{"id":"ECHO-89fa-d0fd-2f03","upstream":["CVE-2026-42305","GHSA-897w-fcg9-f6xj"],"severity":[],"modified":"2026-07-01T13:02:47.664Z","affected":[{"package":{"ecosystem":"Echo:PyPi","name":"dulwich","purl":"pkg:pypi/dulwich"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.5"}]}]}],"references":[{"type":"WEB","url":"https://advisory.echohq.com/cve/CVE-2026-42305"},{"type":"WEB","url":"https://github.com/advisories/GHSA-897w-fcg9-f6xj"}]}