Internet-exposed
Handles PII
Posture
critical
2
high
5
medium
7
low
4
Ownership
Findings (23)
high
Insecure deserialization in message queue consumer
CheckovIaC
triaged
4.4
medium
Cross-site Scripting in profile renderer
Contrast RASPRASP
open
7.3
critical
SSRF in webhook fetcher
TrivyContainer
triaged
5.3
medium
Unencrypted RDS snapshot
SemgrepSAST
triaged
9.5
low
SQL Injection in user-input handler
WizCSPM
open
9.4
low
S3 bucket publicly readable
DependabotSCA
open
5.7
high
IAM role with wildcard permissions
OWASP ZAPDAST
open
9.8
critical
Path traversal in file download endpoint
SnykSCA
false positive
6.7
info
Open Redis without auth
TruffleHogSecrets
triaged
5.3
medium
Missing rate limiting on /login
CodeQLSAST
open
9.2
medium
Dependency confusion risk on internal package
TrivyContainer
triaged
5.6
info
JWT signed with weak HS256 secret
ProwlerCSPM
open
8.8
low
Insecure deserialization in message queue consumer
TrivyContainer
open
8.9
high
Race condition in payment idempotency
WizCSPM
open
4.9
info
S3 bucket publicly readable
WizCSPM
open
8.4
medium
Log4Shell vulnerable dependency
CheckmarxSAST
open
7.4
high
Container running as root
SemgrepSAST
open
9.8
medium
Log4Shell vulnerable dependency
DependabotSCA
open
4.4
info
Insecure deserialization in message queue consumer
CodeQLSAST
triaged
7.2