Add cloud-audit to Infrastructure & DevOps category

[gebalamariusz]

Adds cloud-audit to the Infrastructure & DevOps category.

cloud-audit is an open-source AWS security scanner written in Python (MIT license).

• PyPI: pip install cloud-audit
• GitHub: https://github.com/gebalamariusz/cloud-audit
• 47 curated checks with AWS CLI and Terraform remediation
• Attack chain detection and diff command for CI/CD
• SARIF output for GitHub Code Scanning

---

Summary by cubic

Add cloud-audit to the Infrastructure & DevOps catalog to surface an open-source AWS security scanner.
Updates projects.yaml to include github_id: gebalamariusz/cloud-audit and pypi_id: cloud-audit, and removes an incorrect conda_id.

^{Written for commit 424dfec. Summary will update on new commits.}

[cubic-dev-ai]

1 issue found across 1 file

Prompt for AI agents (unresolved issues)

Check if these issues are valid — if so, understand the root cause of each and fix them. If appropriate, use sub-agents to investigate and fix each issue separately.


<file name="projects.yaml">

<violation number="1" location="projects.yaml:735">
P2: `cloud-audit` is configured with `awscli`’s `conda_id`, causing incorrect package metadata/linking for the new project.</violation>
</file>

---

Since this is your first cubic review, here's how it works:

• cubic automatically reviews your code and comments on bugs and improvements
• Teach cubic by replying to its comments. cubic learns from your replies and gets better over time
• Add one-off context when rerunning by tagging @cubic-dev-ai with guidance or docs links (including llms.txt)
• Ask questions if you need clarification on any suggestion

_{Reply with feedback, questions, or to request a fix. Tag @cubic-dev-ai to re-run a review.}

[olanzo627]

Last first middle