Our security CLI produced findings engineers couldn't triage without hours of research. We applied Andreas Zeller's defect/infection/failure chain from debugging theory β and triage time collapsed. 50 findings. 4 hours of triage. Our Go CLI scans cloud configurations and reports security misconfigurations. A typical scan produces 50+ findings. Each finding says what control fired, which asset, and what severity. Finding: CTL.IAM.ESCALATION.001 Asset: arn:aws:iam::123456:role/DeployerRole Severity: high Remediation: Restrict iam:PassRole permissions Enter fullscreen mode Exit fullscreen mode An engineer reads this and asks three questions: What is wrong? "Escalation" β but what specifically about this role is the problem? Why does it matter? Is this a theoretical risk or an active exposure? What happens if I ignore it? Account compromise? Data leak? Compliance finding? The finding answers none of these.β¦
