{"vulnerability": "cve-2026-55698", "sightings": [{"uuid": "5ab8ecf2-0baf-4c7c-944a-8ab71c7ab766", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55698", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp4ywb3qok2j", "content": "CVE-2026-55698 - pnpm: Project env lockfile can short-circuit package-manager resolution and execute lockfile-selected pnpm bytes\nCVE ID : CVE-2026-55698\n \n Published : June 25, 2026, 4:43 p.m. | 1\u00a0hour, 1\u00a0minute ago\n \n Description : pnpm is a package manager. Prior to 10.34.2...", "creation_timestamp": "2026-06-25T17:57:07.952042Z"}, {"uuid": "3f1446f7-9dec-4bf6-a43e-a7e710fdf2c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-55698", "type": "published-proof-of-concept", "source": "https://github.com/pnpm/pnpm/security/advisories/GHSA-w466-c33r-3gjp", "content": "", "creation_timestamp": "2026-06-27T00:35:04.935444Z"}]}