GHSA-HMQ4-C2R4-5Q8H Artifact Hub arbitrary file read vulnerability

Impact During a security audit of Artifact Hub's code base, a security researcher at OffSec identified a bug in which by using symbolic links in certain kinds of repositories loaded into Artifact Hub, it was possible to read internal files. Artifact Hub indexes content from a variety of sources,...