@ayurak/aribot-cli 1.0.5 → 1.0.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (12) hide show
  1. package/README.md +222 -39
  2. package/aribot-report-183b4bd7.json +1569 -0
  3. package/dist/cli.d.ts +10 -1
  4. package/dist/cli.js +1173 -8
  5. package/dist/index.d.ts +19 -0
  6. package/dist/index.js +35 -0
  7. package/dist/sdk.d.ts +349 -0
  8. package/dist/sdk.js +808 -0
  9. package/package.json +34 -4
  10. package/src/cli.ts +1264 -9
  11. package/src/index.ts +42 -0
  12. package/src/sdk.ts +1017 -0
package/aribot-report-183b4bd7.json ADDED
@@ -0,0 +1,1569 @@
1
+ {
2
+ "id": "183b4bd7-0532-4db4-815d-03fe1ea94139",
3
+ "diagram_id": "183b4bd7-0532-4db4-815d-03fe1ea94139",
4
+ "title": "Threat Analysis: Microservices - 1/12/2026",
5
+ "diagram_name": "Microservices - 1/12/2026",
6
+ "created_at": "2026-01-12T22:05:07.390250",
7
+ "ai_provider": "Ayurak Sentinel AI",
8
+ "api_version": "v2",
9
+ "risk_score": 100,
10
+ "compliance_score": 0,
11
+ "compliance_breakdown": [
12
+ {
13
+ "framework": "NIST",
14
+ "score": 0,
15
+ "total_controls": 10,
16
+ "compliant_controls": 0
17
+ },
18
+ {
19
+ "framework": "PCI-DSS",
20
+ "score": 0,
21
+ "total_controls": 8,
22
+ "compliant_controls": 0
23
+ }
24
+ ],
25
+ "architecture_insights": [
26
+ {
27
+ "type": "resilience",
28
+ "title": "Missing Load Balancer",
29
+ "description": "Multiple components detected but no Load Balancer found. This impacts availability and resilience.",
30
+ "severity": "high"
31
+ },
32
+ {
33
+ "type": "network",
34
+ "title": "Public Facing Exposure",
35
+ "description": "Architecture has public ingress points. WAF and DDoS protection are critical.",
36
+ "severity": "high"
37
+ }
38
+ ],
39
+ "threats": [
40
+ {
41
+ "id": "108837",
42
+ "component_id": "7408",
43
+ "component_name": "Client App",
44
+ "component": "Client App",
45
+ "name": "Denial of Service",
46
+ "title": "Denial of Service",
47
+ "description": "System availability may be impacted by resource exhaustion or malicious attacks.",
48
+ "severity": "medium",
49
+ "mitigation": "",
50
+ "control_codes": [],
51
+ "security_requirements": [],
52
+ "team": null,
53
+ "assigned_user": null,
54
+ "status": "unresolved",
55
+ "priority": "medium"
56
+ },
57
+ {
58
+ "id": "108838",
59
+ "component_id": "7408",
60
+ "component_name": "Client App",
61
+ "component": "Client App",
62
+ "name": "Elevation of Privilege",
63
+ "title": "Elevation of Privilege",
64
+ "description": "Attacker may gain higher level access than authorized, bypassing access controls.",
65
+ "severity": "medium",
66
+ "mitigation": "",
67
+ "control_codes": [],
68
+ "security_requirements": [],
69
+ "team": null,
70
+ "assigned_user": null,
71
+ "status": "unresolved",
72
+ "priority": "medium"
73
+ },
74
+ {
75
+ "id": "108839",
76
+ "component_id": "7408",
77
+ "component_name": "Client App",
78
+ "component": "Client App",
79
+ "name": "Improper Input Validation",
80
+ "title": "Improper Input Validation",
81
+ "description": "User input may not be properly validated, leading to injection attacks.",
82
+ "severity": "medium",
83
+ "mitigation": "",
84
+ "control_codes": [],
85
+ "security_requirements": [],
86
+ "team": null,
87
+ "assigned_user": null,
88
+ "status": "unresolved",
89
+ "priority": "medium"
90
+ },
91
+ {
92
+ "id": "108840",
93
+ "component_id": "7408",
94
+ "component_name": "Client App",
95
+ "component": "Client App",
96
+ "name": "Information Disclosure",
97
+ "title": "Information Disclosure",
98
+ "description": "Sensitive data may be exposed to unauthorized parties through various channels.",
99
+ "severity": "medium",
100
+ "mitigation": "",
101
+ "control_codes": [],
102
+ "security_requirements": [],
103
+ "team": null,
104
+ "assigned_user": null,
105
+ "status": "unresolved",
106
+ "priority": "medium"
107
+ },
108
+ {
109
+ "id": "108841",
110
+ "component_id": "7408",
111
+ "component_name": "Client App",
112
+ "component": "Client App",
113
+ "name": "Insecure Communication",
114
+ "title": "Insecure Communication",
115
+ "description": "Data transmitted without encryption may be intercepted by attackers.",
116
+ "severity": "medium",
117
+ "mitigation": "",
118
+ "control_codes": [],
119
+ "security_requirements": [],
120
+ "team": null,
121
+ "assigned_user": null,
122
+ "status": "unresolved",
123
+ "priority": "medium"
124
+ },
125
+ {
126
+ "id": "108842",
127
+ "component_id": "7408",
128
+ "component_name": "Client App",
129
+ "component": "Client App",
130
+ "name": "Missing Access Control",
131
+ "title": "Missing Access Control",
132
+ "description": "Resources may be accessible without proper authorization checks.",
133
+ "severity": "medium",
134
+ "mitigation": "",
135
+ "control_codes": [],
136
+ "security_requirements": [],
137
+ "team": null,
138
+ "assigned_user": null,
139
+ "status": "unresolved",
140
+ "priority": "medium"
141
+ },
142
+ {
143
+ "id": "108843",
144
+ "component_id": "7408",
145
+ "component_name": "Client App",
146
+ "component": "Client App",
147
+ "name": "Repudiation",
148
+ "title": "Repudiation",
149
+ "description": "User or attacker may deny having performed an action without proper logging or audit trails.",
150
+ "severity": "medium",
151
+ "mitigation": "",
152
+ "control_codes": [],
153
+ "security_requirements": [],
154
+ "team": null,
155
+ "assigned_user": null,
156
+ "status": "unresolved",
157
+ "priority": "medium"
158
+ },
159
+ {
160
+ "id": "108844",
161
+ "component_id": "7408",
162
+ "component_name": "Client App",
163
+ "component": "Client App",
164
+ "name": "Spoofing Identity",
165
+ "title": "Spoofing Identity",
166
+ "description": "Attacker may pretend to be another user, component, or system to gain unauthorized access.",
167
+ "severity": "medium",
168
+ "mitigation": "",
169
+ "control_codes": [],
170
+ "security_requirements": [],
171
+ "team": null,
172
+ "assigned_user": null,
173
+ "status": "unresolved",
174
+ "priority": "medium"
175
+ },
176
+ {
177
+ "id": "108845",
178
+ "component_id": "7408",
179
+ "component_name": "Client App",
180
+ "component": "Client App",
