Cloud Asset Inventory
Firefly provides a Cross-Cloud Asset Inventory that gives you complete visibility into all your cloud resources and their IaC status. This feature is essentially your real-time cloud inventory dashboard, acting as an always up-to-date CMDB. As Firefly connects to your cloud accounts, Kubernetes clusters, and SaaS services, it continuously discovers resources and updates their information.
How the Inventory works and what it offers?
Comprehensive Multi-Cloud View
In a single pane, you can see resources across AWS, Azure, GCP, Kubernetes, and SaaS services like Okta, Datadog, Cloudflare, etc. Firefly normalizes data from all these sources into one searchable inventory. No more switching between AWS Console, Azure Portal, GCP GUI – everything is aggregated.
IaC Status & Classification
Every resource in the inventory is tagged with its IaC status:
Codified (managed by IaC and in sync)
Drifted (was managed by IaC but has deviated)
Unmanaged (created outside IaC)
Ghost (exists in code or state file but missing in cloud)
IaC-Ignored (resource is unmanaged but is not counted as unmanaged)
Undetermined (Firefly unable to determine the IaC status, or the resource is not supported yet)
These labels let you instantly pinpoint resources that need attention. For example, you can filter to find all unmanaged assets (which you may want to codify) or all drifted ones (which you need to fix).
Rich Metadata & Search
Each resource entry is enriched with metadata like owner, cloud account, region, resource type, tags, configuration details, and even links to the IaC code and Terraform state managing it (if applicable). You can search and filter by any of these attributes. For instance, you might filter for Resource Type: aws_instance
and Tag: environment=dev
to list all dev EC2 instances. Firefly's robust search and filtering make it easy to slice and dice the inventory to find exactly what you need.
Relationship Mapping
Firefly Inventory understands relationships between resources. You can select a resource and see related components (for example, an EC2 instance's attached volumes, or a Kubernetes pod's parent deployment). In the UI, Firefly can even show architecture diagrams mapping these connections, helping you comprehend complex architectures at a glance.
Mutations, Events & Traceability
For each resource, you can view historical changes and events. Firefly keeps an event log of modifications (e.g., if a security group rule changed or a tag was updated). Moreover, because it links resources to IaC, you can trace a resource back to the exact Terraform module and Git repository that created it. This traceability is extremely useful—if someone asks "where did this resource come from?", Firefly can point you to the code and commit that created it.
Custom Views & Reports
You can save custom filtered views of the inventory. For example, a view for "Production AWS untagged resources" or "K8s clusters and nodes in EU region" can be saved for quick access. These views update in real-time as inventory changes. Additionally, Firefly's inventory data can be exported (JSON/CSV), so you can share summaries of your cloud assets with stakeholders.
Behind the scenes, Firefly continuously scans your environment to keep the inventory current. Unlike manual asset tracking or point-in-time audits, the inventory is real-time. New resources are discovered within minutes, and any changes (drifts, new tags, deletions) are reflected. This means you always have an up-to-date picture of your cloud.
By using Cloud Asset Inventory, you gain confidence that nothing in your cloud is "unknown" or overlooked. It lays the groundwork for governance and optimization by first answering: What do we have out there? The Cloud Asset Inventory provides that answer at your fingertips, anytime.
Last updated
Was this helpful?