
Cucumber-based Behaviour Driven Design (BDD) examples to support our "Compliance-as-Code in the Cloud" Whitepaper
Go HCL Gherkin
Branch: master
Clone or download

Latest commit

Fetching latest commit…
Cannot retrieve the latest commit at this time.


Type Name Latest commit message Commit time
Failed to load latest commit information.

Compliance as Code


The code in this repository supports the examples outlined in the Citihub Whitepaper "Continuous Compliance as Code in the Cloud", available at

What is this?

In this repository, we showcase some examples of an approach to compliance that we have found to be successful, namely we:

  1. Define an abstracted set of common control objectives that can be traced back to an origin (a regulation or industry benchmark)
  2. Express control requirements, implementing these objectives as Behaviour Driven Development (BDD) feature specs using the Gherkin DSL
  3. Using Terraform, deploy a clean-room infrastructure in which to test the controls
  4. Test the implementation of BDD features using Cucumber, specifically the Godog framework

More implementation details can be found in here


For more detail and more examples, or if you have questions, please get in touch.

You can’t perform that action at this time.