Action Modes
suggest
Dry-run and planning mode with no cloud mutation.
safe
Guarded execution under strict policy checks.
manual_approval
Default mode; execution requires approval.
auto
Policy-controlled automation for pre-approved workflows.
Automation
Action Engine
The Action Engine turns findings into controlled remediations with approval, guardrails, rollback support and audit evidence.
Execution Lifecycle
- 01
User submits an action request from a finding or savings surface.
- 02
Conflict detection validates policy, freeze windows and IaC ownership.
- 03
Role-based approval confirms execution authority.
- 04
Provider adapter executes the canonical action type.
- 05
Result metadata, provider response and evidence are recorded.
- 06
Rollback can run when the action type supports it.
Reliability Controls
- Idempotency keys for request deduplication.
- Correlation IDs across API, queue and provider calls.
- Provider error mapping with retryability signals.
- Readiness and validation reports for rollout confidence.
- Immutable audit logs for every state transition.
Every state-changing action must leave an audit log entry. Rollback is handled as another audited action, not as an invisible undo.
TurboFinOps
Start with one cloud scope. Prove savings fast.
Connect AWS, Azure, or GCP and get actionable findings, score trends, and auditable remediation paths in minutes.
Built for FinOps, governance and audit workflows