Skip to content

CVE lookup

CVE-2026-48816

Pruva has a verified reproduction for CVE-2026-48816: sigstore-js Insufficient Verification of Data Authenticity. The canonical evidence record is REPRO-2026-00210.

REPRO

REPRO-2026-00210

Package

sigstore/sigstore-js · github

Severity

MEDIUM

Status

published