Add cloud-audit - AWS security scanner with Terraform remediation

[gebalamariusz]

Adds cloud-audit to the Cloud/Terraform category.

cloud-audit is an open-source AWS security scanner (MIT license) that generates Terraform remediation code for every finding. Key features:

• 47 curated checks covering IAM, S3, EC2, RDS, VPC, Lambda, KMS
• Each finding includes both AWS CLI and Terraform fix code
• Attack chain detection (correlates findings into multi-step attack paths)
• Diff command for tracking security posture changes
• SARIF output for GitHub Code Scanning
• Tags: cloud, terraform, configmanagement

[github-actions]

Contributing criteria check

[FAIL] cloud-audit

Source: https://github.com/gebalamariusz/cloud-audit

Criterion	Result
Stars (min 20)	fail 18 stars (minimum is 20)
Contributors (min 2)	pass 2 contributors
Age (min 3 months)	fail created 19 days ago, needs 71 more days to meet the 3-month minimum

---

One or more tools do not meet the contributing criteria yet. We will keep this PR open. Feel free to update it once the thresholds are met.

[mre]

The render step is failing because cloud is not a valid tag. Valid tags are listed in data/tags.yml. For this tool, you probably want configmanagement and/or terraform, both of which are already in your file. Please remove the cloud tag and the PR should pass.

[mre]

Sorry for the noise here. This PR was accidentally merged and has been reverted. The render step was failing because cloud is not a valid tag in data/tags.yml. Please open a new PR with the cloud tag removed from your YAML file (you already have terraform and configmanagement which are both valid). The CI will then run cleanly.