Elvish vulnerable to remote code execution via the web UI backend in github.com/elves/elvish
{ "url": "https://pkg.go.dev/vuln/GO-2022-0937", "review_status": "UNREVIEWED" }