CloudSploit can send scan report summaries (a count of passing, warning, failing, unknown, and new risks), as well as per-plugin alerts for scans (e.g. Alert when plugin “Root Account In Use” is in a failing state), or per-event routings (e.g. Alert when AWS CloudTrail API call “deleteSecurityGroup” was detected) for real-time events. For Splunk integrations, CloudSploit can also send a full copy of the scan results in JSON format.