Handles PII
Posture
critical
2
high
7
medium
4
low
4
Ownership
Findings (19)
high
Log4Shell vulnerable dependency
ProwlerCSPM
open
5.2
low
Excessive Kubernetes RBAC privileges
Contrast RASPRASP
open
4.3
high
Hardcoded AWS access key in source
GrypeContainer
triaged
5.4
critical
IAM role with wildcard permissions
CheckmarxSAST
triaged
6.4
high
S3 bucket publicly readable
Contrast RASPRASP
open
4.3
info
Hardcoded AWS access key in source
TruffleHogSecrets
open
8
medium
Insecure deserialization in message queue consumer
TruffleHogSecrets
accepted
7.8
high
Race condition in payment idempotency
CheckmarxSAST
open
9.8
low
Missing rate limiting on /login
CheckovIaC
open
4.6
low
Unencrypted RDS snapshot
SnykSCA
triaged
9.4
medium
Unencrypted RDS snapshot
ProwlerCSPM
triaged
8.5
high
Dependency confusion risk on internal package
CodeQLSAST
open
8.2
high
Insecure deserialization in message queue consumer
Contrast RASPRASP
accepted
6.5
info
Hardcoded AWS access key in source
Cloudflare WAFWAF
triaged
4.9
medium
Missing rate limiting on /login
CheckovIaC
open
9