Vulnerabilities > Goreleaser
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-30 | CVE-2024-23840 | Information Exposure Through Log Files vulnerability in Goreleaser 1.23.0 GoReleaser builds Go binaries for several platforms, creates a GitHub release and then pushes a Homebrew formula to a tap repository. | 5.5 |
| 2023-05-30 | CVE-2023-32698 | Incorrect Default Permissions vulnerability in Goreleaser Nfpm nFPM is an alternative to fpm. | 7.1 |