Handles PII
Posture
critical
3
high
6
medium
6
low
3
Ownership
Findings (22)
high
Missing CSP header on auth pages
Contrast RASPRASP
accepted
8.7
high
JWT signed with weak HS256 secret
OWASP ZAPDAST
accepted
8.8
medium
Hardcoded AWS access key in source
SemgrepSAST
open
8.2
high
Unencrypted RDS snapshot
OWASP ZAPDAST
open
8.2
critical
Log4Shell vulnerable dependency
CheckmarxSAST
open
9.9
medium
Dependency confusion risk on internal package
SonarQubeSAST
false positive
6.9
low
IAM role with wildcard permissions
SonarQubeSAST
open
4.3
low
Missing CSP header on auth pages
Scout SuiteCSPM
open
7.5
medium
Outdated lodash with prototype pollution
Burp SuiteDAST
triaged
8.7
medium
Race condition in payment idempotency
CheckovIaC
open
8.1
high
IAM role with wildcard permissions
CheckovIaC
open
8.4
info
JWT signed with weak HS256 secret
Burp Pro PenTestPenTest
triaged
7.7
info
Hardcoded AWS access key in source
Cloudflare WAFWAF
open
8
medium
Race condition in payment idempotency
Contrast RASPRASP
false positive
7.6
high
SSRF in webhook fetcher
SemgrepSAST
triaged
6.9
info
JWT signed with weak HS256 secret
TruffleHogSecrets
accepted
4.6
info
Unencrypted RDS snapshot
tfsecIaC
open
4.9
low
Dependency confusion risk on internal package
WizCSPM
open
8.1
critical
Open Redis without auth
GitleaksSecrets
false positive
6.4