{"id":"ECHO-ccb7-6d4f-be3e","upstream":["CVE-2026-42284","GHSA-x2qx-6953-8485"],"severity":[],"modified":"2026-07-01T13:02:47.381Z","affected":[{"package":{"ecosystem":"Echo:PyPi","name":"gitpython","purl":"pkg:pypi/gitpython"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}]},{"package":{"ecosystem":"Echo:PyPi","name":"GitPython","purl":"pkg:pypi/gitpython"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.1.47"}]}]}],"references":[{"type":"WEB","url":"https://advisory.echohq.com/cve/CVE-2026-42284"},{"type":"WEB","url":"https://github.com/advisories/GHSA-x2qx-6953-8485"}],"withdrawn":"2026-07-01T13:02:47.381Z","summary":""}