VulnSea
CVE-2026-48816 — sigstore-js has Insufficient Verification of Data Authenticity · VulnSea