sigstore Security Advisories - Pypi | Ecosyste.ms: Advisories

sigstore

A tool for signing Python package distributions

View on github.com · View on pypi.org

Security Advisories for sigstore in pypi

Low

10 months ago

sigstore has insufficient validation of integration timestamp during verification GSA_kwCzR0hTQS1oaGZnLWZ3cnctODd3N84ABCSW

pypi sigstore

Filter by Severity