FinOps detections
- Unattached storage volume
- Underutilized compute
- Underutilized database
- Stale snapshot retention
- Unattached public IP
- Commitment savings opportunity
- Burn-rate anomaly
Detection
Detection Catalog
Detections power prioritized savings actions, remediation approvals, and receipt-ready evidence.
Detection Conventions
Detections are grouped by the work they drive: savings, remediation risk, ownership, and evidence.
Each detection declares provider scope, cloud partition support, severity, and fixability.
Fixable detections include a recommended action, owner context, and required evidence fields.
Customer-facing reports show the detection name, affected resource, severity, financial impact, and action path.
Security detections
- Unauthorized region deployment
- Public network exposure
- Overly permissive IAM policy
- Database public access enabled
- Logging disabled
- Unencrypted storage resource
Ownership and evidence detections
- Missing owner tag
- Missing cost center tag
- Missing environment tag
- Missing project/application tag
- Missing managed-by tag
- Evidence readiness baseline
Get started
Find recoverable spend before the next invoice lands.
Connect one AWS, Azure or GCP scope, approve the safest savings actions, and give finance a receipt when the savings verify.
Read-only scan first. Approval gates before remediation.