CVE-2026-44218
LOW
NVD
CVSS Score
3
Severity
LOW
Published
May 12, 2026
Vendor
unknown
Description
ciguard is a static security auditor for CI/CD pipelines. From 0.1.0 to 0.8.1, the published ghcr.io/jo-jo98/ciguard container image inherits the default root user because the Dockerfile lacks a USER directive. This vulnerability is fixed in 0.8.2.