github.com/distribution/distribution is vulnerable to Signature Bypass. The vulnerability is due to improper JSON Web Key (JWK) verification, allowing an attacker to forge a malicious JWT and bypass…Read More