localstack
Chainguard
Status
Impact
This CVE is a transitive dependency brought in via amazon-kinesis-client-python, the fix version of logback-core does not exist in amazon-kclpy at the most recent version of v3.0.1. amazon-kclpy maintainers must implement a fix in a release.
Status