github.com/chainguard-dev/malcontent (Go) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Go package github.com/chainguard-dev/malcontent, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (3)
CVE-2026-24845 — CVSS 6.5 (medium): malcontent discovers supply-chain compromises through. context, differential analysis, and YARA. Starting in version 0.10.0 and prior to…
CVE-2026-24846 — CVSS 5.5 (medium): malcontent discovers supply-chain compromises through. context, differential analysis, and YARA. Starting in version 1.8.0 and prior to…
CVE-2026-28407 — CVSS 5.3 (medium): malcontent is software for discovering supply-chain compromises through context, differential analysis, and YARA. Prior to version 1.21.0…