Drata Compliance as Code is a compliance automation platform that integrates security and compliance controls into the software development lifecycle. The product monitors and tests compliance across development workflows by connecting to cloud technologies and infrastructure-as-code tools. The platform provides continuous monitoring capabilities across the entire software development lifecycle, enabling organizations to maintain compliance with each release. It connects to over 90 cloud technologies to automate compliance testing and monitoring. Key capabilities include infrastructure-as-code testing to detect misconfigurations before code reaches production, controls-based guardrails for developers, and automated pull request generation with control context and recommended fixes. The system identifies compliance and security gaps during development and provides remediation guidance directly within developer environments. The product aims to reduce audit failure risk by proactively enforcing controls and addressing compliance issues early in the development process. It provides visibility into infrastructure misconfigurations and enables teams to resolve common security issues before deployment. Drata Compliance as Code was developed following Drata's acquisition of oak9, integrating compliance automation capabilities into their existing governance, risk, and compliance platform.