Handles PII
Posture
critical
4
high
5
medium
2
low
6
Ownership
Findings (18)
critical
Container running as root
Burp SuiteDAST
open
7.5
low
Container running as root
SemgrepSAST
open
8.5
high
Path traversal in file download endpoint
SnykSCA
open
4.5
high
Open Redis without auth
CheckmarxSAST
accepted
7.6
low
IAM role with wildcard permissions
CheckovIaC
open
4
critical
Dependency confusion risk on internal package
DependabotSCA
open
4.9
high
Excessive Kubernetes RBAC privileges
OWASP ZAPDAST
open
5.4
medium
Outdated lodash with prototype pollution
Contrast RASPRASP
open
4.4
low
Container running as root
OWASP ZAPDAST
open
7.3
low
Path traversal in file download endpoint
GrypeContainer
triaged
9.2
info
Excessive Kubernetes RBAC privileges
DependabotSCA
open
6.3
critical
SSRF in webhook fetcher
CodeQLSAST
open
4.2
low
Outdated lodash with prototype pollution
CheckovIaC
accepted
6.9
critical
Unencrypted RDS snapshot
WizCSPM
accepted
5.5