Navigating the IaC Explorer

The IaC Explorer provides full visibility of your IaC stacks, including all of their components.

Use the filters and tables below to view detailed information about the following types of IaC stacks:
​Terraform​
​Applied Stacks​
​Modules​
​Providers​
​Backends​
​Helm​
​Kustomize​
​Argo Directory​
​CloudFormation​
Firefly does not support all providers. If you would like Firefly to support your provider type, let us know.
Terraform
Filter
Description
IaC Status
State of the IaC:
Contains Drifts: IaC stack contains drifted assets
Contains Ghost: IaC stack contains ghost assets
Active: Assets managed by the IaC stack are deployed
Empty: IaC does not contain managed assets 
Unavailable: The IaC stack is unavailable for Firefly integration
Scanning: Firefly is scanning the IaC stack
Not Supported: Firefly does not support the IaC stack provider or the asset types
Corrupted: IaC stack is corrupted                                                   
Data Source
Integrated cloud or SaaS provider
Data Source Status
If the provider is supported by or integrated with Firefly
Backend
Where the IaC stack is stored
Asset Type
Type of asset described by the IaC stack
Applied Stacks
Column
Description
+ 
Opens the module calls to the Terraform stack 
Module Call Name opens the module call block code in your VCS
Module Name opens the module implementation folder in your VCS
Module Version version that was used to deploy the module call
Misconfigurations displays the number of IaC stacks with security controls that are inaccurately configured or left insecure. (Risk levels are based on Trivy)
Assets opens the assets generated by the IaC module call
Name
Name the provider gives to the asset
Version
Terraform version according to IaC type
IaC Status
Percentage of assets managed by code
Backend
Where the IaC stack is stored
Data Source
Type of asset described by the IaC stack
Last Applied
The last time the terraform apply command was used
Assets
Opens the assets generated by the IaC stack
To view the IaC stack file and its properties, select the kebab 
at the end of the row. 
Stack Contents displays the IaC stack file.
Properties displays your Providers (integrations) and Assets (not supported).
To create a map of your cloud infrastructure, select Map.
Modules
After you integrate your VCS, Firefly scans the code to locate your Terraform modules. Selecting the module opens that folder in your integrated VCS.
Column
Description
+
Select Low, Medium, High, or Critical to show more information about that level of security risk
Select the file to open the IaC stack in your integrated VCS
Name
Opens the location in your integrated VCS where the module is stored
Repository
Repository where your module is located
Last Contributor
Last user to make changes to the module
Misconfigurations
Displays the number of IaC stacks with security controls that are inaccurately configured or left insecure. (Risk levels are based on Trivy).
Last Module Update
When the module was last updated
State Files
List of stacks containing the modules
Providers
Select the Plus icon to open the table below:
Column
Description
Provider ID
ID of the integration
Status
If the cloud provider is supported by or integrated with Firefly
If a IaC stack is missing an integration, you can add it by selecting +Add Integration 
Number of state files
Number of state files managed by the integration
Backends
View and manage the location where your IaC stacks are stored.
Column
Description
Integration
Name of the integration between Firefly and the service provider where the backend is located
Backend
Where the IaC stack is stored
Stacks
Number of IaC stacks stored in the backend
Last Scan Date
Last time the backend was scanned
Scan Now
Scans the backend for updated IaC stacks
Settings
Backend Settings
Exclusions
Add an exclusion pattern (according to the location of a IaC stack) to prevent that IaC stack from being scanned
Encryption
Supply a GCS encryption key that enables Firefly to access your IaC stack data
Event-driven
Copy and run the Terraform code in your Terraform repository to enable event-driven backend scanning
Helm Installed Charts
Column
Description
Name
Opens the location of the chart
Chart Status
Status of chart deployment
Chart
Kubernetes name of the chart
Chart Version
Version of the chart
App Version
Version of the application in the chart
Revision
Revision number for the release
Cluster
Kubernetes cluster name
Namespace
Namespace where the chart was deployed
Last Applied
The last time the chart was updated
Assets
Opens the assets generated by the chart
To view the IaC stack file and its properties, select the kebab 
at the end of the row. 
Stack Contents displays the IaC stack file
Properties displays your Providers (integrations)
Kustomize Installed Artifacts
Column
Description
Name
Opens the Kustomize application
Revision
Revision number for the release
Cluster
Kubernetes cluster name
Namespace
Namespace where the Kustomize application was deployed
Last Applied
The last time the application was updated
Assets
Opens the assets generated by the application
To view the providers of your Kustomize application, select the kebab 
at the end of the row. 
Argo Directory Installed Artifacts
Column
Description
Name
Opens the Argo Directory application
Revision
Revision number for the release
Cluster
Kubernetes cluster name
Namespace
Namespace where the Argo Directory application was deployed
Last Applied
The last time the application was updated
Assets
Opens the assets generated by the application
To view the providers of your Argo Directory application, select the kebab 
at the end of the row. 
CloudFormation Applied Stacks
Column
Description
Name
Opens the link in the AWS console to the CloudFormation stack remote location
Status
IaC status in AWS
IaC Status
Percentage of assets managed by code
Description
Comments about your IaC stack
Region
Region the stack was deployed
Created time
When the IaC stack was deployed
Assets
Opens the assets generated by the IaC stack
To view the IaC stack file and its properties, select the kebab 
at the end of the row. 
Stack Contents displays the IaC stack file.
Properties displays your Providers (integrations) and Assets (not supported asset types). 

