Internet-exposed
Handles PII
Posture
critical
4
high
5
medium
3
low
4
Ownership
Findings (20)
medium
Insecure deserialization in message queue consumer
tfsecIaC
open
6.6
high
Path traversal in file download endpoint
ProwlerCSPM
accepted
9
low
Missing CSP header on auth pages
SnykSCA
open
8.5
medium
Cross-site Scripting in profile renderer
tfsecIaC
triaged
6
info
Missing rate limiting on /login
GrypeContainer
triaged
4.6
low
Terraform module pins old AMI with CVEs
TrivyContainer
triaged
9.4
high
SSRF in webhook fetcher
ProwlerCSPM
accepted
8.3
info
S3 bucket publicly readable
TruffleHogSecrets
accepted
8.2
low
Cross-site Scripting in profile renderer
CodeQLSAST
accepted
8.1
critical
Container running as root
SonarQubeSAST
open
8.7
info
SQL Injection in user-input handler
OWASP ZAPDAST
open
4.4
critical
IAM role with wildcard permissions
ProwlerCSPM
open
5.4
critical
Dependency confusion risk on internal package
Scout SuiteCSPM
triaged
5.2
low
Unencrypted RDS snapshot
DependabotSCA
accepted
7.3
info
Path traversal in file download endpoint
Scout SuiteCSPM
open
5.1
high
Terraform module pins old AMI with CVEs
SnykSCA
open
9.4
high
Log4Shell vulnerable dependency
Contrast RASPRASP
false positive
10