VYPR

Go modules package

github.com/elastic/package-registry

pkg:golang/github.com/elastic/package-registry

Vulnerabilities (1)

  • CVE-2026-33467MedApr 28, 2026
    affected < 1.38.0fixed 1.38.0

    Improper Verification of Cryptographic Signature (CWE-347) in Elastic Package Registry could allow an attacker positioned to intercept network traffic, or to otherwise influence the contents served to a self-hosted registry, to substitute a tampered package without the integrity