Built-in scenarios (AWS/GCP/Azure)

Run the curated fixture catalog in one click.

These demos are pulled from the same checked-in fixture plans used to exercise the analyzer in the repo. They make the project scope legible without asking someone to prepare Terraform first.

Quiet reference architecture

azure/sample_azure_safe_plan.json

Safe Azure Storage

Hardened Azure Storage with private container access, Shared Key disabled, TLS 1.2, and effective default-deny network rules.

Findings
0
Boundaries
0
Resources
4
0 high 0 medium 0 low
Run built-in report

Storage posture

azure/sample_azure_storage_plan.json

Azure Storage Exposure

Public blob access, Shared Key authorization, legacy TLS, unrestricted network access, and explicit unsupported-resource coverage.

Findings
7
Boundaries
1
Resources
3
2 high 5 medium 0 low
Run built-in report

Provider coverage

azure/sample_azure_plan.json

Mixed Azure Inventory

Azure Storage, public VM, and Key Vault posture alongside unsupported AKS coverage for explicit supported and unsupported reporting.

Findings
24
Boundaries
3
Resources
15
3 high 16 medium 5 low
Run built-in report

Stress-case fixture

azure/sample_azure_nightmare_plan.json

Azure Nightmare Plan

Stacked Azure Storage, public Linux and Windows administration paths, and Key Vault exposure with explicit unsupported-resource coverage.

Findings
36
Boundaries
5
Resources
27
7 high 24 medium 5 low
Run built-in report