Overview

Have a look at your secure software development lifecycle posture assessment and get an overview of the risks this specific repository poses to your organization.

Security Posture

The security posture of the repository is determined by the compliance of the repository with the security policies of the organization.

10 controls are failing

To-Do's

Tasks that need to be completed before the repository is ready for production, ordered by priority.

CIA requirements set for assetCould not evaluate control

This policy checks if the CIA (Confidentiality, Integrity, Availability) requirements are set in DevGuard for the asset.

Code review for changes on default branchCould not evaluate control

This policy checks if code review is performed for changes on the default branch.

Container scanning executedCould not evaluate control

This policy checks if container scanning was executed.

Compliance Controls
Overview

Displays the compliance of the repository with the security policies of the repository.

0 / 10 Controls are passing (0.0 %)

critical severitySee all

By Risk. By CVSS you would have1critical severity vulnerabilities

high severitySee all

By Risk. By CVSS you would have1high severity vulnerabilities

medium severitySee all

By Risk. By CVSS you would have11medium severity vulnerabilities

low severitySee all

By Risk. By CVSS you would have1low severity vulnerabilities

LicensesSee all

Displays the distribution of dependency licenses

unknown

unknown, 611 dependencies

Activity StreamSee all

Displays the last events that happened on the repository.

System detected CVE-2025-6069 with a risk of 1 in debian/python3.11
container-scanning
System detected CVE-2025-6141 with a risk of 1.55 in debian/ncurses
container-scanning
System detected CVE-2025-27587 in debian/openssl
container-scanning