Arcane Backend: Missing admin authorization on git repository endpoints allows non-admin users to exfiltrate stored Git credentials and tamper with GitOps configs
Critical severity
GitHub Reviewed
Published
May 11, 2026
in
getarcaneapp/arcane
•
Updated Jun 9, 2026
Give feedback on Dependabot alerts