Cosign provides code signing and transparency for containers and binaries. Prior to 3.0.6 and 2.6.3, cosign verify-blob-attestatio

Cosign provides code signing and transparency for containers and binaries. In versions 3.0.4 and below, an issuing certificate wit

Cosign provides code signing and transparency for containers and binaries. Prior to versions 2.6.2 and 3.0.4, Cosign bundle can be

Cosign provides code signing and transparency for containers and binaries. Prior to version 2.2.4, maliciously-crafted software ar

Cosign provides code signing and transparency for containers and binaries. Prior to version 2.2.4, a remote image with a malicious

Cosign is a sigstore signing tool for OCI containers. Cosign is susceptible to a denial of service by an attacker controlled regis

Cosign is a project under the sigstore organization which aims to make signatures invisible infrastructure. In versions prior to 1

cosign is a container signing and verification utility. In versions prior to 1.10.1 cosign can report a false positive if any atte

Cosign provides container signing, verification, and storage in an OCI registry for the sigstore project. Prior to version 1.5.2,

cosign-bin/cosign.cgi in Cosign 2.0.2 and earlier allows remote authenticated users to perform unauthorized actions as an arbitrar

The CHECK command in Cosign 2.0.1 and earlier allows remote attackers to bypass authentication requirements via CR (\r) sequences