CF Guard DeskCF Guard DESK
See pricingIndie / Pro / Consultant
Navigation
See pricingannual pricing emphasizedRead docs
CF Guard DeskCF Guard DESK
See pricingIndie / Pro / Consultant
Navigation
See pricingannual pricing emphasizedRead docs
DocsOperations

Findings and posture scoring

Findings are intended to be reviewable, reproducible, and explainable.

Operators and reviewers who need defensible findings output7 minCore workflowUpdated March 19, 2026
WindowsmacOSLinux
FindingsScoringExportsHistory

How the current finding taxonomy works, how severity and confidence differ, and why reproducibility matters for later review.

  • Current finding families
  • Severity and confidence model
  • Cross-signal risk rationale
  • Reproducibility metadata
Applies to
WindowsmacOSLinux
Covers
FindingsScoringExportsHistory

Findings and posture scoring

Finding families

The current product ships with these finding families:

  • WAF coverage
  • WAF rule quality
  • DNS exposure
  • DNS hygiene
  • bot pressure
  • cache risk
  • cross-signal risk
  • visibility gap

Severity vs confidence

These should not be treated as the same field.

  • Severity answers how bad the issue is if true.
  • Confidence answers how strongly the available evidence supports the finding.

Why cross-signal risk matters

Some issues are dangerous because several weaker signals line up. Combining those signals is more useful than treating each one as a separate low-grade warning.

Reproducibility

The product keeps rule-pack and score-model metadata attached to the scan context so later review can answer what logic produced the result.