Posture
critical
4
high
4
medium
10
low
2
Ownership
Findings (21)
medium
Excessive Kubernetes RBAC privileges
TruffleHogSecrets
open
8.7
medium
Excessive Kubernetes RBAC privileges
Burp Pro PenTestPenTest
triaged
7.2
critical
SSRF in webhook fetcher
DependabotSCA
triaged
4.4
low
Unencrypted RDS snapshot
Cloudflare WAFWAF
open
5
high
Log4Shell vulnerable dependency
Scout SuiteCSPM
false positive
5.8
medium
Excessive Kubernetes RBAC privileges
OWASP ZAPDAST
triaged
4.5
critical
IAM role with wildcard permissions
Cloudflare WAFWAF
open
6.6
medium
JWT signed with weak HS256 secret
GrypeContainer
false positive
5.7
high
Dependency confusion risk on internal package
DependabotSCA
open
8.2
medium
Missing CSP header on auth pages
CheckovIaC
open
4
low
Hardcoded AWS access key in source
OWASP ZAPDAST
open
9.1
critical
Outdated lodash with prototype pollution
Burp Pro PenTestPenTest
accepted
5.2
medium
JWT signed with weak HS256 secret
Cloudflare WAFWAF
open
6.3
medium
Container running as root
OWASP ZAPDAST
false positive
7.2
medium
Container running as root
CodeQLSAST
triaged
8.7
info
SSRF in webhook fetcher
CheckmarxSAST
accepted
5.3