Intoto-Golang 路径遍历漏洞
Intoto-Golang is a framework for protecting the integrity of the software supply chain. A path traversal vulnerability exists in intoto-golang, where an authenticated attacker can impersonate a staff member i.e., within a layout's set of trusted users to create proofs that may bypass the DISALLOW...