Posture
critical
1
high
6
medium
3
low
3
Ownership
Findings (18)
medium
Log4Shell vulnerable dependency
GitleaksSecrets
open
7.6
high
Race condition in payment idempotency
WizCSPM
accepted
4.7
medium
Open Redis without auth
WizCSPM
triaged
9.1
info
JWT signed with weak HS256 secret
TrivyContainer
open
9
info
Excessive Kubernetes RBAC privileges
Scout SuiteCSPM
open
8.1
low
Dependency confusion risk on internal package
WizCSPM
triaged
9.8
critical
S3 bucket publicly readable
DependabotSCA
false positive
6.9
high
Hardcoded AWS access key in source
CheckovIaC
triaged
4.7
low
Path traversal in file download endpoint
CodeQLSAST
open
5.1
info
JWT signed with weak HS256 secret
CheckovIaC
open
9.2
medium
IAM role with wildcard permissions
Burp Pro PenTestPenTest
open
7.3
high
S3 bucket publicly readable
DependabotSCA
open
4.6
info
Terraform module pins old AMI with CVEs
WizCSPM
open
10
high
Missing CSP header on auth pages
Burp SuiteDAST
open
7
info
Path traversal in file download endpoint
CheckovIaC
accepted
7.1
low
S3 bucket publicly readable
Burp SuiteDAST
false positive
9.7
high
Path traversal in file download endpoint
TruffleHogSecrets
triaged
4.1