Before you deploy anything, read the Prerequisites page. A Supabase project is required for authentication. The backend will not start without
SUPABASE_URL and SUPABASE_JWT_SECRET.Deployment options
Choose the deployment method that fits your environment:Docker Compose
The fastest path to a running instance. Brings up the API, database, Redis, and frontend in one command. Best for development, evaluation, and small teams.
Kubernetes
Production-grade deployment using the manifests under
deployments/kubernetes/. Supports rolling updates, horizontal scaling, and external secrets management.Configuration and security
Once your deployment is running, review these pages to configure it correctly for your environment:Configuration reference
Full table of every environment variable the backend accepts, with defaults and valid values.
Secrets and encryption
How InfraAudit encrypts cloud credentials at rest, how to generate the encryption key, and how to rotate secrets safely.
Operations
Upgrades
How to update to a new release, run database migrations, and pin image versions for production.
Troubleshooting
Common startup and runtime issues — missing environment variables, auth errors, provider connection failures, and more.
What the Community edition includes
All features documented on this site are available in the Community edition:| Feature | Included |
|---|---|
| AWS, GCP, Azure, Kubernetes providers | Yes |
| Unlimited connected accounts | Yes |
| Drift detection and baselines | Yes |
| Vulnerability scanning (Trivy + NVD) | Yes |
| Cost optimization and anomaly detection | Yes |
| Compliance frameworks (CIS, SOC2, NIST, PCI-DSS, HIPAA) | Yes |
| AI recommendations (requires Gemini API key) | Yes |
| Automated remediation | Yes |
| Slack, email, and webhook notifications | Yes |
| Full API and CLI access | Yes |