181
+ "name": "Tampering with Data",
182
+ "title": "Tampering with Data",
183
+ "description": "Attacker may modify data in transit or at rest without authorization.",
184
+ "severity": "medium",
185
+ "mitigation": "",
186
+ "control_codes": [],
187
+ "security_requirements": [],
188
+ "team": null,
189
+ "assigned_user": null,
190
+ "status": "unresolved",
191
+ "priority": "medium"
192
+ },
193
+ {
194
+ "id": "108846",
195
+ "component_id": "7408",
196
+ "component_name": "Client App",
197
+ "component": "Client App",
198
+ "name": "Weak Authentication",
199
+ "title": "Weak Authentication",
200
+ "description": "Authentication mechanisms may be bypassed or compromised.",
201
+ "severity": "medium",
202
+ "mitigation": "",
203
+ "control_codes": [],
204
+ "security_requirements": [],
205
+ "team": null,
206
+ "assigned_user": null,
207
+ "status": "unresolved",
208
+ "priority": "medium"
209
+ },
210
+ {
211
+ "id": "108847",
212
+ "component_id": "7409",
213
+ "component_name": "API Gateway",
214
+ "component": "API Gateway",
215
+ "name": "Denial of Service",
216
+ "title": "Denial of Service",
217
+ "description": "System availability may be impacted by resource exhaustion or malicious attacks.",
218
+ "severity": "medium",
219
+ "mitigation": "",
220
+ "control_codes": [],
221
+ "security_requirements": [],
222
+ "team": null,
223
+ "assigned_user": null,
224
+ "status": "unresolved",
225
+ "priority": "medium"
226
+ },
227
+ {
228
+ "id": "108848",
229
+ "component_id": "7409",
230
+ "component_name": "API Gateway",
231
+ "component": "API Gateway",
232
+ "name": "Elevation of Privilege",
233
+ "title": "Elevation of Privilege",
234
+ "description": "Attacker may gain higher level access than authorized, bypassing access controls.",
235
+ "severity": "medium",
236
+ "mitigation": "",
237
+ "control_codes": [],
238
+ "security_requirements": [],
239
+ "team": null,
240
+ "assigned_user": null,
241
+ "status": "unresolved",
242
+ "priority": "medium"
243
+ },
244
+ {
245
+ "id": "108849",
246
+ "component_id": "7409",
247
+ "component_name": "API Gateway",
248
+ "component": "API Gateway",
249
+ "name": "Improper Input Validation",
250
+ "title": "Improper Input Validation",
251
+ "description": "User input may not be properly validated, leading to injection attacks.",
252
+ "severity": "medium",
253
+ "mitigation": "",
254
+ "control_codes": [],
255
+ "security_requirements": [],
256
+ "team": null,
257
+ "assigned_user": null,
258
+ "status": "unresolved",
259
+ "priority": "medium"
260
+ },
261
+ {
262
+ "id": "108850",
263
+ "component_id": "7409",
264
+ "component_name": "API Gateway",
265
+ "component": "API Gateway",
266
+ "name": "Information Disclosure",
267
+ "title": "Information Disclosure",
268
+ "description": "Sensitive data may be exposed to unauthorized parties through various channels.",
269
+ "severity": "medium",
270
+ "mitigation": "",
271
+ "control_codes": [],
272
+ "security_requirements": [],
273
+ "team": null,
274
+ "assigned_user": null,
275
+ "status": "unresolved",
276
+ "priority": "medium"
277
+ },
278
+ {
279
+ "id": "108851",
280
+ "component_id": "7409",
281
+ "component_name": "API Gateway",
282
+ "component": "API Gateway",
283
+ "name": "Insecure Communication",
284
+ "title": "Insecure Communication",
285
+ "description": "Data transmitted without encryption may be intercepted by attackers.",
286
+ "severity": "medium",
287
+ "mitigation": "",
288
+ "control_codes": [],
289
+ "security_requirements": [],
290
+ "team": null,
291
+ "assigned_user": null,
292
+ "status": "unresolved",
293
+ "priority": "medium"
294
+ },
295
+ {
296
+ "id": "108852",
297
+ "component_id": "7409",
298
+ "component_name": "API Gateway",
299
+ "component": "API Gateway",
300
+ "name": "Missing Access Control",
301
+ "title": "Missing Access Control",
302
+ "description": "Resources may be accessible without proper authorization checks.",
303
+ "severity": "medium",
304
+ "mitigation": "",
305
+ "control_codes": [],
306
+ "security_requirements": [],
307
+ "team": null,
308
+ "assigned_user": null,
309
+ "status": "unresolved",
310
+ "priority": "medium"
311
+ },
312
+ {
313
+ "id": "108853",
314
+ "component_id": "7409",
315
+ "component_name": "API Gateway",
316
+ "component": "API Gateway",
317
+ "name": "Repudiation",
318
+ "title": "Repudiation",
319
+ "description": "User or attacker may deny having performed an action without proper logging or audit trails.",
320
+ "severity": "medium",
321
+ "mitigation": "",
322
+ "control_codes": [],
323
+ "security_requirements": [],
324
+ "team": null,
325
+ "assigned_user": null,
326
+ "status": "unresolved",
327
+ "priority": "medium"
328
+ },
329
+ {
330
+ "id": "108854",
331
+ "component_id": "7409",
332
+ "component_name": "API Gateway",
333
+ "component": "API Gateway",
334
+ "name": "Spoofing Identity",
335
+ "title": "Spoofing Identity",
336
+ "description": "Attacker may pretend to be another user, component, or system to gain unauthorized access.",
337
+ "severity": "medium",
338
+ "mitigation": "",
339
+ "control_codes": [],
340
+ "security_requirements": [],
341
+ "team": null,
342
+ "assigned_user": null,
343
+ "status": "unresolved",
344
+ "priority": "medium"
345
+ },
346
+ {
347
+ "id": "108855",
348
+ "component_id": "7409",
349
+ "component_name": "API Gateway",
350
+ "component": "API Gateway",
351
+ "name": "Tampering with Data",
352
+ "title": "Tampering with Data",
353
+ "description": "Attacker may modify data in transit or at rest without authorization.",
354
+ "severity": "medium",
355
+ "mitigation": "",
356
+ "control_codes": [],
357
+ "security_requirements": [],
358
+ "team": null,
359
+ "assigned_user": null,
360
+ "status": "unresolved",
361
+ "priority": "medium"
362
+ },
363
+ {
364
+ "id": "108856",
365
+ "component_id": "7409",
366
+ "component_name": "API Gateway",
367
+ "component": "API Gateway",
368
+ "name": "Weak Authentication",
369
+ "title": "Weak Authentication",
370
+ "description": "Authentication mechanisms may be bypassed or compromised.",
371
+ "severity": "medium",
372
