CVE-2026-55092 — CVSS 7.5 (high): Trivy is a security scanner. Prior to 0.71.1, when Trivy downloads an OCI artifact, it uses the org.opencontainers.image.title annotation…
CVE-2026-54448 — CVSS 6.5 (medium): Trivy is a security scanner. Prior to 0.71.0, when Trivy scans a Helm chart archive (.tgz), its custom tar unpacker reads each entry with…