Skip to content

sigstore-ruby verifier returns success for DSSE bundles with mismatched in-toto subject digest

High severity GitHub Reviewed Published Mar 10, 2026 in sigstore/sigstore-ruby • Updated Mar 11, 2026
0 Open 0 Closed
Type
Filter by repository type
All
Public
Private
Internal
Sort
Sort by
Newest
Oldest

No closed alerts for this advisory

Give feedback on Dependabot alerts