Synopsis
cloudburn rules list [--service <services>] [--source <sources>]
Description
Lists all built-in CloudBurn rules. Use this command to discover available rule IDs, understand which services are covered, and see which scan modes (IaC or discovery) each rule supports.
Flags
| Flag | Type | Default | Description |
|---|---|---|---|
--service | string | all services | Comma-separated list of services to filter by (e.g. ec2,ebs). |
--source | string | all sources | Comma-separated list of sources to filter by. Valid values: iac, discovery. |
Output columns
| Column | Description |
|---|---|
| RuleId | Unique rule identifier (e.g. CLDBRN-AWS-EBS-1) |
| Provider | Cloud provider (aws) |
| Service | AWS service the rule targets (e.g. ebs, ec2) |
| Supports | Which scan modes support this rule: iac, discovery, or both |
| Name | Short rule name |
| Description | What the rule checks and why it matters |
Examples
List all rules:
cloudburn rules list
List rules for EC2 only:
cloudburn rules list --service ec2
List rules supported by discovery mode for EC2:
cloudburn rules list --service ec2 --source discovery
List IaC-only rules for EBS and S3:
cloudburn rules list --service ebs,s3 --source iac
Rule documentation
For detailed documentation on each rule, see CloudBurn Rules.
What's next
| Rules | Detailed documentation for every rule |
| Configuration | Use rule IDs in enabled-rules / disabled-rules |
| cloudburn scan | Run a scan with specific rules enabled |