GHSA-8Q5R-MMJF-575Q Claude Code Action: Malicious MCP Server Configuration in PRs Enables Remote Code Execution and Secret Exfiltration

Due to the combination of checking out PR head branches attacker-controlled, reading .mcp.json from the working directory via default setting sources, and unconditionally enabling all project MCP servers via enableAllProjectMcpServers, it was possible for an attacker who opened a PR containing a...

CVE-2026-41907 vulnerabilities

Vulnerabilities for packages: argo-workflows, sqlpad, code-server, dbgate-fips, gemini-cli, opensearch-dashboards-fips, librechat, homepage, kubeflow-pipelines, langfuse, redisinsight, wazuh-dashboard-fips, wazuh-dashboard, kubeflow-centraldashboard, opensearch-dashboards, renovate, saf,...

GHSA-FV83-X2XW-2J55 vulnerabilities

Vulnerabilities for packages: aws-load-balancer-controller, spire-server, newrelic-k8s-metadata-injection, dbmate, goreleaser, oras, polaris, dgraph, temporal, stakater-reloader, envoy-ratelimit, flux-image-automation-controller, malcontent, tailscale, kubewatch, nova, grafana-rollout-operator,...

CVE-2026-32281 vulnerabilities

Vulnerabilities for packages: dbmate, temporal-ui-server, cert-manager, nri-nginx, thanos-operator, infinispan-operator, aws-eks-pod-identity-agent, rancher-fleet, incert, vendir, redka, vault-k8s, timoni, amazon-k8s-cni, mc, timescaledb-parallel-copy, falcoctl, hcloud, sftpgo-plugin-eventsearch,...

CVE-2026-1229 vulnerabilities

Vulnerabilities for packages: crossplane-provider-aws-efs, terraform-provider-azurerm-fips, databricks-cli-fips, gitaly-fips, gitlab-rails-ce, cerbos-fips, helm-fips, docker-cli-buildx-fips, kyverno, atlantis-fips, crossplane-provider-family-aws-fips, terraform-fips,...

CVE-2026-25547 vulnerabilities

Vulnerabilities for packages: librechat, sqlpad, renovate, pulumi, actions-runner, lerna, npm, node-gyp...

CVE-2025-61729 vulnerabilities

Vulnerabilities for packages: temporal-ui-server, nri-nginx, thanos-operator, infinispan-operator, podinfo, rancher-fleet, incert, src-fingerprint, redka, hcloud, sftpgo-plugin-eventsearch, dive, terraform-docs, nri-postgresql, opa-envoy, net-kourier, go-md2man, k6, prometheus-alertmanager,...

EUVD-2022-6988

Malicious code in bioql PyPI...

EUVD-2022-49076

Malicious code in bioql PyPI...

EUVD-2025-27053

Malicious code in bioql PyPI...

Malicious code in actions-runner-admin (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8bf5c8993e97e4a8a3f91ab4b6b7618dc0f73864793854b4458516ece843a6db The OpenSSF Package Analysis project identified 'actions-runner-admin' @ 99.99.99 rubygems as malicious. It is considered malicious because: - T...

MAL-2025-46892 Malicious code in actions-runner-admin (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8bf5c8993e97e4a8a3f91ab4b6b7618dc0f73864793854b4458516ece843a6db The OpenSSF Package Analysis project identified 'actions-runner-admin' @ 99.99.99 rubygems as malicious. It is considered malicious because: - T...

GHSA-VVGC-356P-C3XW vulnerabilities

Vulnerabilities for packages: dbmate, temporal-ui-server, cert-manager, thanos-operator, src-fingerprint, vault-k8s, timoni, amazon-k8s-cni, mc, falcoctl, hcloud, sftpgo-plugin-eventsearch, dive, opa-envoy, k6, prometheus-alertmanager, kubernetes-dns-node-cache, tkn,...

CVE-2025-22872 vulnerabilities

Vulnerabilities for packages: dbmate, temporal-ui-server, cert-manager, thanos-operator, src-fingerprint, vault-k8s, timoni, amazon-k8s-cni, mc, falcoctl, hcloud, sftpgo-plugin-eventsearch, dive, opa-envoy, k6, prometheus-alertmanager, kubernetes-dns-node-cache, tkn,...

CVE-2025-22871 vulnerabilities

Vulnerabilities for packages: dbmate, cert-manager, nri-nginx, thanos-operator, incert, src-fingerprint, redka, vault-k8s, timoni, amazon-k8s-cni, falcoctl, hcloud, nri-postgresql, go-md2man, k6, prometheus-alertmanager, kubernetes-dns-node-cache, tkn, flux-image-reflector-controller, syft,...

GHSA-G9PC-8G42-G6VQ vulnerabilities

Vulnerabilities for packages: dbmate, cert-manager, nri-nginx, thanos-operator, incert, src-fingerprint, redka, vault-k8s, timoni, amazon-k8s-cni, falcoctl, hcloud, nri-postgresql, go-md2man, k6, prometheus-alertmanager, kubernetes-dns-node-cache, tkn, flux-image-reflector-controller, syft,...

CVE-2025-30204 vulnerabilities

Vulnerabilities for packages: spire-server, terragrunt, secrets-store-csi-driver-provider-azure, step-kms-plugin, cert-manager, buildkitd, cosign, falcosidekick, policy-controller, aws-eks-pod-identity-agent, thanos, sops, rancher, gomplate, loki, timestamp-authority, zot, harbor-registry, mc,...

GHSA-7WRW-R4P8-38RX vulnerabilities

Vulnerabilities for packages: temporal-ui-server, nri-nginx, thanos-operator, vendir, src-fingerprint, redka, vault-k8s, timoni, amazon-k8s-cni, kubernetes-release, hcloud, sftpgo-plugin-eventsearch, dive, terraform-docs, opa-envoy, prometheus-pushgateway, go-md2man, k6, prometheus-alertmanager,...

CVE-2022-39321

GitHub Actions Runner is the application that runs a job from a GitHub Actions workflow. The actions runner invokes the docker cli directly in order to run job containers, service containers, or container actions. A bug in the logic for how the environment is encoded into these docker commands wa...

CVE-2024-3924 Code Injection in huggingface/text-generation-inference

A code injection vulnerability exists in the huggingface/text-generation-inference repository, specifically within the autodocs.yml workflow file. The vulnerability arises from the insecure handling of the github.headref user input, which is used to dynamically construct a command for installing ...