SCA: security update for nono-py (GHSA-9j7f-3r4p-pwh6)

high Tenable Self-Hosted Container Security Plugin ID 444083

Description

nono-py vulnerable to authorization bypass / policy confusion

Solution

Update the nono-py library and its related packages to version 0.11.0 or later.

See Also

https://github.com/advisories/GHSA-9j7f-3r4p-pwh6

Plugin Details

Severity: High

ID: 444083

Version: Revision 1.1

Type: Local

Family: SCA Checks

Published: 6/27/2026

Updated: 6/27/2026

Vulnerability Information

Exploit Ease: No known exploits are available

Patch Publication Date: 6/26/2026

Vulnerability Publication Date: 6/26/2026

Reference Information

cwe: CWE-1188