github.com/anchore/quill (Go) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Go package github.com/anchore/quill, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (3)
CVE-2026-31961 — CVSS 5.5 (medium): Quill provides simple mac binary signing and notarization from any platform. Quill before version v0.7.1 contains an unbounded memory…
CVE-2026-31959 — CVSS 5.3 (medium): Quill provides simple mac binary signing and notarization from any platform. Quill before version v0.7.1 contains a Server-Side Request…
CVE-2026-31960 — CVSS 5.3 (medium): Quill provides simple mac binary signing and notarization from any platform. Quill before version v0.7.1 has unbounded reads of HTTP…