AEGIS Report Navigator

Governed Cyber Reasoning System

/private/tmp/openclaw

2026-05-29 10:44 UTC

● Critical 0 ● High 39 (incl. 39 secrets) ● Medium 41 ● Low 9 ● Info 0

Trust levels: untrusted 5 medium-trust 3

⚖ Standards Compliance

FedRAMP Moderate

NEEDS REMEDIATION — fails FedRAMP High (39 high findings) and 6 other frameworks

OWASP Top 10 Coverage

0✔A01:2021 Broken Access Control

0✔A02:2021 Cryptographic Failures

0✔A03:2021 Injection

0✔A04:2021 Insecure Design

1✘A05:2021 Security Misconfiguration

0✔A06:2021 Vulnerable Components

0✔A07:2021 Auth Failures

0✔A08:2021 Data Integrity Failures

0✔A09:2021 Logging Failures

7✘A10:2021 SSRF

Taint Flow Summary

36 confirmed data paths from untrusted sources to dangerous sinks

Top patterns:

read → open (29 flows)

accept → open (3 flows)

read → exec (3 flows)

Trust Level Insight

16% of findings have trust annotations (8/50)

5 findings confirmed untrusted (highest priority)

🛡 Security Analysis

Report	Description	Size
aegis-arch-explorer.html	Architecture Explorer — C4 diagram with animated taint flows	40 KB
aegis-fuzz-targets.html	Fuzz Target Selection — prioritized fuzzing candidates	18 KB
aegis-invariants.html	Invariant Discovery — security guards and validations	13 KB
aegis-report.html	HTML Findings — interactive vulnerability report	42.5 MB
aegis-report.sarif.json	SARIF 2.1.0 — machine-readable findings	70 KB
aegis-taint-flows.html	Taint Flow Analysis — source-to-sink data paths	39 KB

⚖ Compliance & Evidence

Report	Description	Size
aegis-gap-analysis.html	Compliance Gap Analysis — framework readiness blockers	8 KB
aegis-grc-summary.html	GRC Executive Summary — third-party posture report	19 KB

⚙ Operations

Report	Description	Size
aegis-container-audit.html	Container Audit — Dockerfile discovery + coupling	10 KB
aegis-financial-consistency.html	Financial Consistency — rounding, precision, float risks	5 KB
aegis-select-star.html	SELECT * Analysis — column usage + replacement lists	3 KB