The IaC Resources inventory provides multiple ways to investigate an infrastructure asset, from quick agentic queries in the main table to deep-dive configuration analysis in the side panel
Select an IaC resource row in the table to open its side panel. This provides a consolidated workspace for investigating infrastructure definitions and remediating misconfigurations without navigating away from the asset inventory
Ask the AppSec agentic assistant
From the IaC assets side panel, click Ask AI and query resource-specific insights (for example, policy compliance, framework-specific risks, or deployment gaps).
Explore the IaC context and lineage
Navigate through the following tabs in the side panel to review the infrastructure context and lineage. This helps prioritize remediation efforts based on application criticality and assess the potential production impact of misconfigurations:
Overview tab: Displays highlights such as Internet Exposed, Public, Deployed to Runtime, Failed Security Assessment, as well as cases and issues associated with the resource. Additional information includes the severity breakdown of misconfigurations, resource properties (such as framework and provider), and current scan information including the last scan time and health status
Applications tab: Displays the business applications associated with the resource including business criticality ratings and risk scores
Code tab: Provides a direct view of the IaC template source code where the resource is defined to inspect raw configuration attributes
Code to Cloud tab: Displays the relationship graph visualizing the full lineage from the source repository through the IaC resource to the deployed cloud workloads
Investigate and remediate issues by category
The IaC side panel organizes findings detected within the infrastructure template into dedicated tabs by issue category. Selecting a finding opens the issue side card directly within the resource context
Fixes are executed either directly from these dedicated tabs for in-context remediation, or from the main inventory tables for global management:
Tab name | Scanner type | Description and remediation options |
|---|---|---|
Configurations | IaC | Security misconfigurations and policy violations detected in the infrastructure template
|
Secrets | Secrets | Hardcoded credentials and sensitive tokens detected within the IaC manifest
|
Execute asset actions
After reviewing the resource health, you can perform the following operations depending on your location in the interface:
Navigate to repository: Available from either the main table (right-click) or the side panel. Click to open the parent repository side panel, allowing you to investigate the broader codebase context without navigating away from your current view
Navigate to provider: Available only from the side panel Actions menu. Click to open the native VCS platform (such as GitHub or GitLab) directly to the specific code where the IaC resource is defined
Export: Available from the main table. Click the Export to file icon to generate and download a file containing the filtered inventory data
View asset data: Available from either the side panel Actions menu or by right-clicking the resource in the main table. Click View asset data to view raw resource data in
JSON(default) ortree view
For detailed information on investigating IaC issues, refer to Infrastructure-as-Code (IaC) resources as assets.