Monitor your IaC environment

You can monitor code repositories you've added to Sophos Cloud Optix.

To see the repositories to which you've granted access, or from which events are received, go to Settings and click Environments and click IaC Environments.

You can also see reports and alerts for your repositories.

Get IaC reports

You can see reports generated by analysis of the files in your repositories. Go to Compliance > Reports.

Note You only see reports corresponding to configurations we can classify as related to Terraform, AWS CloudFormation, Kubernetes, or Ansible. So you might not see reports on all repository push events.

Image of an IaC report summary

See IaC alerts

To see IaC alerts:

  1. Go to Alerts and look for alerts with IaC in the Type column. You can filter the list to show only these alerts.

    Image of IaC alerts filtered by type

  2. Click an alert for more details.

    Image of alert details

  3. Click the plus sign next to a resource for more details. This shows the branch, repository, file name, and the variable which contains the resource's reference. You can use this information to identify the resource and fix the issue.

    Image of resource details