+ "mitigation": "",
373
+ "control_codes": [],
374
+ "security_requirements": [],
375
+ "team": null,
376
+ "assigned_user": null,
377
+ "status": "unresolved",
378
+ "priority": "medium"
379
+ },
380
+ {
381
+ "id": "108857",
382
+ "component_id": "7410",
383
+ "component_name": "Auth Service",
384
+ "component": "Auth Service",
385
+ "name": "Denial of Service",
386
+ "title": "Denial of Service",
387
+ "description": "System availability may be impacted by resource exhaustion or malicious attacks.",
388
+ "severity": "medium",
389
+ "mitigation": "",
390
+ "control_codes": [],
391
+ "security_requirements": [],
392
+ "team": null,
393
+ "assigned_user": null,
394
+ "status": "unresolved",
395
+ "priority": "medium"
396
+ },
397
+ {
398
+ "id": "108858",
399
+ "component_id": "7410",
400
+ "component_name": "Auth Service",
401
+ "component": "Auth Service",
402
+ "name": "Elevation of Privilege",
403
+ "title": "Elevation of Privilege",
404
+ "description": "Attacker may gain higher level access than authorized, bypassing access controls.",
405
+ "severity": "medium",
406
+ "mitigation": "",
407
+ "control_codes": [],
408
+ "security_requirements": [],
409
+ "team": null,
410
+ "assigned_user": null,
411
+ "status": "unresolved",
412
+ "priority": "medium"
413
+ },
414
+ {
415
+ "id": "108859",
416
+ "component_id": "7410",
417
+ "component_name": "Auth Service",
418
+ "component": "Auth Service",
419
+ "name": "Improper Input Validation",
420
+ "title": "Improper Input Validation",
421
+ "description": "User input may not be properly validated, leading to injection attacks.",
422
+ "severity": "medium",
423
+ "mitigation": "",
424
+ "control_codes": [],
425
+ "security_requirements": [],
426
+ "team": null,
427
+ "assigned_user": null,
428
+ "status": "unresolved",
429
+ "priority": "medium"
430
+ },
431
+ {
432
+ "id": "108860",
433
+ "component_id": "7410",
434
+ "component_name": "Auth Service",
435
+ "component": "Auth Service",
436
+ "name": "Information Disclosure",
437
+ "title": "Information Disclosure",
438
+ "description": "Sensitive data may be exposed to unauthorized parties through various channels.",
439
+ "severity": "medium",
440
+ "mitigation": "",
441
+ "control_codes": [],
442
+ "security_requirements": [],
443
+ "team": null,
444
+ "assigned_user": null,
445
+ "status": "unresolved",
446
+ "priority": "medium"
447
+ },
448
+ {
449
+ "id": "108861",
450
+ "component_id": "7410",
451
+ "component_name": "Auth Service",
452
+ "component": "Auth Service",
453
+ "name": "Insecure Communication",
454
+ "title": "Insecure Communication",
455
+ "description": "Data transmitted without encryption may be intercepted by attackers.",
456
+ "severity": "medium",
457
+ "mitigation": "",
458
+ "control_codes": [],
459
+ "security_requirements": [],
460
+ "team": null,
461
+ "assigned_user": null,
462
+ "status": "unresolved",
463
+ "priority": "medium"
464
+ },
465
+ {
466
+ "id": "108862",
467
+ "component_id": "7410",
468
+ "component_name": "Auth Service",
469
+ "component": "Auth Service",
470
+ "name": "Missing Access Control",
471
+ "title": "Missing Access Control",
472
+ "description": "Resources may be accessible without proper authorization checks.",
473
+ "severity": "medium",
474
+ "mitigation": "",
475
+ "control_codes": [],
476
+ "security_requirements": [],
477
+ "team": null,
478
+ "assigned_user": null,
479
+ "status": "unresolved",
480
+ "priority": "medium"
481
+ },
482
+ {
483
+ "id": "108863",
484
+ "component_id": "7410",
485
+ "component_name": "Auth Service",
486
+ "component": "Auth Service",
487
+ "name": "Repudiation",
488
+ "title": "Repudiation",
489
+ "description": "User or attacker may deny having performed an action without proper logging or audit trails.",
490
+ "severity": "medium",
491
+ "mitigation": "",
492
+ "control_codes": [],
493
+ "security_requirements": [],
494
+ "team": null,
495
+ "assigned_user": null,
496
+ "status": "unresolved",
497
+ "priority": "medium"
498
+ },
499
+ {
500
+ "id": "108864",
501
+ "component_id": "7410",
502
+ "component_name": "Auth Service",
503
+ "component": "Auth Service",
504
+ "name": "Spoofing Identity",
505
+ "title": "Spoofing Identity",
506
+ "description": "Attacker may pretend to be another user, component, or system to gain unauthorized access.",
507
+ "severity": "medium",
508
+ "mitigation": "",
509
+ "control_codes": [],
510
+ "security_requirements": [],
511
+ "team": null,
512
+ "assigned_user": null,
513
+ "status": "unresolved",
514
+ "priority": "medium"
515
+ },
516
+ {
517
+ "id": "108865",
518
+ "component_id": "7410",
519
+ "component_name": "Auth Service",
520
+ "component": "Auth Service",
521
+ "name": "Tampering with Data",
522
+ "title": "Tampering with Data",
523
+ "description": "Attacker may modify data in transit or at rest without authorization.",
524
+ "severity": "medium",
525
+ "mitigation": "",
526
+ "control_codes": [],
527
+ "security_requirements": [],
528
+ "team": null,
529
+ "assigned_user": null,
530
+ "status": "unresolved",
531
+ "priority": "medium"
532
+ },
533
+ {
534
+ "id": "108866",
535
+ "component_id": "7410",
536
+ "component_name": "Auth Service",
537
+ "component": "Auth Service",
538
+ "name": "Weak Authentication",
539
+ "title": "Weak Authentication",
540
+ "description": "Authentication mechanisms may be bypassed or compromised.",
541
+ "severity": "medium",
542
+ "mitigation": "",
543
+ "control_codes": [],
544
+ "security_requirements": [],
545
+ "team": null,
546
+ "assigned_user": null,
547
+ "status": "unresolved",
548
+ "priority": "medium"
549
+ },
550
+ {
551
+ "id": "108867",
552
+ "component_id": "7411",
553
+ "component_name": "Product Service",
554
+ "component": "Product Service",
555
+ "name": "Denial of Service",
556
+ "title": "Denial of Service",
557
+ "description": "System availability may be impacted by resource exhaustion or malicious attacks.",
558
+ "severity": "medium",
559
+ "mitigation": "",
560
+ "control_codes": [],
561
+ "security_requirements": [],
562
+ "team": null,
563
+ "assigned_user": null,
564
+ "status": "unresolved",
