CVE-2026-40938

A flaw was found in Tekton Pipelines, a system for declaring continuous integration/continuous delivery CI/CD pipelines. An authenticated user, able to submit ResolutionRequest objects, can exploit a vulnerability by injecting malicious commands into the git resolver's revision parameter. This...