Internet-exposed
Posture
critical
2
high
7
medium
3
low
3
Ownership
Findings (19)
high
SQL Injection in user-input handler
GrypeContainer
accepted
9.7
high
Dependency confusion risk on internal package
Cloudflare WAFWAF
triaged
7.6
critical
Open Redis without auth
tfsecIaC
open
8.6
medium
Race condition in payment idempotency
GrypeContainer
accepted
5.3
high
Outdated lodash with prototype pollution
Cloudflare WAFWAF
open
4.2
low
Container running as root
GitleaksSecrets
open
8.1
medium
IAM role with wildcard permissions
GitleaksSecrets
open
8.9
info
Missing rate limiting on /login
GitleaksSecrets
open
5.1
high
Log4Shell vulnerable dependency
CodeQLSAST
false positive
4.7
critical
Excessive Kubernetes RBAC privileges
Cloudflare WAFWAF
false positive
4.5
high
S3 bucket publicly readable
TrivyContainer
open
6.4
low
Race condition in payment idempotency
SnykSCA
open
7.9
high
Terraform module pins old AMI with CVEs
TrivyContainer
triaged
5.1