Filter	Description
IaC Status	State of the IaC: Contains Drifts: IaC stack contains drifted assets Contains Ghost: IaC stack contains ghost assets Active: Assets managed by the IaC stack are deployed Empty: IaC does not contain managed assets Unavailable: The IaC stack is unavailable for Firefly integration Scanning: Firefly is scanning the IaC stack Not Supported: Firefly does not support the IaC stack provider or the asset types Corrupted: IaC stack is corrupted
Data Source	Integrated cloud or SaaS provider
Data Source Status	If the provider is supported by or integrated with Firefly
Backend	Where the IaC stack is stored
Asset Type	Type of asset described by the IaC stack

Column	Description
+	Opens the module calls to the Terraform stack Module Call Name opens the module call block code in your VCS Module Name opens the module implementation folder in your VCS Module Version version that was used to deploy the module call Misconfigurations displays the number of IaC stacks with security controls that are inaccurately configured or left insecure. (Risk levels are based on Trivy) Assets opens the assets generated by the IaC module call
Name	Name the provider gives to the asset
Version	Terraform version according to IaC type
IaC Status	Percentage of assets managed by code
Backend	Where the IaC stack is stored
Data Source	Type of asset described by the IaC stack
Last Applied	The last time the `terraform apply` command was used
Assets	Opens the assets generated by the IaC stack

Column	Description
+	Select Low, Medium, High, or Critical to show more information about that level of security risk Select the file to open the IaC stack in your integrated VCS
Name	Opens the location in your integrated VCS where the module is stored
Repository	Repository where your module is located
Last Contributor	Last user to make changes to the module
Misconfigurations	Displays the number of IaC stacks with security controls that are inaccurately configured or left insecure. (Risk levels are based on Trivy).
Last Module Update	When the module was last updated
State Files	List of stacks containing the modules

Column	Description
Provider ID	ID of the integration
Status	If the cloud provider is supported by or integrated with Firefly If a IaC stack is missing an integration, you can add it by selecting +Add Integration
Number of state files	Number of state files managed by the integration

Column	Description
Integration	Name of the integration between Firefly and the service provider where the backend is located
Backend	Where the IaC stack is stored
Stacks	Number of IaC stacks stored in the backend
Last Scan Date	Last time the backend was scanned
Scan Now	Scans the backend for updated IaC stacks

Settings	Backend Settings
Exclusions	Add an exclusion pattern (according to the location of a IaC stack) to prevent that IaC stack from being scanned
Encryption	Supply a GCS encryption key that enables Firefly to access your IaC stack data
Event-driven	Copy and run the Terraform code in your Terraform repository to enable event-driven backend scanning

Column	Description
Name	Opens the location of the chart
Chart Status	Status of chart deployment
Chart	Kubernetes name of the chart
Chart Version	Version of the chart
App Version	Version of the application in the chart
Revision	Revision number for the release
Cluster	Kubernetes cluster name
Namespace	Namespace where the chart was deployed
Last Applied	The last time the chart was updated
Assets	Opens the assets generated by the chart

Column	Description
Name	Opens the Kustomize application
Revision	Revision number for the release
Cluster	Kubernetes cluster name
Namespace	Namespace where the Kustomize application was deployed
Last Applied	The last time the application was updated
Assets	Opens the assets generated by the application

Column	Description
Name	Opens the Argo Directory application
Revision	Revision number for the release
Cluster	Kubernetes cluster name
Namespace	Namespace where the Argo Directory application was deployed
Last Applied	The last time the application was updated
Assets	Opens the assets generated by the application

Column	Description
Name	Opens the link in the AWS console to the CloudFormation stack remote location
Status	IaC status in AWS
IaC Status	Percentage of assets managed by code
Description	Comments about your IaC stack
Region	Region the stack was deployed
Created time	When the IaC stack was deployed
Assets	Opens the assets generated by the IaC stack

User Guides - Previous

Generating new configuration

Next - User Guides

Integrations

Last modified 3mo ago