2 matches found
GO-2026-5694 Cosign's verify-blob-attestation reports false positive when payload parsing fails in github.com/sigstore/cosign
Cosign's verify-blob-attestation reports false positive when payload parsing fails in github.com/sigstore/cosign...
CVE-2026-5694
creationtimestamp| type| source ---|---|--- 2026-04-22 21:20:45+00:00| seen| Telegram/cDitVeBI8oWCcnnyaubtTUI3HbowCaMK9JXw2ugv50fhLs...