Internet-exposed
Handles PII
Posture
critical
2
high
5
medium
11
low
5
Ownership
Findings (24)
medium
Insecure deserialization in message queue consumer
DependabotSCA
false positive
4
low
Terraform module pins old AMI with CVEs
tfsecIaC
triaged
9.9
medium
Missing CSP header on auth pages
GitleaksSecrets
triaged
6.2
high
Path traversal in file download endpoint
CheckmarxSAST
open
9.8
medium
Open Redis without auth
OWASP ZAPDAST
open
6.1
high
SSRF in webhook fetcher
CheckovIaC
open
8.6
critical
Missing CSP header on auth pages
DependabotSCA
open
5
medium
Container running as root
ProwlerCSPM
open
9.3
medium
Unencrypted RDS snapshot
OWASP ZAPDAST
open
5.5
medium
IAM role with wildcard permissions
GrypeContainer
open
7.9
medium
JWT signed with weak HS256 secret
tfsecIaC
open
7.9
low
Unencrypted RDS snapshot
GrypeContainer
triaged
7.1
low
Log4Shell vulnerable dependency
DependabotSCA
triaged
5.7
high
JWT signed with weak HS256 secret
CodeQLSAST
triaged
6.9
medium
S3 bucket publicly readable
WizCSPM
open
7.1
high
Excessive Kubernetes RBAC privileges
SnykSCA
open
6.3
high
Open Redis without auth
DependabotSCA
false positive
8.3
medium
Missing CSP header on auth pages
TruffleHogSecrets
triaged
9.4
low
JWT signed with weak HS256 secret
Contrast RASPRASP
open
8.3
low
Container running as root
SonarQubeSAST
accepted
5.2
critical
Container running as root
Burp Pro PenTestPenTest
accepted
6.5