JSON & SARIF Output

JSON

cloud-audit scan --format json --output report.json

Full structured output including scan metadata, all findings, attack chains, cost estimates, and summary. Use for programmatic consumption, data pipelines, or custom dashboards.

SARIF

cloud-audit scan --format sarif --output results.sarif

SARIF v2.1.0 format compatible with GitHub Code Scanning, VS Code SARIF Viewer, and other SARIF-compatible tools. Each rule includes help.markdown with remediation guidance visible in the GitHub Security tab.

See SARIF Integration for GitHub upload setup.