GHSA-6wxm-mpqj-6jpf Affecting sigstore-scaffolding package, versions <0.7.18-r3
Threat Intelligence
Exploit Maturity
Exploit maturity not defined.
Not Defined
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk IDSNYK-CHAINGUARDLATEST-SIGSTORESCAFFOLDING-8675787
- published30 Jan 2025
Introduced: 30 Jan 2025
New CVE NOT AVAILABLEHow to fix?
Upgrade Chainguard sigstore-scaffolding to version 0.7.18-r3 or higher.
NVD Description
This vulnerability has not been analyzed by NVD yet.