Handles PII
Posture
critical
1
high
6
medium
8
low
5
Ownership
Findings (22)
high
Race condition in payment idempotency
TrivyContainer
triaged
4.8
info
IAM role with wildcard permissions
WizCSPM
open
8.3
low
Log4Shell vulnerable dependency
Scout SuiteCSPM
open
6.9
high
Race condition in payment idempotency
Cloudflare WAFWAF
open
4.6
low
Terraform module pins old AMI with CVEs
DependabotSCA
accepted
4.8
medium
IAM role with wildcard permissions
GitleaksSecrets
accepted
4.3
high
Hardcoded AWS access key in source
SnykSCA
open
7.8
high
Container running as root
OWASP ZAPDAST
open
7.4
critical
Container running as root
Contrast RASPRASP
accepted
5.1
high
Unencrypted RDS snapshot
SnykSCA
false positive
9.6
medium
Missing CSP header on auth pages
Contrast RASPRASP
open
5.6
medium
Missing rate limiting on /login
SemgrepSAST
open
8.9
high
Dependency confusion risk on internal package
CheckmarxSAST
open
4.2
medium
Container running as root
Burp Pro PenTestPenTest
open
10
medium
Path traversal in file download endpoint
CheckovIaC
triaged
8.1
medium
Excessive Kubernetes RBAC privileges
tfsecIaC
accepted
7.9
medium
Unencrypted RDS snapshot
CheckovIaC
false positive
4.4
low
JWT signed with weak HS256 secret
CheckovIaC
open
7.2
medium
Outdated lodash with prototype pollution
Scout SuiteCSPM
open
5.5