CVE-2026-49852 Blast Radius

HIGH • CVSS 0joserfc: HS256/HS384/HS512 verify accepts empty/nil HMAC key (cross-language sibling of CVE-2026-45363) ### Summary `joserfc.jwt.decode` accepts att

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-49852.