Hello,
We are writing to inform you of a high-impact but low-severity vulnerability in
go-tuf clients <
v0.3.2. You may find more details, such as workarounds and patches, in our
security advisory.
Please reach out to us via the communication means listed in the advisory (including the public mailing list listed in this email) should you have any questions.
Thanks,
Trishank on behalf of go-tuf maintainers