{"vulnerability": "CVE-2026-40034", "sightings": [{"uuid": "f5834061-1a18-4338-9a9a-ec17789f1a4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40034", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmrbjkcv452o", "content": "CVE-2026-40034 - gitoxide - Command Injection via Partial .gitmodules Override in gix-submodule\nCVE ID : CVE-2026-40034\n \n Published : May 26, 2026, 2:08 p.m. | 23\u00a0minutes ago\n \n Description : gix-submodule before 0.82.0 incorrectly validates the update field in .gitmodules, a...", "creation_timestamp": "2026-05-26T15:08:44.967868Z"}]}