Security Overview · juju/juju · GitHub

Security

No security policy detected

This project has not set up a SECURITY.md file yet.

Report a vulnerability

Vulnerable juju introspection abstract UNIX domain socket
GHSA-xwgj-vpm9-q2rq published Oct 2, 2024 by hpidcock

High
Vulnerable juju hook tool abstract UNIX domain socket
GHSA-8v4w-f4r9-7h6x published Oct 2, 2024 by hpidcock

Moderate
JUJU_CONTEXT_ID is a predictable authentication secret
GHSA-mh98-763h-m9v4 published Oct 2, 2024 by hpidcock

High
Unprivileged user running on charm node can leak any secret or relation data accessible to the local charm
GHSA-6vjm-54vp-mxhx published Aug 5, 2024 by anvial

High
Juju controller - Arbitrary file reading vulnerability
GHSA-x5rv-w9pm-8qp8 published Feb 15, 2023 by wallyworld

Moderate

Learn more about advisories related to juju/juju in the GitHub Advisory Database