pkg:Go/github.com/sigstore/sigstore
2 total CVEsMEDIUM2
✅ Check your installed version
All known vulnerabilities
MEDIUM5.8CVE-2026-24137Sigstore legacy TUF client allows for arbitrary file writes with target cache path traversal in github.com/sigstore/sigstore from 0, < 1.10.4
MEDIUM5.8CVE-2026-24137Sigstore legacy TUF client allows for arbitrary file writes with target cache path traversal in github.com/sigstore/sigstore from 0, < 1.10.4