Governance
Policies that improve the configuration of your assets to increase performance, usefulness, and security. Use Firefly's built-in policies or create your own.
Firefly uses cloud governance to monitor your assets. We use policies to ensure consistent performance of your cloud services and systems.
Policies are created by the Open Policy Agent (OPA) Rego language. Rego is a declarative language used to define rules and constraints for policy evaluation. OPA provides the platform to write complex policies to identify anomalies, misconfigurations, and poor practices. Firefly uses OPA to identify Insights on your assets.
Firefly categorizes policies into three types:
Misconfiguration: Reduce the attack surface and increase security
Optimization: Reduce costs and eliminate waste
Reliability: Increase reliability, throughput, performance, and eliminate the risk of downtime
Policies appear in the Dashboard and Inventory:
Built-in policies
Custom policies
Create custom policies using rules written in the Rego language. For detailed instructions, see Creating custom policies.
Policy notifications
Receive notifications whenever a new asset aligns with that particular policy. This feature works for both built-in and custom insights. You can receive notifications from both the Governance page and the Notifications page.
To receive to a notification from the Governance page, select + Custom Control and select the checkbox and the destination
To subscribe to an Insight from the Notifications page, select + Add new.
Last updated
