github.com/mutagen-io/mutagen is vulnerable to Improper Input Validation. The vulnerability exists because the mutagen command line and logging operations of the library do not properly sanitize control characters in the text, which allows an attacker to send malicious control characters through remote endpoints. This can result in terminal corruption, or in specific cases of old terminals, remote code execution.
github.com/mutagen-io/mutagen-compose/commit/b1d7a505adfc8ce2ece197fa81fb5e972c751619
github.com/mutagen-io/mutagen/commit/851a2298ce939876f4db8178ad73c88731dfa6da
github.com/mutagen-io/mutagen/commit/9e34488e43127d2e0385f886fd9024e5c63ff21c
github.com/mutagen-io/mutagen/releases/tag/v0.16.6
github.com/mutagen-io/mutagen/releases/tag/v0.17.1
github.com/mutagen-io/mutagen/security/advisories/GHSA-jmp2-wc4p-wfh2