Describes a potential weakness in cloud resource/asset configuration that
increases risk.
Observation
Describes a security observation that is for informational purposes.
PostureViolation
Describes a potential security risk due to a change in the security
posture.
SccError
Describes an error that prevents some SCC functionality.
Threat
Describes unwanted or malicious activity.
ToxicCombination
Describes a group of security issues that, when the issues
occur together, represent a greater risk than when the issues occur
independently. A group of such issues is referred to as a toxic
combination.
Unspecified
Unspecified finding class.
Vulnerability
Describes a potential weakness in software that increases risk to
Confidentiality & Integrity & Availability.