Multi-cloud architecture discovery, security scanning, and FinOps. all from read-only cloud access. This is a sandbox tenant pre-seeded with 6 AWS accounts, 4 Azure subscriptions, and 5 GCP projects. Explore freely; nothing you click will affect a real cloud.
All connectors green · last full scan 4 min ago
Click through in this order and you'll see everything GrandLine does.
Lane-based topology with VPC containment, security shields, and three overlays. all from one shared model.
Severity-sorted, deduplicated, with evidence and remediation. commands, Terraform, console paths.
Trends, anomalies (EWMA baselines), rightsizing, idle candidates, commitment coverage.
Monthly PDF and DOCX, auto-scoped to role. Signed URL delivery, webhooks, or email.
AWS (cross-account IAM + external ID), Azure (Entra federated credentials), GCP (Workload Identity Federation).
Four roles, three scope types, MFA enforced on real deployments (off in this demo).
· 1 critical finding new this week: S3 bucket bronze allows public READ on /static/. triage.
· Rightsizing: 7 EKS nodes in acct 4411 over-provisioned. estimated $1,820/mo savings.
· Anomaly: BigQuery spend in data-prod spiked 2.4σ on Apr 14. driver looks like a missed partition filter.
· Coverage: 1,842 / 2,000 Pro resource cap. 92% used.
Apr 16 · New view modes on the Architecture explorer. Logical, Security, Cost. all from one model.
Apr 12 · Inspector panel: click any node in a diagram to see metadata, findings, and monthly cost.
Apr 2 · AWS Cloud WAN segment visibility.
Mar 22 · Downloadable sample reports in the demo tenant.