565
+ "priority": "medium"
566
+ },
567
+ {
568
+ "id": "108868",
569
+ "component_id": "7411",
570
+ "component_name": "Product Service",
571
+ "component": "Product Service",
572
+ "name": "Elevation of Privilege",
573
+ "title": "Elevation of Privilege",
574
+ "description": "Attacker may gain higher level access than authorized, bypassing access controls.",
575
+ "severity": "medium",
576
+ "mitigation": "",
577
+ "control_codes": [],
578
+ "security_requirements": [],
579
+ "team": null,
580
+ "assigned_user": null,
581
+ "status": "unresolved",
582
+ "priority": "medium"
583
+ },
584
+ {
585
+ "id": "108869",
586
+ "component_id": "7411",
587
+ "component_name": "Product Service",
588
+ "component": "Product Service",
589
+ "name": "Improper Input Validation",
590
+ "title": "Improper Input Validation",
591
+ "description": "User input may not be properly validated, leading to injection attacks.",
592
+ "severity": "medium",
593
+ "mitigation": "",
594
+ "control_codes": [],
595
+ "security_requirements": [],
596
+ "team": null,
597
+ "assigned_user": null,
598
+ "status": "unresolved",
599
+ "priority": "medium"
600
+ },
601
+ {
602
+ "id": "108870",
603
+ "component_id": "7411",
604
+ "component_name": "Product Service",
605
+ "component": "Product Service",
606
+ "name": "Information Disclosure",
607
+ "title": "Information Disclosure",
608
+ "description": "Sensitive data may be exposed to unauthorized parties through various channels.",
609
+ "severity": "medium",
610
+ "mitigation": "",
611
+ "control_codes": [],
612
+ "security_requirements": [],
613
+ "team": null,
614
+ "assigned_user": null,
615
+ "status": "unresolved",
616
+ "priority": "medium"
617
+ },
618
+ {
619
+ "id": "108871",
620
+ "component_id": "7411",
621
+ "component_name": "Product Service",
622
+ "component": "Product Service",
623
+ "name": "Insecure Communication",
624
+ "title": "Insecure Communication",
625
+ "description": "Data transmitted without encryption may be intercepted by attackers.",
626
+ "severity": "medium",
627
+ "mitigation": "",
628
+ "control_codes": [],
629
+ "security_requirements": [],
630
+ "team": null,
631
+ "assigned_user": null,
632
+ "status": "unresolved",
633
+ "priority": "medium"
634
+ },
635
+ {
636
+ "id": "108872",
637
+ "component_id": "7411",
638
+ "component_name": "Product Service",
639
+ "component": "Product Service",
640
+ "name": "Missing Access Control",
641
+ "title": "Missing Access Control",
642
+ "description": "Resources may be accessible without proper authorization checks.",
643
+ "severity": "medium",
644
+ "mitigation": "",
645
+ "control_codes": [],
646
+ "security_requirements": [],
647
+ "team": null,
648
+ "assigned_user": null,
649
+ "status": "unresolved",
650
+ "priority": "medium"
651
+ },
652
+ {
653
+ "id": "108873",
654
+ "component_id": "7411",
655
+ "component_name": "Product Service",
656
+ "component": "Product Service",
657
+ "name": "Repudiation",
658
+ "title": "Repudiation",
659
+ "description": "User or attacker may deny having performed an action without proper logging or audit trails.",
660
+ "severity": "medium",
661
+ "mitigation": "",
662
+ "control_codes": [],
663
+ "security_requirements": [],
664
+ "team": null,
665
+ "assigned_user": null,
666
+ "status": "unresolved",
667
+ "priority": "medium"
668
+ },
669
+ {
670
+ "id": "108874",
671
+ "component_id": "7411",
672
+ "component_name": "Product Service",
673
+ "component": "Product Service",
674
+ "name": "Spoofing Identity",
675
+ "title": "Spoofing Identity",
676
+ "description": "Attacker may pretend to be another user, component, or system to gain unauthorized access.",
677
+ "severity": "medium",
678
+ "mitigation": "",
679
+ "control_codes": [],
680
+ "security_requirements": [],
681
+ "team": null,
682
+ "assigned_user": null,
683
+ "status": "unresolved",
684
+ "priority": "medium"
685
+ },
686
+ {
687
+ "id": "108875",
688
+ "component_id": "7411",
689
+ "component_name": "Product Service",
690
+ "component": "Product Service",
691
+ "name": "Tampering with Data",
692
+ "title": "Tampering with Data",
693
+ "description": "Attacker may modify data in transit or at rest without authorization.",
694
+ "severity": "medium",
695
+ "mitigation": "",
696
+ "control_codes": [],
697
+ "security_requirements": [],
698
+ "team": null,
699
+ "assigned_user": null,
700
+ "status": "unresolved",
701
+ "priority": "medium"
702
+ },
703
+ {
704
+ "id": "108876",
705
+ "component_id": "7411",
706
+ "component_name": "Product Service",
707
+ "component": "Product Service",
708
+ "name": "Weak Authentication",
709
+ "title": "Weak Authentication",
710
+ "description": "Authentication mechanisms may be bypassed or compromised.",
711
+ "severity": "medium",
712
+ "mitigation": "",
713
+ "control_codes": [],
714
+ "security_requirements": [],
715
+ "team": null,
716
+ "assigned_user": null,
717
+ "status": "unresolved",
718
+ "priority": "medium"
719
+ },
720
+ {
721
+ "id": "108877",
722
+ "component_id": "7412",
723
+ "component_name": "Order Service",
724
+ "component": "Order Service",
725
+ "name": "Denial of Service",
726
+ "title": "Denial of Service",
727
+ "description": "System availability may be impacted by resource exhaustion or malicious attacks.",
728
+ "severity": "medium",
729
+ "mitigation": "",
730
+ "control_codes": [],
731
+ "security_requirements": [],
732
+ "team": null,
733
+ "assigned_user": null,
734
+ "status": "unresolved",
735
+ "priority": "medium"
736
+ },
737
+ {
738
+ "id": "108878",
739
+ "component_id": "7412",
740
+ "component_name": "Order Service",
741
+ "component": "Order Service",
742
+ "name": "Elevation of Privilege",
743
+ "title": "Elevation of Privilege",
744
+ "description": "Attacker may gain higher level access than authorized, bypassing access controls.",
745
+ "severity": "medium",
746
+ "mitigation": "",
747
+ "control_codes": [],
748
+ "security_requirements": [],
749
+ "team": null,
750
+ "assigned_user": null,
751
+ "status": "unresolved",
752
+ "priority": "medium"
753
+ },
754
+ {
755
+ "id": "108879",
756
+ "component_id": "7412",
