37 open findings across 6 AWS accounts, 4 Azure subscriptions, 5 GCP projects.
| Sev | Rule | Resource | Cloud | Age | |
|---|---|---|---|---|---|
| CRIT | aws.s3.public-acl | acme-sandbox-raw | AWS | 1d | Open → |
| CRIT | gcp.iam.wildcard-binding | projects/data-prod | GCP | 3d | Open → |
| CRIT | aws.iam.root-access-key | account: legacy-ops | AWS | 21d | Open → |
| HIGH | aws.s3.block-public-access-off | acme-sandbox-raw | AWS | 1d | Open → |
| HIGH | aws.sg.open-ssh-0.0.0.0/0 | sg-0abcd · vpc-prod | AWS | 4d | Open → |
| HIGH | az.disk.unencrypted | 5 VMs · rg-legacy-weu | Azure | 9d | Open → |
| HIGH | az.storage.http-allowed | stacmelegacy | Azure | 7d | Open → |
| HIGH | gcp.iam.viewer-on-folder | folder platform | GCP | 2d | Open → |
| HIGH | aws.rds.public-subnet | db-reporting-1 | AWS | 11d | Open → |
| MED | aws.cloudtrail.no-multi-region | 1 account | AWS | 12d | Open → |
| MED | az.policy.defender-sql-off | subscription acme-data | Azure | 6d | Open → |
| LOW | gcp.logging.no-dlq | pubsub topic ingest | GCP | 30d | Open → |
AWS 146 rules
Azure 121 rules
GCP 108 rules
Curated and reviewed on each release. Enterprise tenants can author custom rules in YAML.
2 active accept-risk exceptions · 1 expiring in 5 days
Exceptions require an owner and an expiry. On expiry, the finding re-opens.
Manage exceptions →