VYPR

npm package

@phala/dcap-qvl-node

pkg:npm/%40phala/dcap-qvl-node

Vulnerabilities (1)

  • CVE-2026-22696CriJan 26, 2026
    affected <= 0.3.3

    dcap-qvl implements the quote verification logic for DCAP (Data Center Attestation Primitives). A vulnerability present in versions prior to 0.3.9 involves a critical gap in the cryptographic verification process within the dcap-qvl. The library fetches QE Identity collateral (in