757
+ "component_name": "Order Service",
758
+ "component": "Order Service",
759
+ "name": "Improper Input Validation",
760
+ "title": "Improper Input Validation",
761
+ "description": "User input may not be properly validated, leading to injection attacks.",
762
+ "severity": "medium",
763
+ "mitigation": "",
764
+ "control_codes": [],
765
+ "security_requirements": [],
766
+ "team": null,
767
+ "assigned_user": null,
768
+ "status": "unresolved",
769
+ "priority": "medium"
770
+ },
771
+ {
772
+ "id": "108880",
773
+ "component_id": "7412",
774
+ "component_name": "Order Service",
775
+ "component": "Order Service",
776
+ "name": "Information Disclosure",
777
+ "title": "Information Disclosure",
778
+ "description": "Sensitive data may be exposed to unauthorized parties through various channels.",
779
+ "severity": "medium",
780
+ "mitigation": "",
781
+ "control_codes": [],
782
+ "security_requirements": [],
783
+ "team": null,
784
+ "assigned_user": null,
785
+ "status": "unresolved",
786
+ "priority": "medium"
787
+ },
788
+ {
789
+ "id": "108881",
790
+ "component_id": "7412",
791
+ "component_name": "Order Service",
792
+ "component": "Order Service",
793
+ "name": "Insecure Communication",
794
+ "title": "Insecure Communication",
795
+ "description": "Data transmitted without encryption may be intercepted by attackers.",
796
+ "severity": "medium",
797
+ "mitigation": "",
798
+ "control_codes": [],
799
+ "security_requirements": [],
800
+ "team": null,
801
+ "assigned_user": null,
802
+ "status": "unresolved",
803
+ "priority": "medium"
804
+ },
805
+ {
806
+ "id": "108882",
807
+ "component_id": "7412",
808
+ "component_name": "Order Service",
809
+ "component": "Order Service",
810
+ "name": "Missing Access Control",
811
+ "title": "Missing Access Control",
812
+ "description": "Resources may be accessible without proper authorization checks.",
813
+ "severity": "medium",
814
+ "mitigation": "",
815
+ "control_codes": [],
816
+ "security_requirements": [],
817
+ "team": null,
818
+ "assigned_user": null,
819
+ "status": "unresolved",
820
+ "priority": "medium"
821
+ },
822
+ {
823
+ "id": "108883",
824
+ "component_id": "7412",
825
+ "component_name": "Order Service",
826
+ "component": "Order Service",
827
+ "name": "Repudiation",
828
+ "title": "Repudiation",
829
+ "description": "User or attacker may deny having performed an action without proper logging or audit trails.",
830
+ "severity": "medium",
831
+ "mitigation": "",
832
+ "control_codes": [],
833
+ "security_requirements": [],
834
+ "team": null,
835
+ "assigned_user": null,
836
+ "status": "unresolved",
837
+ "priority": "medium"
838
+ },
839
+ {
840
+ "id": "108884",
841
+ "component_id": "7412",
842
+ "component_name": "Order Service",
843
+ "component": "Order Service",
844
+ "name": "Spoofing Identity",
845
+ "title": "Spoofing Identity",
846
+ "description": "Attacker may pretend to be another user, component, or system to gain unauthorized access.",
847
+ "severity": "medium",
848
+ "mitigation": "",
849
+ "control_codes": [],
850
+ "security_requirements": [],
851
+ "team": null,
852
+ "assigned_user": null,
853
+ "status": "unresolved",
854
+ "priority": "medium"
855
+ },
856
+ {
857
+ "id": "108885",
858
+ "component_id": "7412",
859
+ "component_name": "Order Service",
860
+ "component": "Order Service",
861
+ "name": "Tampering with Data",
862
+ "title": "Tampering with Data",
863
+ "description": "Attacker may modify data in transit or at rest without authorization.",
864
+ "severity": "medium",
865
+ "mitigation": "",
866
+ "control_codes": [],
867
+ "security_requirements": [],
868
+ "team": null,
869
+ "assigned_user": null,
870
+ "status": "unresolved",
871
+ "priority": "medium"
872
+ },
873
+ {
874
+ "id": "108886",
875
+ "component_id": "7412",
876
+ "component_name": "Order Service",
877
+ "component": "Order Service",
878
+ "name": "Weak Authentication",
879
+ "title": "Weak Authentication",
880
+ "description": "Authentication mechanisms may be bypassed or compromised.",
881
+ "severity": "medium",
882
+ "mitigation": "",
883
+ "control_codes": [],
884
+ "security_requirements": [],
885
+ "team": null,
886
+ "assigned_user": null,
887
+ "status": "unresolved",
888
+ "priority": "medium"
889
+ },
890
+ {
891
+ "id": "108887",
892
+ "component_id": "7413",
893
+ "component_name": "Auth DB",
894
+ "component": "Auth DB",
895
+ "name": "Denial of Service",
896
+ "title": "Denial of Service",
897
+ "description": "System availability may be impacted by resource exhaustion or malicious attacks.",
898
+ "severity": "medium",
899
+ "mitigation": "",
900
+ "control_codes": [],
901
+ "security_requirements": [],
902
+ "team": null,
903
+ "assigned_user": null,
904
+ "status": "unresolved",
905
+ "priority": "medium"
906
+ },
907
+ {
908
+ "id": "108888",
909
+ "component_id": "7413",
910
+ "component_name": "Auth DB",
911
+ "component": "Auth DB",
912
+ "name": "Elevation of Privilege",
913
+ "title": "Elevation of Privilege",
914
+ "description": "Attacker may gain higher level access than authorized, bypassing access controls.",
915
+ "severity": "medium",
916
+ "mitigation": "",
917
+ "control_codes": [],
918
+ "security_requirements": [],
919
+ "team": null,
920
+ "assigned_user": null,
921
+ "status": "unresolved",
922
+ "priority": "medium"
923
+ },
924
+ {
925
+ "id": "108889",
926
+ "component_id": "7413",
927
+ "component_name": "Auth DB",
928
+ "component": "Auth DB",
929
+ "name": "Improper Input Validation",
930
+ "title": "Improper Input Validation",
931
+ "description": "User input may not be properly validated, leading to injection attacks.",
932
+ "severity": "medium",
933
+ "mitigation": "",
934
+ "control_codes": [],
935
+ "security_requirements": [],
936
+ "team": null,
937
+ "assigned_user": null,
938
+ "status": "unresolved",
939
+ "priority": "medium"
940
+ },
941
+ {
942
+ "id": "108890",
943
+ "component_id": "7413",
944
+ "component_name": "Auth DB",
945
+ "component": "Auth DB",
946
+ "name": "Information Disclosure",
947
+ "title": "Information Disclosure",
948
