Directory Security advisories

Security advisories

GHSA-r2xv-vpr2-42m9

Published

Last updated

https://github.com/advisories/GHSA-r2xv-vpr2-42m9

Description

slsa-verifier vulnerable to mproper validation of npm's publish attestations

References

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore.

Changes to static, git and busybox images

Products

Chainguard Images

Developer

Open source Docs

Resources

Unchained blog Chainguard Labs Customer stories Scanners Security Education

Company

About Newsroom Careers Chainguard love Legal Contact

Follow

Twitter GitHub LinkedIn TikTok

© 2024 Chainguard, Inc.