VYPR

Gittuf

by Gittuf

Source repositories

CVEs (1)

  • CVE-2026-44544MedMay 14, 2026
    risk 0.25cvss epss 0.00

    gittuf is a platform-agnostic Git security system. Prior to 0.14.0, an attacker with push access to gittuf's Reference State Log (RSL) can roll back the current policy to any previous policy trusted by the current set of root keys. gittuf determines the policy to load by…