CVE-2020-13846: "Verify All" Returns Success Despite Validation Failures in Singularity

Sylabs Singularity 3.5.0 through 3.5.3 fails to report an error in a Status Code.

References

Code Behaviors & Features

Detect and mitigate CVE-2020-13846 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →