Handles PII
Posture
critical
3
high
1
medium
6
low
3
Ownership
Findings (15)
medium
Unencrypted RDS snapshot
CodeQLSAST
triaged
5.2
info
Missing rate limiting on /login
SemgrepSAST
open
4.3
low
Race condition in payment idempotency
OWASP ZAPDAST
triaged
8.7
critical
Race condition in payment idempotency
Burp Pro PenTestPenTest
false positive
8.7
medium
Excessive Kubernetes RBAC privileges
Cloudflare WAFWAF
triaged
5.1
medium
Excessive Kubernetes RBAC privileges
GitleaksSecrets
open
8.4
low
Dependency confusion risk on internal package
Burp SuiteDAST
triaged
8.1
low
Insecure deserialization in message queue consumer
CheckmarxSAST
triaged
8.1
medium
Container running as root
GitleaksSecrets
open
6.2
high
Insecure deserialization in message queue consumer
OWASP ZAPDAST
false positive
4.8
critical
SQL Injection in user-input handler
DependabotSCA
triaged
7.8
medium
Missing rate limiting on /login
TrivyContainer
false positive
8.4