Posture
critical
1
high
4
medium
8
low
6
Ownership
Findings (22)
info
Missing CSP header on auth pages
Burp Pro PenTestPenTest
open
4.2
low
Excessive Kubernetes RBAC privileges
Burp Pro PenTestPenTest
open
4.1
high
Excessive Kubernetes RBAC privileges
tfsecIaC
open
5.8
medium
Unencrypted RDS snapshot
DependabotSCA
triaged
6.9
low
Open Redis without auth
CheckovIaC
open
9.6
medium
Excessive Kubernetes RBAC privileges
SnykSCA
accepted
8.1
medium
Open Redis without auth
TrivyContainer
triaged
4.7
medium
Excessive Kubernetes RBAC privileges
Burp SuiteDAST
false positive
7.1
medium
S3 bucket publicly readable
SnykSCA
open
6.8
low
IAM role with wildcard permissions
Cloudflare WAFWAF
open
9.4
medium
Hardcoded AWS access key in source
CheckovIaC
open
4.2
info
JWT signed with weak HS256 secret
TruffleHogSecrets
open
6
high
Excessive Kubernetes RBAC privileges
Burp SuiteDAST
triaged
5
critical
Cross-site Scripting in profile renderer
tfsecIaC
open
8.5
high
Container running as root
CheckovIaC
open
8.7
high
Missing rate limiting on /login
SnykSCA
open
8.6
low
S3 bucket publicly readable
Cloudflare WAFWAF
open
7.6
low
Cross-site Scripting in profile renderer
Contrast RASPRASP
triaged
7.1
medium
Insecure deserialization in message queue consumer
Burp SuiteDAST
open
5.8