Sigstore Sigstore-ruby
1 CVEs affecting Sigstore Sigstore-ruby. Latest disclosed: 2026-03-10. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-31830 | High | 7.5 | 2026-03-10 | sigstore-ruby is a pure Ruby implementation of the sigstore verify command from the sigstore/cosign project. Prior to 0.2.3, Sigstore::Verifier#verify does not… |