Security Overview · osbuild/osbuild-composer · GitHub

Security

No security policy detected

This project has not set up a SECURITY.md file yet.

Report a vulnerability

CVE-2024-2307: A race condition in repository handling can cause manifest generation with omitted signature verification of packages
GHSA-v78q-xrpc-w24m published Mar 22, 2024 by thozza

Moderate

Learn more about advisories related to osbuild/osbuild-composer in the GitHub Advisory Database