VYPR

PyPI package

in-toto

pkg:pypi/in-toto

Vulnerabilities (1)

  • CVE-2023-32076May 10, 2023
    affected < 2.0.0fixed 2.0.0

    in-toto is a framework to protect supply chain integrity. The in-toto configuration is read from various directories and allows users to configure the behavior of the framework. The files are from directories following the XDG base directory specification. In versions 1.4.0 and p