Fulcio is vulnerable to Server-Side Request Forgery (SSRF) via MetaIssuer Regex Bypass

Moderate severity GitHub Reviewed Published Jan 12, 2026 in sigstore/fulcio • Updated Jan 13, 2026

No open alerts for this advisory

Give feedback on Dependabot alerts