FAQ
How can we help you?
Last updated
Was this helpful?
How can we help you?
Last updated
Was this helpful?
To facilitate cloud scanning, Firefly requests a read-only permission set known as a security audit. This permission allows Firefly to scan the configuration of cloud resources, without accessing or retrieving their actual data. For example, Firefly can identify the presence of a storage bucket but does not have the capability to read or obtain information about the objects contained within it.
To locate IaC state files, particularly Terraform .tfstate files, Firefly requests read-only permissions [S3:GetObject] to access AWS S3 Buckets that store these .tfstate files.
Firefly is event-driven for AWS, Azure, and Google Cloud integrations. We track CloudTrail and equivalent events to determine changes in near real-time. In addition, we re-scan all accounts once a day. For SaaS Integrations, we scan for assets every 8 hours.
Yes, exports from the Inventory table are available in both CSV and JSON formats. Select the format from the Options menu on the right side above the table. The Inventory export will include up to 10,000 assets, according to the applied filters.
Firefly scans all S3 buckets to locate any files ending with .tfstate. If your new stack is not displayed, complete these steps to scan for new state files:
Go to the left pane > Settings > Integrations.
Select the integration.
Select the arrow next to Scan S3 Buckets for Terraform Stacks.
Yes. The feature allows you to roll back any asset to a previous revision.
Codified
Unmanaged
Drifted
Ghost
You can view this information in the IaC Coverage metric in the Inventory.
Firefly scans your cloud assets every 8 hours. For AWS, we use CloudTrail logs to enable a near real-time event-driven integration.
See Manage user roles.
We flag this as an Insight, and you can view it in the Flag column of the Inventory.
We require a read-only IAM role with a non-intrusive set of permissions. (You will see this in the integration process).
When creating a pull request, select the VCS integration and repository. You also have the option to add a target branch and file path.
It's your choice. Firefly allows you to use the same keys for multiple Helm installs. If you prefer to use new keys each time, use the Firefly wizard to generate new keys.
It is the of a specific asset:
To view the APIs we support, .
A full RBAC (Role Based Access Control) capability is not yet available. for more details.
Firefly uses a SOC 2 Type 2 compliant platform. For more information, go to . We remove all sensitive information in-memory and never store your information in our databases.
Go to and select Resources > Documentation.
You can easily . Select your resource from Inventory. Select Codify, and run the generated import command on that code to complete the process.
Yes, .
We do! To activate Dark Mode, select the moon icon in the top right corner.
See .