Security
Vulnerability scanning, dependency audits, SSL certificates, and security headers.
Critical
0
vulnerabilities
High
2
vulnerabilities
Medium
8
vulnerabilities
Low
15
vulnerabilities
Dependency Audit
Last scan: 2 hours ago
| Package | Current | Fixed In | Severity | CVE | Service |
|---|---|---|---|---|---|
| jsonwebtoken | 9.0.0 | 9.0.2 | High | CVE-2026-1234 | Auth Service |
| express | 4.18.2 | 4.19.0 | High | CVE-2026-1235 | API Gateway |
| mysql2 | 3.6.0 | 3.6.3 | Medium | CVE-2026-2001 | Building Manager |
| neo4j-driver | 5.12.0 | 5.13.1 | Medium | CVE-2026-2002 | Mapping Service |
| axios | 1.6.0 | 1.6.4 | Medium | CVE-2026-2003 | Multiple |
| helmet | 7.0.0 | 7.1.0 | Low | CVE-2026-3001 | API Gateway |
| dotenv | 16.3.0 | 16.4.0 | Low | CVE-2026-3002 | All Services |
SSL Certificates
api.navigateuz.co.zw
IssuerLet's Encrypt
ExpiresJun 15, 2026
Days Left83 days
app.navigateuz.co.zw
IssuerLet's Encrypt
ExpiresJun 15, 2026
Days Left83 days
admin.navigateuz.co.zw
IssuerLet's Encrypt
ExpiresApr 10, 2026
Days Left17 days
Security Headers
Strict-Transport-Security
max-age=31536000; includeSubDomains
X-Content-Type-Options
nosniff
X-Frame-Options
DENY
X-XSS-Protection
1; mode=block
Content-Security-Policy
default-src 'self'
Referrer-Policy
strict-origin-when-cross-origin
Permissions-Policy
Not configured
Cross-Origin-Resource-Policy
same-origin
Code Scanning Results
Last scan passed
Run on Mar 24, 2026 at 02:00 AM · 12,458 files scanned
SQL Injection
0 findings
XSS Vulnerabilities
0 findings
Hardcoded Secrets
0 findings
Insecure Dependencies
2 findings
CSRF Protection
0 findings
Authentication Bypass
0 findings