+ "description": "Sensitive data may be exposed to unauthorized parties through various channels.",
949
+ "severity": "medium",
950
+ "mitigation": "",
951
+ "control_codes": [],
952
+ "security_requirements": [],
953
+ "team": null,
954
+ "assigned_user": null,
955
+ "status": "unresolved",
956
+ "priority": "medium"
957
+ },
958
+ {
959
+ "id": "108891",
960
+ "component_id": "7413",
961
+ "component_name": "Auth DB",
962
+ "component": "Auth DB",
963
+ "name": "Insecure Communication",
964
+ "title": "Insecure Communication",
965
+ "description": "Data transmitted without encryption may be intercepted by attackers.",
966
+ "severity": "medium",
967
+ "mitigation": "",
968
+ "control_codes": [],
969
+ "security_requirements": [],
970
+ "team": null,
971
+ "assigned_user": null,
972
+ "status": "unresolved",
973
+ "priority": "medium"
974
+ },
975
+ {
976
+ "id": "108892",
977
+ "component_id": "7413",
978
+ "component_name": "Auth DB",
979
+ "component": "Auth DB",
980
+ "name": "Missing Access Control",
981
+ "title": "Missing Access Control",
982
+ "description": "Resources may be accessible without proper authorization checks.",
983
+ "severity": "medium",
984
+ "mitigation": "",
985
+ "control_codes": [],
986
+ "security_requirements": [],
987
+ "team": null,
988
+ "assigned_user": null,
989
+ "status": "unresolved",
990
+ "priority": "medium"
991
+ },
992
+ {
993
+ "id": "108893",
994
+ "component_id": "7413",
995
+ "component_name": "Auth DB",
996
+ "component": "Auth DB",
997
+ "name": "Repudiation",
998
+ "title": "Repudiation",
999
+ "description": "User or attacker may deny having performed an action without proper logging or audit trails.",
1000
+ "severity": "medium",
1001
+ "mitigation": "",
1002
+ "control_codes": [],
1003
+ "security_requirements": [],
1004
+ "team": null,
1005
+ "assigned_user": null,
1006
+ "status": "unresolved",
1007
+ "priority": "medium"
1008
+ },
1009
+ {
1010
+ "id": "108894",
1011
+ "component_id": "7413",
1012
+ "component_name": "Auth DB",
1013
+ "component": "Auth DB",
1014
+ "name": "Spoofing Identity",
1015
+ "title": "Spoofing Identity",
1016
+ "description": "Attacker may pretend to be another user, component, or system to gain unauthorized access.",
1017
+ "severity": "medium",
1018
+ "mitigation": "",
1019
+ "control_codes": [],
1020
+ "security_requirements": [],
1021
+ "team": null,
1022
+ "assigned_user": null,
1023
+ "status": "unresolved",
1024
+ "priority": "medium"
1025
+ },
1026
+ {
1027
+ "id": "108895",
1028
+ "component_id": "7413",
1029
+ "component_name": "Auth DB",
1030
+ "component": "Auth DB",
1031
+ "name": "Tampering with Data",
1032
+ "title": "Tampering with Data",
1033
+ "description": "Attacker may modify data in transit or at rest without authorization.",
1034
+ "severity": "medium",
1035
+ "mitigation": "",
1036
+ "control_codes": [],
1037
+ "security_requirements": [],
1038
+ "team": null,
1039
+ "assigned_user": null,
1040
+ "status": "unresolved",
1041
+ "priority": "medium"
1042
+ },
1043
+ {
1044
+ "id": "108896",
1045
+ "component_id": "7413",
1046
+ "component_name": "Auth DB",
1047
+ "component": "Auth DB",
1048
+ "name": "Weak Authentication",
1049
+ "title": "Weak Authentication",
1050
+ "description": "Authentication mechanisms may be bypassed or compromised.",
1051
+ "severity": "medium",
1052
+ "mitigation": "",
1053
+ "control_codes": [],
1054
+ "security_requirements": [],
1055
+ "team": null,
1056
+ "assigned_user": null,
1057
+ "status": "unresolved",
1058
+ "priority": "medium"
1059
+ },
1060
+ {
1061
+ "id": "108897",
1062
+ "component_id": "7414",
1063
+ "component_name": "Product DB",
1064
+ "component": "Product DB",
1065
+ "name": "Denial of Service",
1066
+ "title": "Denial of Service",
1067
+ "description": "System availability may be impacted by resource exhaustion or malicious attacks.",
1068
+ "severity": "medium",
1069
+ "mitigation": "",
1070
+ "control_codes": [],
1071
+ "security_requirements": [],
1072
+ "team": null,
1073
+ "assigned_user": null,
1074
+ "status": "unresolved",
1075
+ "priority": "medium"
1076
+ },
1077
+ {
1078
+ "id": "108898",
1079
+ "component_id": "7414",
1080
+ "component_name": "Product DB",
1081
+ "component": "Product DB",
1082
+ "name": "Elevation of Privilege",
1083
+ "title": "Elevation of Privilege",
1084
+ "description": "Attacker may gain higher level access than authorized, bypassing access controls.",
1085
+ "severity": "medium",
1086
+ "mitigation": "",
1087
+ "control_codes": [],
1088
+ "security_requirements": [],
1089
+ "team": null,
1090
+ "assigned_user": null,
1091
+ "status": "unresolved",
1092
+ "priority": "medium"
1093
+ },
1094
+ {
1095
+ "id": "108899",
1096
+ "component_id": "7414",
1097
+ "component_name": "Product DB",
1098
+ "component": "Product DB",
1099
+ "name": "Improper Input Validation",
1100
+ "title": "Improper Input Validation",
1101
+ "description": "User input may not be properly validated, leading to injection attacks.",
1102
+ "severity": "medium",
1103
+ "mitigation": "",
1104
+ "control_codes": [],
1105
+ "security_requirements": [],
1106
+ "team": null,
1107
+ "assigned_user": null,
1108
+ "status": "unresolved",
1109
+ "priority": "medium"
1110
+ },
1111
+ {
1112
+ "id": "108900",
1113
+ "component_id": "7414",
1114
+ "component_name": "Product DB",
1115
+ "component": "Product DB",
1116
+ "name": "Information Disclosure",
1117
+ "title": "Information Disclosure",
1118
+ "description": "Sensitive data may be exposed to unauthorized parties through various channels.",
1119
+ "severity": "medium",
1120
+ "mitigation": "",
1121
+ "control_codes": [],
1122
+ "security_requirements": [],
1123
+ "team": null,
1124
+ "assigned_user": null,
1125
+ "status": "unresolved",
1126
+ "priority": "medium"
1127
+ },
1128
+ {
1129
+ "id": "108901",
1130
+ "component_id": "7414",
1131
+ "component_name": "Product DB",
1132
+ "component": "Product DB",
1133
+ "name": "Insecure Communication",
1134
+ "title": "Insecure Communication",
1135
+ "description": "Data transmitted without encryption may be intercepted by attackers.",
1136
+ "severity": "medium",
1137
