Cloud Aegis Documentation
Cloud Aegis is an enterprise cloud governance platform that unifies CSPM findings, AI-powered risk scoring, policy enforcement, and automated remediation across AWS, Azure, and GCP.
Quick Links
| Section | Description |
|---|---|
| Architecture | High-Level Design, Detailed Design, DR/BC |
| ADRs | 19 Architecture Decision Records |
| Diagrams | System architecture and flow diagrams |
| API Reference | Interactive OpenAPI explorer (82 operations) |
| CSPM Aggregator | Multi-cloud finding aggregation module |
| Runbooks | 9 operational runbooks |
| Security | STRIDE threat model |
Architecture at a Glance
For the detailed component-level diagram, see Diagrams.
Key Capabilities
- Multi-cloud CSPM -- Normalize findings from AWS Security Hub, Azure Defender, GCP SCC, Trivy, and Prowler into a unified schema
- AI Risk Scoring -- LLM-powered severity re-scoring considering asset tier, environment, exposure, and blast radius
- Dual-OPA Policy -- External OPA server for cloud provisioning + embedded Go SDK for AI agent governance
- Automated Remediation -- Dispatcher routes findings to provider-specific handlers with approval workflows
- FinOps Integration -- Multi-cloud cost aggregation with anomaly detection
- Graph Analysis -- PuppyGraph-backed attack path computation and resource relationship mapping