Handles PII
Posture
critical
2
high
3
medium
7
low
4
Ownership
Findings (18)
critical
Hardcoded AWS access key in source
SonarQubeSAST
open
7.5
medium
Excessive Kubernetes RBAC privileges
SemgrepSAST
open
4.1
medium
JWT signed with weak HS256 secret
ProwlerCSPM
false positive
7.8
medium
Cross-site Scripting in profile renderer
SnykSCA
open
9.4
low
Missing CSP header on auth pages
TrivyContainer
triaged
4.9
medium
Insecure deserialization in message queue consumer
TrivyContainer
accepted
8.9
high
Open Redis without auth
Cloudflare WAFWAF
triaged
7.3
medium
Path traversal in file download endpoint
CodeQLSAST
triaged
8.9
info
Outdated lodash with prototype pollution
SonarQubeSAST
open
5.7
high
Hardcoded AWS access key in source
Scout SuiteCSPM
triaged
4.2
info
Missing CSP header on auth pages
SonarQubeSAST
triaged
9
high
Terraform module pins old AMI with CVEs
SonarQubeSAST
open
10
critical
Container running as root
Cloudflare WAFWAF
open
7.5
medium
Log4Shell vulnerable dependency
OWASP ZAPDAST
open
5.9
low
Excessive Kubernetes RBAC privileges
GrypeContainer
false positive
8.2
low
Insecure deserialization in message queue consumer
tfsecIaC
false positive
8.3