VulnSea
CVE-2026-49834 — sigstore-go has a multi-log threshold bypass via single compromised log · VulnSea