{
  "claim": {
    "argus_claim_ref": null,
    "attacker_control": null,
    "claimed_surface": "library_api",
    "expected_impact": null,
    "finding_id": null,
    "id": null,
    "required_entrypoint_detail": null,
    "required_entrypoint_kind": "function_call",
    "submission_reason": "ticket_derived",
    "trigger_class": "library_api",
    "upstream_verdicts": null
  },
  "latest_description": "Target repo: https://github.com/sigstore/sigstore-js. Vulnerable package: @sigstore/verify (npm). Affected version: 3.1.0; fixed in 3.1.1. The verifier derives a transparency-log timestamp from tlogEntries[].integratedTime for bundle v0.2 and uses it for certificate validity and timestampThreshold. In inclusionProof-only entries, integratedTime is not cryptographically bound, so an attacker supplying a malicious bundle can influence time-based verification. Reproduction: clone the sigstore-js repo at the vulnerable commit, install dependencies, and run the attached PoC harness (poc.zip) with make canonical and make control. The canonical run should hit the callsite and proof markers; the control run should show the negative-control marker. The advisory includes poc.zip, PR_DESCRIPTION.md, and SUBMISSION.md.",
  "product": "sigstore-js",
  "severity": "medium",
  "status": "open",
  "summary": "sigstore-js Insufficient Verification of Data Authenticity",
  "ticket_id": "CVE-2026-48816"
}