We are writing to inform you of a high-impact but low-severity vulnerability in go-tuf
clients < v0.3.2
. You may find more details, such as workarounds and patches, in our security advisory
Please reach out to us via the communication means listed in the advisory (including the public mailing list listed in this email) should you have any questions.
Trishank on behalf of go-tuf maintainers