Affected by GO-2022-0326
and 2 other vulnerabilities
GO-2022-0326: Improper certificate validation in github.com/sigstore/cosign
GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign
GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign
The highest tagged major version is
v2.
package
Version:
v1.5.0
Opens a new window with list of versions in this module.
Published: Jan 21, 2022
License: Apache-2.0
Opens a new window with license information.
Imports: 12
Opens a new window with list of imports.
Imported by: 3
Opens a new window with list of known importers.
Documentation
¶
Source Files
¶
Click to show internal directories.
Click to hide internal directories.