Issue Details: Explore

Description

A detailed explanation of the issue, including the misconfiguration or exposure, the specific conditions that caused it (such as settings, ACLs, or policies), and the potential impact on confidentiality, integrity, and availability.

Use this section to understand the root cause of the issue and why it matters, without reviewing raw configurations.

Exposed active secrets

Any sensitive data detected in the affected resources, such as tokens, credentials, or encoded secrets.

If present, treat the issue as high priority, as sensitive data may already be exposed.

Cloud account

The cloud account where the issue was detected.

Use this to identify ownership and route remediation to the relevant team.

Entity severity counts

A breakdown of affected entities by severity level.

Use this to understand how widespread the issue is and whether it includes high or critical risk items.

Top impacted resources

The main resources affected by the issue, such as buckets, assets, or services.

Use this to prioritize investigation and remediation on the most relevant resources.

In cloud regions

The regions where the affected resources are deployed.

Use this for regional ownership, compliance considerations, and environment-specific handling.

Top context

Contextual risk signals such as public exposure, resource usage, activity, or severity indicators.

Use these signals to assess real risk and prioritize remediation based on exposure and usage.

Recommendation

Remediation guidance with step-by-step instructions, available through different methods such as AWS Portal, CLI, or Terraform.

Follow the steps according to your preferred workflow to resolve the issue.

Attack path

A visual representation of how the issue can be exploited, including relationships between resources and possible attack paths.

Use this to understand the broader impact, identify lateral movement risks, and prioritize fixes based on exploitability.