CVE-2026-48978 Blast Radius
LOW • CVSS 0oras-go: Malicious registry can hijack Bearer token realm to exfiltrate credentials and refresh tokens ## Summary oras-go's `auth.Client` follows th…
Is Your Infrastructure Using These Packages?
EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-48978.