Use cases

How teams use Cloud Reviewer

Cloud Reviewer unifies SAST, SCA (SBOM), and DAST results and adds prioritization so teams can move from scan to action.

Track posture across products, monitor trends, and surface recurring weakness patterns (CWE) that drive risk.

Filter by product/version, download SBOMs, and quickly identify dependency upgrades and remediation paths.

Run scans from CI/CD and keep results as a system-of-record for audits, comparisons, and regressions.

Scenarios

Example scenarios

A pipeline triggers SAST + SCA on a commit SHA; Cloud Reviewer ingests results, compares runs, and the team fixes the highest-impact issues first.

SCA detects a critical CVE; SBOM confirms impacted services; teams prioritize upgrades across products and versions with traceable decisions.