Handles PII
Posture
critical
3
high
6
medium
9
low
8
Ownership
Findings (27)
critical
S3 bucket publicly readable
GrypeContainer
open
6.3
medium
Dependency confusion risk on internal package
SemgrepSAST
false positive
9.3
low
JWT signed with weak HS256 secret
TrivyContainer
open
6.5
high
Excessive Kubernetes RBAC privileges
Burp Pro PenTestPenTest
open
7.8
medium
Container running as root
GrypeContainer
open
4.4
medium
Open Redis without auth
TruffleHogSecrets
open
6.1
low
IAM role with wildcard permissions
WizCSPM
open
5.7
medium
Open Redis without auth
tfsecIaC
false positive
4.1
low
Insecure deserialization in message queue consumer
tfsecIaC
open
7
critical
Insecure deserialization in message queue consumer
GitleaksSecrets
accepted
8.4
medium
Hardcoded AWS access key in source
SnykSCA
open
9.7
low
Terraform module pins old AMI with CVEs
Cloudflare WAFWAF
open
6.6
critical
S3 bucket publicly readable
CheckmarxSAST
accepted
9.3
low
Missing rate limiting on /login
SonarQubeSAST
false positive
6.3
info
Path traversal in file download endpoint
Contrast RASPRASP
open
7.1
medium
Open Redis without auth
CheckmarxSAST
accepted
4.1
high
SQL Injection in user-input handler
GrypeContainer
false positive
6.2
high
Unencrypted RDS snapshot
tfsecIaC
open
6.9