+ "mitigation": "",
1138
+ "control_codes": [],
1139
+ "security_requirements": [],
1140
+ "team": null,
1141
+ "assigned_user": null,
1142
+ "status": "unresolved",
1143
+ "priority": "medium"
1144
+ },
1145
+ {
1146
+ "id": "108902",
1147
+ "component_id": "7414",
1148
+ "component_name": "Product DB",
1149
+ "component": "Product DB",
1150
+ "name": "Missing Access Control",
1151
+ "title": "Missing Access Control",
1152
+ "description": "Resources may be accessible without proper authorization checks.",
1153
+ "severity": "medium",
1154
+ "mitigation": "",
1155
+ "control_codes": [],
1156
+ "security_requirements": [],
1157
+ "team": null,
1158
+ "assigned_user": null,
1159
+ "status": "unresolved",
1160
+ "priority": "medium"
1161
+ },
1162
+ {
1163
+ "id": "108903",
1164
+ "component_id": "7414",
1165
+ "component_name": "Product DB",
1166
+ "component": "Product DB",
1167
+ "name": "Repudiation",
1168
+ "title": "Repudiation",
1169
+ "description": "User or attacker may deny having performed an action without proper logging or audit trails.",
1170
+ "severity": "medium",
1171
+ "mitigation": "",
1172
+ "control_codes": [],
1173
+ "security_requirements": [],
1174
+ "team": null,
1175
+ "assigned_user": null,
1176
+ "status": "unresolved",
1177
+ "priority": "medium"
1178
+ },
1179
+ {
1180
+ "id": "108904",
1181
+ "component_id": "7414",
1182
+ "component_name": "Product DB",
1183
+ "component": "Product DB",
1184
+ "name": "Spoofing Identity",
1185
+ "title": "Spoofing Identity",
1186
+ "description": "Attacker may pretend to be another user, component, or system to gain unauthorized access.",
1187
+ "severity": "medium",
1188
+ "mitigation": "",
1189
+ "control_codes": [],
1190
+ "security_requirements": [],
1191
+ "team": null,
1192
+ "assigned_user": null,
1193
+ "status": "unresolved",
1194
+ "priority": "medium"
1195
+ },
1196
+ {
1197
+ "id": "108905",
1198
+ "component_id": "7414",
1199
+ "component_name": "Product DB",
1200
+ "component": "Product DB",
1201
+ "name": "Tampering with Data",
1202
+ "title": "Tampering with Data",
1203
+ "description": "Attacker may modify data in transit or at rest without authorization.",
1204
+ "severity": "medium",
1205
+ "mitigation": "",
1206
+ "control_codes": [],
1207
+ "security_requirements": [],
1208
+ "team": null,
1209
+ "assigned_user": null,
1210
+ "status": "unresolved",
1211
+ "priority": "medium"
1212
+ },
1213
+ {
1214
+ "id": "108906",
1215
+ "component_id": "7414",
1216
+ "component_name": "Product DB",
1217
+ "component": "Product DB",
1218
+ "name": "Weak Authentication",
1219
+ "title": "Weak Authentication",
1220
+ "description": "Authentication mechanisms may be bypassed or compromised.",
1221
+ "severity": "medium",
1222
+ "mitigation": "",
1223
+ "control_codes": [],
1224
+ "security_requirements": [],
1225
+ "team": null,
1226
+ "assigned_user": null,
1227
+ "status": "unresolved",
1228
+ "priority": "medium"
1229
+ },
1230
+ {
1231
+ "id": "108907",
1232
+ "component_id": "7415",
1233
+ "component_name": "Order DB",
1234
+ "component": "Order DB",
1235
+ "name": "Denial of Service",
1236
+ "title": "Denial of Service",
1237
+ "description": "System availability may be impacted by resource exhaustion or malicious attacks.",
1238
+ "severity": "medium",
1239
+ "mitigation": "",
1240
+ "control_codes": [],
1241
+ "security_requirements": [],
1242
+ "team": null,
1243
+ "assigned_user": null,
1244
+ "status": "unresolved",
1245
+ "priority": "medium"
1246
+ },
1247
+ {
1248
+ "id": "108908",
1249
+ "component_id": "7415",
1250
+ "component_name": "Order DB",
1251
+ "component": "Order DB",
1252
+ "name": "Elevation of Privilege",
1253
+ "title": "Elevation of Privilege",
1254
+ "description": "Attacker may gain higher level access than authorized, bypassing access controls.",
1255
+ "severity": "medium",
1256
+ "mitigation": "",
1257
+ "control_codes": [],
1258
+ "security_requirements": [],
1259
+ "team": null,
1260
+ "assigned_user": null,
1261
+ "status": "unresolved",
1262
+ "priority": "medium"
1263
+ },
1264
+ {
1265
+ "id": "108909",
1266
+ "component_id": "7415",
1267
+ "component_name": "Order DB",
1268
+ "component": "Order DB",
1269
+ "name": "Improper Input Validation",
1270
+ "title": "Improper Input Validation",
1271
+ "description": "User input may not be properly validated, leading to injection attacks.",
1272
+ "severity": "medium",
1273
+ "mitigation": "",
1274
+ "control_codes": [],
1275
+ "security_requirements": [],
1276
+ "team": null,
1277
+ "assigned_user": null,
1278
+ "status": "unresolved",
1279
+ "priority": "medium"
1280
+ },
1281
+ {
1282
+ "id": "108910",
1283
+ "component_id": "7415",
1284
+ "component_name": "Order DB",
1285
+ "component": "Order DB",
1286
+ "name": "Information Disclosure",
1287
+ "title": "Information Disclosure",
1288
+ "description": "Sensitive data may be exposed to unauthorized parties through various channels.",
1289
+ "severity": "medium",
1290
+ "mitigation": "",
1291
+ "control_codes": [],
1292
+ "security_requirements": [],
1293
+ "team": null,
1294
+ "assigned_user": null,
1295
+ "status": "unresolved",
1296
+ "priority": "medium"
1297
+ },
1298
+ {
1299
+ "id": "108911",
1300
+ "component_id": "7415",
1301
+ "component_name": "Order DB",
1302
+ "component": "Order DB",
1303
+ "name": "Insecure Communication",
1304
+ "title": "Insecure Communication",
1305
+ "description": "Data transmitted without encryption may be intercepted by attackers.",
1306
+ "severity": "medium",
1307
+ "mitigation": "",
1308
+ "control_codes": [],
1309
+ "security_requirements": [],
1310
+ "team": null,
1311
+ "assigned_user": null,
1312
+ "status": "unresolved",
1313
+ "priority": "medium"
1314
+ },
1315
+ {
1316
+ "id": "108912",
1317
+ "component_id": "7415",
1318
+ "component_name": "Order DB",
1319
+ "component": "Order DB",
1320
+ "name": "Missing Access Control",
1321
+ "title": "Missing Access Control",
1322
+ "description": "Resources may be accessible without proper authorization checks.",
1323
+ "severity": "medium",
1324
+ "mitigation": "",
1325
+ "control_codes": [],
