Find real vulnerabilities before they ship
Vulnerability Database › pypi › CVE-2020-6174
TUF (aka The Update Framework) through 0.12.1 has Improper Verification of a Cryptographic Signature.
Base Score