Posture
critical
1
high
3
medium
5
low
5
Ownership
Findings (15)
medium
Missing CSP header on auth pages
CheckovIaC
false positive
7.7
medium
Cross-site Scripting in profile renderer
GrypeContainer
triaged
4.4
low
Missing CSP header on auth pages
CodeQLSAST
false positive
7
low
Race condition in payment idempotency
tfsecIaC
accepted
4.2
info
Missing rate limiting on /login
Burp SuiteDAST
open
8.4
high
Container running as root
CheckovIaC
open
7.8
medium
Dependency confusion risk on internal package
WizCSPM
triaged
6.3
high
Hardcoded AWS access key in source
SemgrepSAST
open
5.4
critical
SSRF in webhook fetcher
GitleaksSecrets
open
6.7
medium
IAM role with wildcard permissions
GitleaksSecrets
false positive
8.7
medium
Excessive Kubernetes RBAC privileges
WizCSPM
false positive
8.2
low
Cross-site Scripting in profile renderer
CodeQLSAST
open
6.6
high
Missing CSP header on auth pages
DependabotSCA
triaged
4.7
low
IAM role with wildcard permissions
GitleaksSecrets
open
7.4
low
Race condition in payment idempotency
GrypeContainer
triaged
8.2