1326
+ "security_requirements": [],
1327
+ "team": null,
1328
+ "assigned_user": null,
1329
+ "status": "unresolved",
1330
+ "priority": "medium"
1331
+ },
1332
+ {
1333
+ "id": "108913",
1334
+ "component_id": "7415",
1335
+ "component_name": "Order DB",
1336
+ "component": "Order DB",
1337
+ "name": "Repudiation",
1338
+ "title": "Repudiation",
1339
+ "description": "User or attacker may deny having performed an action without proper logging or audit trails.",
1340
+ "severity": "medium",
1341
+ "mitigation": "",
1342
+ "control_codes": [],
1343
+ "security_requirements": [],
1344
+ "team": null,
1345
+ "assigned_user": null,
1346
+ "status": "unresolved",
1347
+ "priority": "medium"
1348
+ },
1349
+ {
1350
+ "id": "108914",
1351
+ "component_id": "7415",
1352
+ "component_name": "Order DB",
1353
+ "component": "Order DB",
1354
+ "name": "Spoofing Identity",
1355
+ "title": "Spoofing Identity",
1356
+ "description": "Attacker may pretend to be another user, component, or system to gain unauthorized access.",
1357
+ "severity": "medium",
1358
+ "mitigation": "",
1359
+ "control_codes": [],
1360
+ "security_requirements": [],
1361
+ "team": null,
1362
+ "assigned_user": null,
1363
+ "status": "unresolved",
1364
+ "priority": "medium"
1365
+ },
1366
+ {
1367
+ "id": "108915",
1368
+ "component_id": "7415",
1369
+ "component_name": "Order DB",
1370
+ "component": "Order DB",
1371
+ "name": "Tampering with Data",
1372
+ "title": "Tampering with Data",
1373
+ "description": "Attacker may modify data in transit or at rest without authorization.",
1374
+ "severity": "medium",
1375
+ "mitigation": "",
1376
+ "control_codes": [],
1377
+ "security_requirements": [],
1378
+ "team": null,
1379
+ "assigned_user": null,
1380
+ "status": "unresolved",
1381
+ "priority": "medium"
1382
+ },
1383
+ {
1384
+ "id": "108916",
1385
+ "component_id": "7415",
1386
+ "component_name": "Order DB",
1387
+ "component": "Order DB",
1388
+ "name": "Weak Authentication",
1389
+ "title": "Weak Authentication",
1390
+ "description": "Authentication mechanisms may be bypassed or compromised.",
1391
+ "severity": "medium",
1392
+ "mitigation": "",
1393
+ "control_codes": [],
1394
+ "security_requirements": [],
1395
+ "team": null,
1396
+ "assigned_user": null,
1397
+ "status": "unresolved",
1398
+ "priority": "medium"
1399
+ }
1400
+ ],
1401
+ "components": [
1402
+ {
1403
+ "id": "7408",
1404
+ "name": "Client App",
1405
+ "type": null,
1406
+ "type_verbose": null,
1407
+ "team": null
1408
+ },
1409
+ {
1410
+ "id": "7409",
1411
+ "name": "API Gateway",
1412
+ "type": null,
1413
+ "type_verbose": null,
1414
+ "team": null
1415
+ },
1416
+ {
1417
+ "id": "7410",
1418
+ "name": "Auth Service",
1419
+ "type": null,
1420
+ "type_verbose": null,
1421
+ "team": null
1422
+ },
1423
+ {
1424
+ "id": "7411",
1425
+ "name": "Product Service",
1426
+ "type": null,
1427
+ "type_verbose": null,
1428
+ "team": null
1429
+ },
1430
+ {
1431
+ "id": "7412",
1432
+ "name": "Order Service",
1433
+ "type": null,
1434
+ "type_verbose": null,
1435
+ "team": null
1436
+ },
1437
+ {
1438
+ "id": "7413",
1439
+ "name": "Auth DB",
1440
+ "type": null,
1441
+ "type_verbose": null,
1442
+ "team": null
1443
+ },
1444
+ {
1445
+ "id": "7414",
1446
+ "name": "Product DB",
1447
+ "type": null,
1448
+ "type_verbose": null,
1449
+ "team": null
1450
+ },
1451
+ {
1452
+ "id": "7415",
1453
+ "name": "Order DB",
1454
+ "type": null,
1455
+ "type_verbose": null,
1456
+ "team": null
1457
+ }
1458
+ ],
1459
+ "filters": {
1460
+ "components": [
1461
+ {
1462
+ "value": "7408",
1463
+ "title": "Client App",
1464
+ "is_present": true
1465
+ },
1466
+ {
1467
+ "value": "7409",
1468
+ "title": "API Gateway",
1469
+ "is_present": true
1470
+ },
1471
+ {
1472
+ "value": "7410",
1473
+ "title": "Auth Service",
1474
+ "is_present": true
1475
+ },
1476
+ {
1477
+ "value": "7411",
1478
+ "title": "Product Service",
1479
+ "is_present": true
1480
+ },
1481
+ {
1482
+ "value": "7412",
1483
+ "title": "Order Service",
1484
+ "is_present": true
1485
+ },
1486
+ {
1487
+ "value": "7413",
1488
+ "title": "Auth DB",
1489
+ "is_present": true
1490
+ },
1491
+ {
1492
+ "value": "7414",
1493
+ "title": "Product DB",
1494
+ "is_present": true
1495
+ },
1496
+ {
1497
+ "value": "7415",
1498
+ "title": "Order DB",
1499
+ "is_present": true
1500
+ }
1501
+ ],
1502
+ "control_codes": []
1503
+ },
1504
+ "ai_insights": [
1505
+ "Security posture analysis detected 80 threats. Review medium severity items in Client App.",
1506
+ "COMPLIANCE ALERT: 80 threats lack mapped security controls. Map NIST/ISO controls to improve audit readiness.",
1507
+ "NETWORK SECURITY: Public endpoints identified. Recommend implementing WAF and DDoS protection immediately.",
1508
+ "PREDICTIVE MONITORING: Threat landscape for 8 components is stable. Anomaly detection active."
1509
+ ],
1510
+ "available_assignees": [
1511
+ {
1512
+ "id": 37,
1513
+ "name": "test_user",
1514
+ "email": "test@example.com",
1515
+ "type": "user",
1516
+ "initials": "TE"
1517
+ },
1518
+ {
1519
+ "id": 39,
1520
+ "name": "Mykola",
1521
+ "email": "mykola@ayurak.com",
1522
+ "type": "user",
1523
+ "initials": "M"
1524
+ },
1525
+ {
1526
+ "id": 34,
1527
+ "name": "Admin User",
1528
+ "email": "admin@wafnpa.com",
1529
+ "type": "user",
1530
+ "initials": "AU"
1531
+ },
1532
+ {
1533
+ "id": 14,
1534
+ "name": "Tej Singh",
1535
+ "email": "tejs@ayurak.com",
1536
+ "type": "user",
1537
+ "initials": "T"
1538
+ },
1539
+ {
1540
+ "id": 40,
1541
+ "name": "Mahad",
1542
+ "email": "mahad@ayurak.com",
1543
+ "type": "user",
1544
+ "initials": "M"
1545
+ },
1546
+ {
1547
+ "id": 1,
1548
+ "name": "Ayurak Admin",
1549
+ "email": "admin@ayurak.com",
1550
+ "type": "user",
1551
+ "initials": "AA"
1552
+ }
1553
+ ],
1554
+ "available_teams": [
1555
+ {
1556
+ "id": 1,
1557
+ "name": "Ramnath-Team"
1558
+ },
1559
+ {
1560
+ "id": 2,
1561
+ "name": "Test Team for Threat Modeling"
1562
+ }
1563
+ ],
1564
+ "metadata": {
1565
+ "v2_enhanced": true,
1566
+ "data_source": "v1_hybrid",
1567
+ "generated_at": "2026-01-14T21:40:29.069291"
1568
+ }
1569
+ }