Security Findings
Security findings are the issues DevOps Genie detects during cloud scans. Open Security > All Findings to review the full list.
Finding details
Each finding includes:
- Severity: Critical, High, Medium, or Low.
- Cloud account and resource.
- Region or location when applicable.
- Description and risk context.
- Remediation guidance.
- Current state.
Finding actions
| Action | When to use it |
|---|---|
| Acknowledge | You reviewed the finding and want to mark it as triaged. It still counts as failing for compliance. |
| Accept risk | Your organization has consciously accepted the risk, optionally with an expiry. Active accepted risk treats the finding as an approved exception for compliance scoring while active. |
| Remove accepted risk | The exception is no longer approved or has been remediated. |
Recommended workflow
- Start in Security > High Risk.
- Open the finding drawer for resource and remediation details.
- Acknowledge reviewed issues that still need work.
- Use accepted risk only with a business justification.
- Re-scan after remediation to confirm the finding is resolved.