slsa-verifier vulnerable to mproper validation of npm's publish attestations

Low severity GitHub Reviewed Published Nov 8, 2023 in slsa-framework/slsa-verifier • Updated Nov 9, 2023

No open alerts for this advisory

Give feedback on Dependabot alerts