CVE-2026-42576 | chainguard-dev apko up to 1.2.6 JWKS Endpoint implementation.go type conversion (GHSA-m7hm-vm4x-28jf)

A vulnerability was found in chainguard-dev apko up to 1.2.6 and classified as problematic. This vulnerability affects unknown code of the file pkg/apk/apk/implementation.go of the component JWKS Endpoint. Executing a manipulation can lead to incorrect type conversion.

The identification of this vulnerability is CVE-2026-42576. The attack may be launched remotely. There is no exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More