Security Analyzer
Vulnerability detection and OWASP risk assessment
74
Security Score
Some vulnerabilities detected
3
Critical Severity
11
High Severity
24
Medium Severity
9
Low Severity
Vulnerability Breakdown
OWASP Risk Categories
Broken Access Control
OWASP Top 10 — A01
Cryptographic Failures
OWASP Top 10 — A02
Injection
OWASP Top 10 — A03
Security Misconfiguration
OWASP Top 10 — A05
Authentication Failures
OWASP Top 10 — A07
Security Logging Failures
OWASP Top 10 — A09
Security Issues
| Rule | Issue | Category | Severity | Location | OWASP |
|---|---|---|---|---|---|
| SEC-001 | SQL Injection via user input | Injection | critical | models/sale_order.py:142 | A03 |
| SEC-008 | Hardcoded credentials detected | Config | critical | config/settings.py:28 | A02 |
| SEC-014 | Missing CSRF protection on route | Auth | high | controllers/portal.py:88 | A01 |
| SEC-021 | Sensitive data logged in plain text | Exposure | high | models/hr_payslip.py:310 | A09 |
| SEC-007 | Unsafe deserialisation of user data | Injection | high | models/import_wizard.py:54 | A08 |