Vulnerability in Conda-forge Conda-smithy

CVE-2025-49843

conda-smithy is a tool for combining a conda recipe with configurations to build using freely hosted CI services into a single repository. Prior to version 3.47.1, the travis_headers function in the conda-smithy repository creates files wi…

EPSS: 0.005 (40.3th percentile) — read the EPSS interpretation.