Posture
critical
5
high
5
medium
5
low
5
Ownership
Findings (22)
low
Dependency confusion risk on internal package
TrivyContainer
triaged
4.4
low
Insecure deserialization in message queue consumer
CheckmarxSAST
triaged
7.5
medium
SQL Injection in user-input handler
OWASP ZAPDAST
open
8.2
low
Dependency confusion risk on internal package
CheckovIaC
open
7.7
critical
JWT signed with weak HS256 secret
GrypeContainer
triaged
8.4
high
Missing CSP header on auth pages
SemgrepSAST
open
7.3
critical
JWT signed with weak HS256 secret
GitleaksSecrets
open
5.6
medium
Unencrypted RDS snapshot
Cloudflare WAFWAF
open
6.1
critical
IAM role with wildcard permissions
GitleaksSecrets
false positive
8.1
medium
JWT signed with weak HS256 secret
TrivyContainer
open
4.1
info
SSRF in webhook fetcher
DependabotSCA
triaged
8.9
info
Excessive Kubernetes RBAC privileges
Cloudflare WAFWAF
open
7.2
low
SQL Injection in user-input handler
DependabotSCA
open
4.7
medium
Log4Shell vulnerable dependency
SonarQubeSAST
open
4
high
Log4Shell vulnerable dependency
Burp SuiteDAST
false positive
9