chainloop-cli-fips

Direct Vulnerabilities

Known vulnerabilities in the chainloop-cli-fips package. This does not include vulnerabilities belonging to this package’s dependencies.

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
L CVE-2026-45022	<1.96.2-r0
L GHSA-389r-gv7p-r3rp	<1.96.2-r0
L GHSA-2283-wf8c-rw8r	<1.95.3-r1
L GHSA-xq5j-9r39-c3vf	<1.95.3-r1
M Out-of-bounds Write	<1.95.3-r1
H NULL Pointer Dereference	<1.95.3-r1
L GHSA-5m4p-2gjx-p2g8	<1.95.3-r1
L GHSA-qf3q-3h68-mmh2	<1.95.3-r1
L Cross-site Scripting (XSS)	<1.95.3-r1
L CVE-2026-42501	<1.95.3-r1
L CVE-2026-42499	<1.95.3-r1
H Loop with Unreachable Exit Condition ('Infinite Loop')	<1.95.3-r1
L GHSA-3v2c-x6q9-f697	<1.95.3-r1
H Double Free	<1.95.3-r1
L Improper Encoding or Escaping of Output	<1.95.3-r1
H Allocation of Resources Without Limits or Throttling	<1.95.3-r1
L GHSA-p9h5-jm8x-mjm5	<1.95.3-r1
L GHSA-qc64-m6c2-v4x7	<1.95.3-r1
M Link Following	<1.95.3-r1
L GHSA-8g2r-hhvj-mv99	<1.95.3-r1
L GHSA-497x-jcxf-m478	<1.95.3-r1
L GHSA-pmwq-pjrm-6p5r	<1.95.3-r1
H Insufficiently Protected Credentials	<1.93.3-r1
L GHSA-3xc5-wrhm-f963	<1.93.3-r1
L GHSA-xmrv-pmrh-hhx2	<1.90.0-r0
L GHSA-hfvc-g4fc-pqhx	<1.90.0-r0
H Untrusted Search Path	<1.90.0-r0
L GHSA-78h2-9frx-2jm8	<1.89.7-r1
L Uncaught Exception	<1.89.7-r1
L Improper Validation of Array Index	<1.83.0-r1
L GHSA-6g7g-w4f8-9c9x	<1.83.0-r1
L Improper Authorization	<1.83.0-r0
L GHSA-p77j-4mvh-x3m3	<1.83.0-r0