Inbox

Open findings across all projects

Severity	Title	Project	Surface	Status	Last seen	Owner
Critical	Publicly accessible database with no authentication	payment-service	Database	Open	2m ago	AK
Critical	AWS secret key hardcoded in repository	backend-api	Repo	Open	15m ago	—
High	RLS policy bypassed via public schema access	user-dashboard	Database	In Progress	1h ago	MR
High	Deploy preview exposed to internet without auth	marketing-site	Deploy	Open	2h ago	JD
Medium	Outdated dependency with known vulnerability	backend-api	Repo	Open	3h ago	—
Critical	Admin panel accessible without MFA	admin-dashboard	Deploy	Open	4h ago	—
Low	Missing security headers in HTTP response	marketing-site	Deploy	Fixed	5h ago	AK
High	Private repository exposed via misconfigured CORS	internal-tools	Repo	Open	6h ago	—
Medium	Database connection string logged in plaintext	backend-api	Deploy	In Progress	8h ago	MR
Low	Deprecated API endpoint still accessible	user-dashboard	Deploy	Accepted	12h ago	—
Critical	JWT secret reused across environments	payment-service	Repo	Open	1d ago	—
High	S3 bucket with public read access	file-storage	Database	Open	1d ago	JD
Medium	Unencrypted data transmission on internal service	internal-tools	Deploy	Open	2d ago	—
Low	Debug mode enabled in production build	user-dashboard	Deploy	Fixed	3d ago	AK