Security: umanio-agency/skillctl
Security Advisories
View known security vulnerabilities and report new vulnerabilities privately to maintainers.
-
skillctl: argument injection, path traversal in --dest, FIFO/device DoS, hardlink exfiltration, and commit-trailer forgeryGHSA-74p7-6h78-gw8p published
May 21, 2026 by umanio-agencyHigh -
Path traversal and symlink-follow in skillctl allow arbitrary file disclosure and deletionGHSA-wx3m-whqv-xv47 published
May 20, 2026 by umanio-agencyHigh