github.com/in-toto/in-toto-golang (Go) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Go package github.com/in-toto/in-toto-golang, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (1)
CVE-2021-41087 — CVSS 5.6 (medium): in-toto-golang is a go implementation of the in-toto framework to protect software supply chain integrity. In affected versions…