Package impact
GO / chainguard.dev/melange
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-29050 | medium | — | 5.5 | 1mo ago | melange has Path Traversal When Resolving External Pipelines via Unvalidated pipeline[].uses | |||
| CVE-2026-29051 | low | — | 2.5 | 1mo ago | melange has Path Traversal via .PKGINFO in --persist-lint-results |