Security: sakura-editor/sakura
Security
No security policy detected
This project has not set up a SECURITY.md file yet.
Report a vulnerability-
GitHub の公開 アカウントを持つ任意のユーザーが fork ベースの PR を 1 件開くだ けで、sakura-editor/sakura リポジトリへの書き込み権限を持つ 状態で攻撃者制御コードが即座に実行されますGHSA-m3rv-qv33-h76g published
Jun 30, 2026 by m-tmatmaCritical -
Improper Control of Generation of Code ('Code Injection') in sakura editorGHSA-p83w-26vg-ghg4 published
Jun 30, 2026 by m-tmatmaCritical
Learn more about advisories related to sakura-editor/sakura in the GitHub Advisory Database