VYPR

rpm package

opensuse/skim&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/skim&distro=openSUSE%20Tumbleweed

Vulnerabilities (1)

  • CVE-2026-41414HigApr 24, 2026
    affected < 4.6.1-1.1fixed 4.6.1-1.1

    Skim is a fuzzy finder designed to through files, lines, and commands. The generate-files job in .github/workflows/pr.yml checks out attacker-controlled fork code and executes it via cargo run, with access to SKIM_RS_BOT_PRIVATE_KEY and GITHUB_TOKEN (contents:write). No gates pre